Trojaner-Board - GVU-Trojaner und keine Ahnung...

Ui, das ging ja diesmal fix. Sollte zwar noch irgendwas installieren, aber das ging dann auch von alleine. Hier nun der Log (oder das?)

Code:

ComboFix 13-04-04.01 - Anja 04.04.2013  22:37:20.1.2 - x86

ausgeführt von:: c:\dokumente und einstellungen\Anja\Desktop\ComboFix.exe

.

.

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\dokumente und einstellungen\All Users\Anwendungsdaten\8ot3of.pad

c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP

c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\PostBuild.exe

c:\dokumente und einstellungen\Anja\Anwendungsdaten\Isely

c:\dokumente und einstellungen\Anja\Anwendungsdaten\Isely\bipy.iqy

c:\dokumente und einstellungen\Anja\Anwendungsdaten\Isely\bipy.tmp

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\1.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\7031.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\8040.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\a.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\b.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\c.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\d.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\e.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\f.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\g.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\h.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\i.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\j.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\k.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\l.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\m.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\n.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\o.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\p.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\q.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\r.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\s.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\t.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\u.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\v.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\w.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\wlu.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\x.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\y.txt

c:\dokumente und einstellungen\Gast\Anwendungsdaten\PriceGong\Data\z.txt

C:\Thumbs.db

c:\windows\lgcenter.ini

c:\windows\system32\Thumbs.db

.

.

(((((((((((((((((((((((   Dateien erstellt von 2013-03-04 bis 2013-04-04  ))))))))))))))))))))))))))))))

.

.

2013-04-04 20:11 . 2013-04-04 20:11        --------        d--h--w-        c:\windows\PIF

2013-04-03 17:06 . 2013-04-03 17:06        --------        d-----w-        C:\_OTL

2013-04-03 08:29 . 2013-04-03 08:29        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Wincert

2013-04-03 08:29 . 2013-04-03 08:29        --------        d-----w-        c:\dokumente und einstellungen\Anja\Anwendungsdaten\jziptoolbargaw

2013-04-03 08:29 . 2013-04-03 11:31        --------        d-----w-        c:\dokumente und einstellungen\Anja\Lokale Einstellungen\Anwendungsdaten\jZip

2013-04-03 08:28 . 2013-04-03 08:29        --------        d-----w-        c:\programme\jZip

2013-04-03 07:42 . 2013-04-03 07:42        --------        d-----w-        c:\dokumente und einstellungen\Anja\Anwendungsdaten\Malwarebytes

2013-04-03 07:41 . 2013-04-03 07:41        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes

2013-04-03 07:41 . 2012-12-14 14:49        21104        ----a-w-        c:\windows\system32\drivers\mbam.sys

2013-04-03 07:41 . 2013-04-03 07:41        --------        d-----w-        c:\programme\Malwarebytes' Anti-Malware

2013-04-02 22:26 . 2013-04-04 19:56        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\boost_interprocess

2013-04-02 22:26 . 2013-04-02 22:26        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Symantec

2013-04-02 22:08 . 2013-04-02 22:08        --------        d-----w-        c:\windows\system32\drivers\NST

2013-04-02 22:08 . 2013-04-02 22:08        --------        d-----w-        c:\programme\Norton Identity Safe

2013-04-02 22:08 . 2013-04-02 22:29        --------        d-----w-        c:\programme\Gemeinsame Dateien\Symantec Shared

2013-04-02 22:08 . 2013-04-02 22:26        --------        d-----w-        c:\programme\Symantec

2013-04-02 22:08 . 2013-04-02 22:08        142496        ----a-w-        c:\windows\system32\drivers\SYMEVENT.SYS

2013-04-02 22:07 . 2013-04-02 22:07        --------        d-----w-        c:\windows\system32\drivers\NAV

2013-04-02 22:07 . 2013-04-02 22:07        --------        d-----w-        c:\programme\Norton AntiVirus

2013-04-02 22:07 . 2013-04-02 22:09        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Norton

2013-04-02 22:05 . 2013-04-02 22:05        --------        d-----w-        c:\dokumente und einstellungen\Anja\Lokale Einstellungen\Anwendungsdaten\Avg2013

2013-04-02 22:00 . 2013-04-02 22:08        --------        d-----w-        c:\programme\NortonInstaller

2013-04-02 19:56 . 2013-04-02 19:56        --------        d-----w-        c:\dokumente und einstellungen\Anja\Anwendungsdaten\TuneUp Software

2013-04-02 19:55 . 2013-04-02 22:05        --------        d-----w-        C:\$AVG

2013-04-02 19:55 . 2013-04-02 22:05        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\AVG2013

2013-04-02 19:48 . 2013-04-02 22:06        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MFAData

2013-04-02 19:48 . 2013-04-02 19:48        --------        d--h--w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Common Files

2013-04-02 19:48 . 2013-04-02 19:48        --------        d-----w-        c:\dokumente und einstellungen\Anja\Lokale Einstellungen\Anwendungsdaten\MFAData

2013-03-21 19:31 . 2013-03-22 06:18        693976        ----a-w-        c:\windows\system32\FlashPlayerApp.exe

2013-03-21 19:09 . 2013-02-12 00:32        12928        -c----w-        c:\windows\system32\dllcache\usb8023x.sys

.

.

.

((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-03-22 06:18 . 2011-05-19 05:35        73432        ----a-w-        c:\windows\system32\FlashPlayerCPLApp.cpl

2013-02-12 00:32 . 2009-03-19 14:28        12928        ----a-w-        c:\windows\system32\drivers\usb8023.sys

2013-02-05 19:56 . 2009-03-19 14:28        916480        ----a-w-        c:\windows\system32\wininet.dll

2013-02-05 19:56 . 2009-03-19 14:28        43520        ----a-w-        c:\windows\system32\licmgr10.dll

2013-02-05 19:56 . 2009-03-19 14:28        1469440        ------w-        c:\windows\system32\inetcpl.cpl

2013-02-05 05:53 . 2009-03-19 14:28        385024        ----a-w-        c:\windows\system32\html.iec

2013-01-26 03:55 . 2009-03-19 14:28        552448        ----a-w-        c:\windows\system32\oleaut32.dll

2013-01-07 07:24 . 2008-04-14 07:29        2151424        ----a-w-        c:\windows\system32\ntoskrnl.exe

2013-01-07 07:24 . 2008-04-14 07:30        2030080        ----a-w-        c:\windows\system32\ntkrnlpa.exe

2013-03-11 12:24 . 2013-03-11 12:24        263064        ----a-w-        c:\programme\mozilla firefox\components\browsercomps.dll

.

.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))

.

.

*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SRSTrayApp"="c:\programme\SRS Labs\WOWHD and TSXT Driver\SRSTrayApp.exe" [2008-09-05 241664]

"swg"="c:\programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-07-07 39408]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IAAnotif"="c:\programme\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-09-12 182808]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-02-16 141848]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-02-16 166424]

"Persistence"="c:\windows\system32\igfxpers.exe" [2009-02-16 137752]

"RTHDCPL"="RTHDCPL.EXE" [2009-02-03 18085888]

"SynTPEnh"="c:\programme\Synaptics\SynTP\SynTPEnh.exe" [2008-12-04 1410344]

"KeybdUtility"="c:\programme\LG Software\On Screen Display\HotKey.exe" [2009-01-13 2830336]

"zOSD"="c:\programme\LG Software\On Screen Display\HotKey.exe" [2009-01-13 2830336]

"IPO3"="c:\programme\LG Software\IP Operator\IP Operator.exe" [2008-09-12 1056768]

"LG Magnifier"="c:\programme\LG Software\LG Magnifier\MagnifyingGlass.exe" [2008-09-12 864256]

"UCam_Menu"="c:\programme\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2008-12-03 218408]

"LG Intelligent Update"="c:\programme\lg_swupdate\autoupdate.exe" [2008-07-17 126976]

"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]

"331BigDog"="c:\programme\USB Camera\VM331_STI.EXE" [2008-12-01 532480]

"batterymiser"="c:\program files\LG Software\Battery Miser\batterymiser.exe" [2009-04-20 2310144]

"AVMWlanClient"="c:\programme\avmwlanstick\FRITZWLANMini.exe" [2007-02-02 283136]

"MobileConnect"="c:\programme\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe" [2010-03-25 2499584]

"QuickTime Task"="c:\programme\QuickTime\qttask.exe" [2010-11-29 421888]

"Zune Launcher"="c:\programme\Zune\ZuneLauncher.exe" [2011-08-05 159456]

"Adobe Reader Speed Launcher"="c:\programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-12-19 41208]

"Adobe ARM"="c:\programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]

"SunJavaUpdateSched"="c:\programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" [2012-01-17 252296]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

.

c:\dokumente und einstellungen\Gast\Startmenü\Programme\Autostart\

Vodafone Videothek.url [2009-3-24 182]

.

c:\dokumente und einstellungen\Anja\Startmenü\Programme\Autostart\

msconfig.lnk - c:\windows\system32\rundll32.exe [2009-3-19 33792]

.

c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\

WinZip Quick Pick.lnk - c:\programme\WinZip\WZQKPICK32.EXE [2012-4-27 603536]

.

c:\dokumente und einstellungen\Default User\Startmenü\Programme\Autostart\

Vodafone Videothek.url [2009-3-24 182]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableLinkedConnections"= 1 (0x1)

.

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]

"{26F5978F-6493-4ee3-B114-C0C3ACCF9D4D}"= "c:\windows\system32\bmpsap.dll" [2008-10-10 348160]

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

@="Service"

.

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\Programme\\Messenger\\msmsgs.exe"=

"c:\\Programme\\Google\\Google Earth\\client\\googleearth.exe"=

"c:\\Programme\\ICQ7.5\\ICQ.exe"=

"c:\\Programme\\Skype\\Phone\\Skype.exe"=

.

R2 MBAMScheduler;MBAMScheduler;c:\programme\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]

R2 MBAMService;MBAMService;c:\programme\Malwarebytes' Anti-Malware\mbamservice.exe [x]

R2 NOBU;Norton Online Backup;c:\programme\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]

R2 SkypeUpdate;Skype Updater;c:\programme\Skype\Updater\Updater.exe [x]

R2 VMCService;Vodafone Mobile Connect Service;c:\programme\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [x]

R3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [x]

R3 avmeject;AVM Eject;c:\windows\system32\drivers\avmeject.sys [x]

R3 FWLANUSB;AVM FRITZ!WLAN;c:\windows\system32\DRIVERS\fwlanusb.sys [x]

R3 lgodd_filter;lgodd_filter;c:\windows\system32\drivers\lgodd_filter.sys [x]

R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [x]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]

R3 Usbnic;OTi Network Driver Module;c:\windows\system32\DRIVERS\Usbnic.sys [x]

S0 BMLoad;Bytemobile Boot Time Load Driver;c:\windows\system32\drivers\BMLoad.sys [x]

S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NAV\1403000.024\SYMDS.SYS [x]

S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NAV\1403000.024\SYMEFA.SYS [x]

S1 BHDrvx86;BHDrvx86;c:\dokumente und einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.0.36\Definitions\BASHDefs\20130322.001\BHDrvx86.sys [x]

S1 ccSet_NAV;Norton AntiVirus Settings Manager;c:\windows\system32\drivers\NAV\1403000.024\ccSetx86.sys [x]

S1 ccSet_NST;Norton Identity Safe Settings Manager;c:\windows\system32\drivers\NST\7DD03000.01A\ccSetx86.sys [x]

S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NAV\1403000.024\Ironx86.SYS [x]

S2 DvmMDES;DeviceVM Meta Data Export Service;c:\splash.sys\config\DVMExportService.exe [x]

S2 NAV;Norton AntiVirus;c:\programme\Norton AntiVirus\Engine\20.3.0.36\ccSvcHst.exe [x]

S2 NCO;Norton Identity Safe;c:\programme\Norton Identity Safe\Engine\2013.3.0.26\ccSvcHst.exe [x]

S2 SRS_PostInstaller;SRS PostInstaller Service;c:\programme\SRS Labs\WOWHD and TSXT Driver\SRS_PostInstaller.exe [x]

S3 emc2bus;Ericsson F3507g WMC Composite Device driver (WDM);c:\windows\system32\DRIVERS\emc2bus.sys [x]

S3 emc2card;Ericsson F3507g Device Mgmt;c:\windows\system32\DRIVERS\emc2card.sys [x]

S3 emc2gps;Ericsson F3507g WMC 1.0 GPS Port;c:\windows\system32\DRIVERS\emc2gps.sys [x]

S3 emc2mdfl;Ericsson F3507g WMC 1.0 Modem Filter;c:\windows\system32\DRIVERS\emc2mdfl.sys [x]

S3 emc2mdfl2;Ericsson F3507g WMC 1.0 Data Modem Filter;c:\windows\system32\DRIVERS\emc2mdfl2.sys [x]

S3 emc2mdm;Ericsson F3507g WMC 1.0 Modem;c:\windows\system32\DRIVERS\emc2mdm.sys [x]

S3 emc2mdm2;Ericsson F3507g WMC 1.0 Data Modem;c:\windows\system32\DRIVERS\emc2mdm2.sys [x]

S3 emc2nd5;Ericsson F3507g WMC 1.0 Network Adapter (NDIS);c:\windows\system32\DRIVERS\emc2nd5.sys [x]

S3 emc2unic;Ericsson F3507g WMC 1.0 Network Adapter (WDM);c:\windows\system32\DRIVERS\emc2unic.sys [x]

S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]

S3 IDSxpx86;IDSxpx86;c:\dokumente und einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.0.36\Definitions\IPSDefs\20130403.001\IDSxpx86.sys [x]

S3 Sony_EricssonWWSC;Ericsson F3507g WMC 1.0 PC SC Port;c:\windows\system32\DRIVERS\emc2scard.sys [x]

S3 vm331avs;FS13FF-183;c:\windows\system32\Drivers\vm331avs.sys [x]

S3 vodafone_K3805-z_dc_enum;vodafone_K3805-z_dc_enum;c:\windows\system32\DRIVERS\vodafone_K3805-z_dc_enum.sys [x]

S3 wowfilter;WOW XT Filter Driver;c:\windows\system32\drivers\wowfilter.sys [x]

.

.

Inhalt des "geplante Tasks" Ordners

.

2013-04-04 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-21 06:18]

.

2013-04-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\programme\Google\Update\GoogleUpdate.exe [2010-07-07 17:17]

.

2013-04-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\programme\Google\Update\GoogleUpdate.exe [2010-07-07 17:17]

.

2013-04-04 c:\windows\Tasks\User_Feed_Synchronization-{6FF68B01-322F-4084-B9C7-864E5BF6CABB}.job

- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]

.

.

------- Zusätzlicher Suchlauf -------

.

uStart Page = hxxp://www.google.com

uInternet Connection Wizard,ShellNext = iexplore

uInternet Settings,ProxyOverride = fritz.box;192.168.178.1

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: Free YouTube to MP3 Converter - c:\dokumente und einstellungen\Anja\Anwendungsdaten\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

IE: Send MMS - c:\programme\Vodafone\Messenger PC\Plugins\Vodafone SMS Toolbar\IE\SMSToolbar.dll/242

IE: Send SMS - c:\programme\Vodafone\Messenger PC\Plugins\Vodafone SMS Toolbar\IE\SMSToolbar.dll/241

IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\programme\ICQ7.5\ICQ.exe

TCP: DhcpNameServer = 192.168.0.20

DPF: {888078C6-70B2-4F88-8EE7-1F50DDEA6120} - hxxps://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab

DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game.zylom.com/activex/zylomgamesplayer.cab

DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://wettiner-ring.dyndns.org:82/activex/AMC.cab

FF - ProfilePath - c:\dokumente und einstellungen\Anja\Anwendungsdaten\Mozilla\Firefox\Profiles\jj0p8jvu.default\

FF - prefs.js: browser.search.selectedEngine - Search Results

FF - prefs.js: browser.startup.homepage - hxxp://www.quadportal-brandenburg.de/

FF - prefs.js: keyword.URL - hxxp://dts.search-results.com/sr?src=ffb&gct=ds&appid=133&systemid=102&apn_dtid=BND102&apn_ptnrs=AG7&apn_uid=1025687346264913&o=APN10646&q=

FF - prefs.js: network.proxy.type - 0

FF - ExtSQL: 2013-04-03 00:10; {BBDA0591-3099-440a-AA10-41764D9DB4DB}; c:\dokumente und einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.0.36\IPSFFPlgn

FF - ExtSQL: 2013-04-03 16:18; {F04D2D30-776C-4d02-8627-8E4385ECA58D}; c:\dokumente und einstellungen\All Users\Anwendungsdaten\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.3.0.26\coFFPlgn

FF - user.js: network.cookie.cookieBehavior - 0

FF - user.js: privacy.clearOnShutdown.cookies - false

FF - user.js: security.warn_viewing_mixed - false

FF - user.js: security.warn_viewing_mixed.show_once - false

FF - user.js: security.warn_submit_insecure - false

FF - user.js: security.warn_submit_insecure.show_once - false

.

- - - - Entfernte verwaiste Registrierungseinträge - - - -

.

Toolbar-10 - (no file)

HKCU-Run-Emusatupow - c:\dokumente und einstellungen\Anja\Anwendungsdaten\Ikus\iruf.exe

HKLM-Run-Ettin - c:\windows\system32\Ettin\EtEngineU.exe

HKLM-Run-DATAMNGR - c:\progra~1\SEARCH~1\Datamngr\DATAMN~1.EXE

SafeBoot-Wdf01000.sys

SafeBoot-WudfPf

SafeBoot-WudfRd

AddRemove-Elf_1.13 Toolbar - c:\programme\Elf_1.13\uninstall.exe

AddRemove-ICQToolbar - c:\programme\ICQ6Toolbar\ICQUnToolbar.exe

AddRemove-jziptoolbargaw - c:\progra~1\SEARCH~1\Datamngr\SRTOOL~1\uninstall.exe

.

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net

Rootkit scan 2013-04-04 22:49

Windows 5.1.2600 Service Pack 3 NTFS

.

Scanne versteckte Prozesse... 

.

Scanne versteckte Autostarteinträge... 

.

Scanne versteckte Dateien... 

.

Scan erfolgreich abgeschlossen

versteckte Dateien: 0

.

**************************************************************************

.

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NAV]

"ImagePath"="\"c:\programme\Norton AntiVirus\Engine\20.3.0.36\ccSvcHst.exe\" /s \"NAV\" /m \"c:\programme\Norton AntiVirus\Engine\20.3.0.36\diMaster.dll\" /prefetch:1"

--

.

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NCO]

"ImagePath"="\"c:\programme\Norton Identity Safe\Engine\2013.3.0.26\ccSvcHst.exe\" /s \"NCO\" /m \"c:\programme\Norton Identity Safe\Engine\2013.3.0.26\diMaster.dll\" /prefetch:1"

.

--------------------- Gesperrte Registrierungsschluessel ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{1036D5BA-CA0B-6EFB-A816166A3C4364C2}\{9AB25E74-55C5-EF48-A2C588CFA5A2438C}\{DC8259A3-8AE9-348D-2F7CC1007F2DBE93}*]

"MNUANRETNQORKOKBIUN6BTGMUH1"=hex:01,00,01,00,00,00,00,00,ad,94,5a,57,99,37,24,

   4c,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B60CDB60-5376-6DCA-4461E93C2465DB73}\{FC4191BA-6A42-922A-A34EA95E47ABF03B}\{07043ED0-9EC9-0D6A-FB993C405174A321}*]

"MNUANRETNQORKOKBIUN6BTGMUH1"=hex:01,00,01,00,00,00,00,00,ad,94,5a,57,99,37,24,

   4c,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

Zeit der Fertigstellung: 2013-04-04  22:53:46

ComboFix-quarantined-files.txt  2013-04-04 20:53

.

Vor Suchlauf: 9 Verzeichnis(se), 28.476.547.072 Bytes frei

Nach Suchlauf: 16 Verzeichnis(se), 29.091.487.744 Bytes frei

.

WindowsXP-KB310994-SP2-Home-BootDisk-DEU.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

UnsupportedDebug="do not select this" /debug

multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

.

- - End Of File - - 13CF324A3CDF289F5BDE68E300299382

Danke übrigens für deine Geduld, ich besitze sowas ja leider gar nicht :pfeiff:

Mach ich doch glatt ;-)

Code:

00:19:45.0890 2416  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

00:19:46.0875 2416  ============================================================

00:19:46.0875 2416  Current date / time: 2013/04/05 00:19:46.0875

00:19:46.0875 2416  SystemInfo:

00:19:46.0875 2416  

00:19:46.0875 2416  OS Version: 5.1.2600 ServicePack: 3.0

00:19:46.0875 2416  Product type: Workstation

00:19:46.0875 2416  ComputerName: ANJANARVIK

00:19:46.0953 2416  UserName: Anja

00:19:46.0953 2416  Windows directory: C:\WINDOWS

00:19:46.0953 2416  System windows directory: C:\WINDOWS

00:19:46.0953 2416  Processor architecture: Intel x86

00:19:46.0953 2416  Number of processors: 2

00:19:46.0953 2416  Page size: 0x1000

00:19:46.0953 2416  Boot type: Normal boot

00:19:46.0953 2416  ============================================================

00:19:48.0203 2416  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

00:19:48.0203 2416  ============================================================

00:19:48.0203 2416  \Device\Harddisk0\DR0:

00:19:48.0203 2416  MBR partitions:

00:19:48.0203 2416  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800800, BlocksNum 0x6400000

00:19:48.0203 2416  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x6C00800, BlocksNum 0xBE18800

00:19:48.0203 2416  ============================================================

00:19:48.0250 2416  C: <-> \Device\Harddisk0\DR0\Partition1

00:19:48.0296 2416  D: <-> \Device\Harddisk0\DR0\Partition2

00:19:48.0312 2416  ============================================================

00:19:48.0312 2416  Initialize success

00:19:48.0312 2416  ============================================================

00:21:07.0421 2044  ============================================================

00:21:07.0421 2044  Scan started

00:21:07.0421 2044  Mode: Manual; SigCheck; TDLFS; 

00:21:07.0421 2044  ============================================================

00:21:08.0140 2044  ================ Scan system memory ========================

00:21:08.0156 2044  System memory - ok

00:21:08.0156 2044  ================ Scan services =============================

00:21:08.0375 2044  Abiosdsk - ok

00:21:08.0390 2044  abp480n5 - ok

00:21:08.0453 2044  [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys

00:21:10.0437 2044  ACPI - ok

00:21:10.0453 2044  [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys

00:21:10.0750 2044  ACPIEC - ok

00:21:10.0828 2044  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

00:21:10.0875 2044  AdobeFlashPlayerUpdateSvc - ok

00:21:10.0890 2044  adpu160m - ok

00:21:10.0937 2044  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys

00:21:11.0218 2044  aec - ok

00:21:11.0296 2044  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys

00:21:11.0390 2044  AFD - ok

00:21:11.0406 2044  Aha154x - ok

00:21:11.0421 2044  aic78u2 - ok

00:21:11.0437 2044  aic78xx - ok

00:21:11.0500 2044  [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter         C:\WINDOWS\system32\alrsvc.dll

00:21:11.0765 2044  Alerter - ok

00:21:11.0812 2044  [ 190CD73D4984F94D823F9444980513E5 ] ALG             C:\WINDOWS\System32\alg.exe

00:21:11.0968 2044  ALG - ok

00:21:11.0968 2044  AliIde - ok

00:21:12.0046 2044  [ F6AF59D6EEE5E1C304F7F73706AD11D8 ] Ambfilt         C:\WINDOWS\system32\drivers\Ambfilt.sys

00:21:12.0343 2044  Ambfilt - ok

00:21:12.0359 2044  amsint - ok

00:21:12.0375 2044  AppMgmt - ok

00:21:12.0375 2044  asc - ok

00:21:12.0390 2044  asc3350p - ok

00:21:12.0406 2044  asc3550 - ok

00:21:12.0500 2044  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

00:21:12.0578 2044  aspnet_state - ok

00:21:12.0640 2044  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys

00:21:13.0000 2044  AsyncMac - ok

00:21:13.0031 2044  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys

00:21:13.0406 2044  atapi - ok

00:21:13.0421 2044  Atdisk - ok

00:21:13.0453 2044  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys

00:21:13.0734 2044  Atmarpc - ok

00:21:13.0781 2044  [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll

00:21:14.0046 2044  AudioSrv - ok

00:21:14.0062 2044  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys

00:21:14.0296 2044  audstub - ok

00:21:14.0343 2044  [ 263CF9D248FD5E020A1333ED4F7EAA88 ] avmeject        C:\WINDOWS\system32\drivers\avmeject.sys

00:21:14.0406 2044  avmeject ( UnsignedFile.Multi.Generic ) - warning

00:21:14.0406 2044  avmeject - detected UnsignedFile.Multi.Generic (1)

00:21:14.0421 2044  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys

00:21:14.0703 2044  Beep - ok

00:21:14.0953 2044  [ 75A51EA67D28E41543B8B354A47DF430 ] BHDrvx86        C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.0.36\Definitions\BASHDefs\20130322.001\BHDrvx86.sys

00:21:15.0296 2044  BHDrvx86 - ok

00:21:15.0375 2044  [ D6F603772A789BB3228F310D650B8BD1 ] BITS            C:\WINDOWS\system32\qmgr.dll

00:21:15.0812 2044  BITS - ok

00:21:15.0843 2044  [ A6D35FF84E024D6D3F12AAF6C9814314 ] BMLoad          C:\WINDOWS\system32\drivers\BMLoad.sys

00:21:15.0906 2044  BMLoad ( UnsignedFile.Multi.Generic ) - warning

00:21:15.0906 2044  BMLoad - detected UnsignedFile.Multi.Generic (1)

00:21:15.0968 2044  [ B71549F23736ADF83A571061C47777FD ] Browser         C:\WINDOWS\System32\browser.dll

00:21:16.0093 2044  Browser - ok

00:21:16.0140 2044  [ B279426E3C0C344893ED78A613A73BDE ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys

00:21:16.0375 2044  BthEnum - ok

00:21:16.0406 2044  [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys

00:21:16.0656 2044  BthPan - ok

00:21:16.0703 2044  [ 592E1CEDBE314D0EF184DC6F46141E76 ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys

00:21:16.0796 2044  BTHPORT - ok

00:21:16.0828 2044  [ 26C601EF7525E31379744ABFC6F35A1B ] BthServ         C:\WINDOWS\System32\bthserv.dll

00:21:17.0078 2044  BthServ - ok

00:21:17.0093 2044  [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys

00:21:17.0375 2044  BTHUSB - ok

00:21:17.0468 2044  catchme - ok

00:21:17.0500 2044  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys

00:21:17.0750 2044  cbidf2k - ok

00:21:17.0765 2044  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

00:21:18.0046 2044  CCDECODE - ok

00:21:18.0187 2044  [ 1277AD8F053CC60C17CAFAB411F3CF40 ] ccSet_NAV       C:\WINDOWS\system32\drivers\NAV\1403000.024\ccSetx86.sys

00:21:18.0218 2044  ccSet_NAV - ok

00:21:18.0296 2044  [ 1277AD8F053CC60C17CAFAB411F3CF40 ] ccSet_NST       C:\WINDOWS\system32\drivers\NST\7DD03000.01A\ccSetx86.sys

00:21:18.0343 2044  ccSet_NST - ok

00:21:18.0359 2044  cd20xrnt - ok

00:21:18.0390 2044  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys

00:21:18.0625 2044  Cdaudio - ok

00:21:18.0656 2044  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys

00:21:18.0906 2044  Cdfs - ok

00:21:19.0000 2044  [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys

00:21:19.0062 2044  Cdrom - ok

00:21:19.0062 2044  Changer - ok

00:21:19.0109 2044  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc           C:\WINDOWS\system32\cisvc.exe

00:21:19.0359 2044  CiSvc - ok

00:21:19.0375 2044  [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe

00:21:19.0609 2044  ClipSrv - ok

00:21:19.0671 2044  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

00:21:19.0750 2044  clr_optimization_v2.0.50727_32 - ok

00:21:19.0781 2044  [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys

00:21:20.0031 2044  CmBatt - ok

00:21:20.0031 2044  CmdIde - ok

00:21:20.0062 2044  [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys

00:21:20.0296 2044  Compbatt - ok

00:21:20.0312 2044  COMSysApp - ok

00:21:20.0328 2044  Cpqarray - ok

00:21:20.0359 2044  [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll

00:21:20.0593 2044  CryptSvc - ok

00:21:20.0609 2044  dac2w2k - ok

00:21:20.0609 2044  dac960nt - ok

00:21:20.0671 2044  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll

00:21:20.0843 2044  DcomLaunch - ok

00:21:20.0859 2044  [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll

00:21:21.0093 2044  Dhcp - ok

00:21:21.0125 2044  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys

00:21:21.0390 2044  Disk - ok

00:21:21.0406 2044  dmadmin - ok

00:21:21.0468 2044  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys

00:21:21.0765 2044  dmboot - ok

00:21:21.0796 2044  [ 53720AB12B48719D00E327DA470A619A ] dmio            C:\WINDOWS\system32\drivers\dmio.sys

00:21:22.0078 2044  dmio - ok

00:21:22.0093 2044  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys

00:21:22.0328 2044  dmload - ok

00:21:22.0359 2044  [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver        C:\WINDOWS\System32\dmserver.dll

00:21:22.0593 2044  dmserver - ok

00:21:22.0656 2044  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys

00:21:22.0890 2044  DMusic - ok

00:21:22.0921 2044  [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll

00:21:23.0031 2044  Dnscache - ok

00:21:23.0046 2044  [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll

00:21:23.0281 2044  Dot3svc - ok

00:21:23.0500 2044  dpti2o - ok

00:21:23.0578 2044  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys

00:21:23.0968 2044  drmkaud - ok

00:21:24.0140 2044  [ 5D3AF97D5E7C87ABD12AE2CE4E35A827 ] DvmMDES         C:\SPLASH.SYS\config\DVMExportService.exe

00:21:24.0171 2044  DvmMDES ( UnsignedFile.Multi.Generic ) - warning

00:21:24.0171 2044  DvmMDES - detected UnsignedFile.Multi.Generic (1)

00:21:24.0218 2044  [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost         C:\WINDOWS\System32\eapsvc.dll

00:21:24.0875 2044  EapHost - ok

00:21:24.0984 2044  [ 85B8B4032A895A746D46A288A9B30DED ] eeCtrl          C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\eeCtrl.sys

00:21:25.0046 2044  eeCtrl - ok

00:21:25.0093 2044  [ F1D8A47EB1B21D52852B8AA41828F43B ] emc2bus         C:\WINDOWS\system32\DRIVERS\emc2bus.sys

00:21:25.0140 2044  emc2bus - ok

00:21:25.0171 2044  [ 282133592493EF042E08CD716702AEA5 ] emc2card        C:\WINDOWS\system32\DRIVERS\emc2card.sys

00:21:25.0250 2044  emc2card - ok

00:21:25.0281 2044  [ 465C48B5A805BD1588D1C742C56BA624 ] emc2gps         C:\WINDOWS\system32\DRIVERS\emc2gps.sys

00:21:25.0312 2044  emc2gps - ok

00:21:25.0359 2044  [ E4092C41A7ED451EF605C57CAC66FB8A ] emc2mdfl        C:\WINDOWS\system32\DRIVERS\emc2mdfl.sys

00:21:25.0375 2044  emc2mdfl - ok

00:21:25.0406 2044  [ 4F7D765A7A35728319B7DC1FC20F8247 ] emc2mdfl2       C:\WINDOWS\system32\DRIVERS\emc2mdfl2.sys

00:21:25.0437 2044  emc2mdfl2 - ok

00:21:25.0468 2044  [ 025F2DDC8B086A5504AF22216F414C02 ] emc2mdm         C:\WINDOWS\system32\DRIVERS\emc2mdm.sys

00:21:25.0562 2044  emc2mdm - ok

00:21:25.0593 2044  [ F2991A2E8654C50200C7A6E7570FC834 ] emc2mdm2        C:\WINDOWS\system32\DRIVERS\emc2mdm2.sys

00:21:25.0687 2044  emc2mdm2 - ok

00:21:25.0718 2044  [ 66926FE571BE7150A786320E52E67664 ] emc2nd5         C:\WINDOWS\system32\DRIVERS\emc2nd5.sys

00:21:25.0765 2044  emc2nd5 - ok

00:21:25.0796 2044  [ DE0E29F02DE89130FFD2F0676B74E7A4 ] emc2unic        C:\WINDOWS\system32\DRIVERS\emc2unic.sys

00:21:25.0906 2044  emc2unic - ok

00:21:25.0937 2044  [ B5A8A04A6E5B4E86B95B1553AA918F5F ] EraserUtilRebootDrv C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

00:21:25.0984 2044  EraserUtilRebootDrv - ok

00:21:26.0015 2044  [ 877C18558D70587AA7823A1A308AC96B ] ERSvc           C:\WINDOWS\System32\ersvc.dll

00:21:26.0312 2044  ERSvc - ok

00:21:26.0375 2044  [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog        C:\WINDOWS\system32\services.exe

00:21:26.0468 2044  Eventlog - ok

00:21:26.0515 2044  [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem     C:\WINDOWS\system32\es.dll

00:21:26.0609 2044  EventSystem - ok

00:21:26.0656 2044  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys

00:21:26.0906 2044  Fastfat - ok

00:21:26.0968 2044  [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll

00:21:27.0078 2044  FastUserSwitchingCompatibility - ok

00:21:27.0109 2044  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys

00:21:27.0343 2044  Fdc - ok

00:21:27.0375 2044  [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys

00:21:27.0609 2044  Fips - ok

00:21:27.0671 2044  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys

00:21:27.0921 2044  Flpydisk - ok

00:21:27.0937 2044  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys

00:21:28.0171 2044  FltMgr - ok

00:21:28.0218 2044  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

00:21:28.0250 2044  FontCache3.0.0.0 - ok

00:21:28.0281 2044  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys

00:21:28.0515 2044  Fs_Rec - ok

00:21:28.0531 2044  [ 8F1955CE42E1484714B542F341647778 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys

00:21:28.0765 2044  Ftdisk - ok

00:21:28.0812 2044  [ FF12FA487265DA2AC7DE4BE53F72FF1A ] FWLANUSB        C:\WINDOWS\system32\DRIVERS\fwlanusb.sys

00:21:28.0890 2044  FWLANUSB - ok

00:21:28.0937 2044  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys

00:21:29.0156 2044  Gpc - ok

00:21:29.0250 2044  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Programme\Google\Update\GoogleUpdate.exe

00:21:29.0296 2044  gupdate - ok

00:21:29.0312 2044  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Programme\Google\Update\GoogleUpdate.exe

00:21:29.0343 2044  gupdatem - ok

00:21:29.0390 2044  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe

00:21:29.0437 2044  gusvc - ok

00:21:29.0484 2044  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

00:21:29.0750 2044  HDAudBus - ok

00:21:29.0828 2044  [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

00:21:30.0078 2044  helpsvc - ok

00:21:30.0093 2044  HidServ - ok

00:21:30.0125 2044  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys

00:21:30.0343 2044  HidUsb - ok

00:21:30.0375 2044  [ ED29F14101523A6E0E808107405D452C ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll

00:21:30.0625 2044  hkmsvc - ok

00:21:30.0640 2044  hpn - ok

00:21:30.0687 2044  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys

00:21:30.0796 2044  HTTP - ok

00:21:30.0875 2044  [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll

00:21:31.0093 2044  HTTPFilter - ok

00:21:31.0093 2044  i2omgmt - ok

00:21:31.0109 2044  i2omp - ok

00:21:31.0140 2044  [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys

00:21:31.0390 2044  i8042prt - ok

00:21:31.0468 2044  [ 0D16E362B66A0C1D01B015F517129D13 ] IAANTMON        C:\Programme\Intel\Intel Matrix Storage Manager\IAANTMon.exe

00:21:31.0531 2044  IAANTMON - ok

00:21:31.0734 2044  [ 48846B31BE5A4FA662CCFDE7A1BA86B9 ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys

00:21:32.0343 2044  ialm - ok

00:21:32.0406 2044  [ 8EF427C54497C5F8A7A645990E4278C7 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys

00:21:32.0484 2044  iaStor - ok

00:21:32.0578 2044  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

00:21:32.0796 2044  idsvc - ok

00:21:32.0921 2044  [ C19BF2A07BE972A110220DF6B1E89D14 ] IDSxpx86        C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.0.36\Definitions\IPSDefs\20130403.001\IDSxpx86.sys

00:21:33.0031 2044  IDSxpx86 - ok

00:21:33.0062 2044  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys

00:21:33.0734 2044  Imapi - ok

00:21:33.0781 2044  [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService    C:\WINDOWS\system32\imapi.exe

00:21:34.0375 2044  ImapiService - ok

00:21:34.0390 2044  ini910u - ok

00:21:34.0578 2044  [ F9BB9063A6557098DBAF7396E026C922 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys

00:21:35.0156 2044  IntcAzAudAddService - ok

00:21:35.0187 2044  IntelIde - ok

00:21:35.0218 2044  [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys

00:21:35.0937 2044  intelppm - ok

00:21:36.0000 2044  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys

00:21:36.0250 2044  Ip6Fw - ok

00:21:36.0296 2044  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

00:21:36.0546 2044  IpFilterDriver - ok

00:21:36.0562 2044  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys

00:21:36.0812 2044  IpInIp - ok

00:21:36.0843 2044  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys

00:21:37.0093 2044  IpNat - ok

00:21:37.0187 2044  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys

00:21:37.0421 2044  IPSec - ok

00:21:37.0453 2044  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys

00:21:37.0562 2044  IRENUM - ok

00:21:37.0609 2044  [ 6DFB88F64135C525433E87648BDA30DE ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys

00:21:37.0812 2044  isapnp - ok

00:21:37.0875 2044  [ C2C1660DDCC9BD67EB98D6D5F91C107F ] JavaQuickStarterService C:\Programme\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe

00:21:37.0906 2044  JavaQuickStarterService - ok

00:21:37.0968 2044  [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys

00:21:38.0546 2044  Kbdclass - ok

00:21:38.0609 2044  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys

00:21:38.0859 2044  kmixer - ok

00:21:38.0921 2044  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys

00:21:39.0015 2044  KSecDD - ok

00:21:39.0078 2044  [ 2BBDCB79900990F0716DFCB714E72DE7 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll

00:21:39.0187 2044  LanmanServer - ok

00:21:39.0218 2044  [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll

00:21:39.0281 2044  lanmanworkstation - ok

00:21:39.0296 2044  lbrtfdc - ok

00:21:39.0312 2044  lgodd_filter - ok

00:21:39.0359 2044  [ DBAB4F8E598D32B285523432AD42FA06 ] lgsnd_filter    C:\WINDOWS\system32\drivers\lgsnd_filter.sys

00:21:39.0390 2044  lgsnd_filter ( UnsignedFile.Multi.Generic ) - warning

00:21:39.0390 2044  lgsnd_filter - detected UnsignedFile.Multi.Generic (1)

00:21:39.0421 2044  [ 636714B7D43C8D0C80449123FD266920 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll

00:21:39.0656 2044  LmHosts - ok

00:21:39.0718 2044  [ 112DB6314BB175BA5F27A66E11C01D77 ] massfilter      C:\WINDOWS\system32\drivers\massfilter.sys

00:21:39.0781 2044  massfilter - ok

00:21:39.0828 2044  [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys

00:21:39.0875 2044  MBAMProtector - ok

00:21:39.0921 2044  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler   C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe

00:21:39.0984 2044  MBAMScheduler - ok

00:21:40.0031 2044  [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService     C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe

00:21:40.0109 2044  MBAMService - ok

00:21:40.0140 2044  [ B7550A7107281D170CE85524B1488C98 ] Messenger       C:\WINDOWS\System32\msgsvc.dll

00:21:40.0812 2044  Messenger - ok

00:21:40.0859 2044  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys

00:21:41.0093 2044  mnmdd - ok

00:21:41.0125 2044  [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe

00:21:41.0359 2044  mnmsrvc - ok

00:21:41.0390 2044  [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys

00:21:41.0625 2044  Modem - ok

00:21:41.0703 2044  [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5 ] Monfilt         C:\WINDOWS\system32\drivers\Monfilt.sys

00:21:41.0937 2044  Monfilt - ok

00:21:41.0968 2044  [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys

00:21:42.0421 2044  Mouclass - ok

00:21:42.0453 2044  [ 66A6F73C74E1791464160A7065CE711A ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys

00:21:42.0687 2044  mouhid - ok

00:21:42.0703 2044  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys

00:21:42.0937 2044  MountMgr - ok

00:21:42.0984 2044  [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe

00:21:43.0031 2044  MozillaMaintenance - ok

00:21:43.0046 2044  mraid35x - ok

00:21:43.0062 2044  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys

00:21:43.0296 2044  MRxDAV - ok

00:21:43.0343 2044  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

00:21:43.0515 2044  MRxSmb - ok

00:21:43.0546 2044  [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC           C:\WINDOWS\system32\msdtc.exe

00:21:43.0781 2044  MSDTC - ok

00:21:43.0812 2044  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys

00:21:44.0125 2044  Msfs - ok

00:21:44.0125 2044  MSIServer - ok

00:21:44.0218 2044  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys

00:21:44.0515 2044  MSKSSRV - ok

00:21:44.0531 2044  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys

00:21:44.0828 2044  MSPCLOCK - ok

00:21:44.0890 2044  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys

00:21:45.0203 2044  MSPQM - ok

00:21:45.0218 2044  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys

00:21:45.0500 2044  mssmbios - ok

00:21:45.0546 2044  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys

00:21:45.0812 2044  MSTEE - ok

00:21:45.0859 2044  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys

00:21:46.0046 2044  Mup - ok

00:21:46.0062 2044  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

00:21:47.0078 2044  NABTSFEC - ok

00:21:47.0109 2044  [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent        C:\WINDOWS\System32\qagentrt.dll

00:21:47.0500 2044  napagent - ok

00:21:47.0562 2044  [ 241BD3019FB31E812A51B31B06906335 ] NAV             C:\Programme\Norton AntiVirus\Engine\20.3.0.36\ccSvcHst.exe

00:21:47.0625 2044  NAV - ok

00:21:47.0718 2044  [ 7D7A3BC6640C1A0D1442816B30856928 ] NAVENG          C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.0.36\Definitions\VirusDefs\20130404.003\NAVENG.SYS

00:21:47.0765 2044  NAVENG - ok

00:21:47.0828 2044  [ 28494C43D62AA7584BDCA2FADFBC4D11 ] NAVEX15         C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.0.36\Definitions\VirusDefs\20130404.003\NAVEX15.SYS

00:21:48.0031 2044  NAVEX15 - ok

00:21:48.0109 2044  [ 241BD3019FB31E812A51B31B06906335 ] NCO             C:\Programme\Norton Identity Safe\Engine\2013.3.0.26\ccSvcHst.exe

00:21:48.0156 2044  NCO - ok

00:21:48.0203 2044  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys

00:21:48.0515 2044  NDIS - ok

00:21:48.0546 2044  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys

00:21:48.0843 2044  NdisIP - ok

00:21:48.0890 2044  [ E87C0CEE30B5F6F4A2B80011941DC5BD ] Ndisipo         C:\WINDOWS\system32\DRIVERS\ndisipo.sys

00:21:48.0921 2044  Ndisipo ( UnsignedFile.Multi.Generic ) - warning

00:21:48.0921 2044  Ndisipo - detected UnsignedFile.Multi.Generic (1)

00:21:48.0968 2044  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys

00:21:49.0046 2044  NdisTapi - ok

00:21:49.0078 2044  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys

00:21:49.0390 2044  Ndisuio - ok

00:21:49.0406 2044  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys

00:21:49.0718 2044  NdisWan - ok

00:21:49.0750 2044  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys

00:21:49.0828 2044  NDProxy - ok

00:21:49.0843 2044  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys

00:21:50.0156 2044  NetBIOS - ok

00:21:50.0203 2044  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys

00:21:50.0515 2044  NetBT - ok

00:21:50.0562 2044  [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE          C:\WINDOWS\system32\netdde.exe

00:21:50.0859 2044  NetDDE - ok

00:21:50.0875 2044  [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe

00:21:51.0171 2044  NetDDEdsdm - ok

00:21:51.0203 2044  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon        C:\WINDOWS\system32\lsass.exe

00:21:51.0515 2044  Netlogon - ok

00:21:51.0546 2044  [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman          C:\WINDOWS\System32\netman.dll

00:21:51.0843 2044  Netman - ok

00:21:51.0906 2044  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

00:21:51.0968 2044  NetTcpPortSharing - ok

00:21:52.0015 2044  [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla             C:\WINDOWS\System32\mswsock.dll

00:21:52.0109 2044  Nla - ok

00:21:52.0265 2044  [ BB17BC54237DE4F4CA595E63BDA9BC2B ] NOBU            C:\Programme\Symantec\Norton Online Backup\NOBuAgent.exe

00:21:52.0718 2044  NOBU - ok

00:21:52.0750 2044  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys

00:21:53.0375 2044  Npfs - ok

00:21:53.0421 2044  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys

00:21:53.0781 2044  Ntfs - ok

00:21:53.0828 2044  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe

00:21:54.0156 2044  NtLmSsp - ok

00:21:54.0203 2044  [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll

00:21:54.0593 2044  NtmsSvc - ok

00:21:54.0656 2044  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys

00:21:54.0968 2044  Null - ok

00:21:55.0062 2044  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

00:21:55.0343 2044  NwlnkFlt - ok

00:21:55.0406 2044  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

00:21:55.0750 2044  NwlnkFwd - ok

00:21:55.0890 2044  [ F84785660305B9B903FB3BCA8BA29837 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys

00:21:56.0546 2044  Parport - ok

00:21:56.0578 2044  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys

00:21:56.0890 2044  PartMgr - ok

00:21:56.0937 2044  [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys

00:21:57.0234 2044  ParVdm - ok

00:21:57.0250 2044  PCASp50 - ok

00:21:57.0312 2044  [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys

00:21:57.0625 2044  PCI - ok

00:21:57.0640 2044  PCIDump - ok

00:21:57.0640 2044  PCIIde - ok

00:21:57.0703 2044  [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys

00:21:58.0031 2044  Pcmcia - ok

00:21:58.0046 2044  PDCOMP - ok

00:21:58.0046 2044  PDFRAME - ok

00:21:58.0062 2044  PDRELI - ok

00:21:58.0078 2044  PDRFRAME - ok

00:21:58.0078 2044  perc2 - ok

00:21:58.0093 2044  perc2hib - ok

00:21:58.0140 2044  [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay        C:\WINDOWS\system32\services.exe

00:21:58.0218 2044  PlugPlay - ok

00:21:58.0234 2044  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe

00:21:58.0515 2044  PolicyAgent - ok

00:21:58.0531 2044  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys

00:21:58.0781 2044  PptpMiniport - ok

00:21:58.0812 2044  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe

00:21:59.0031 2044  ProtectedStorage - ok

00:21:59.0125 2044  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys

00:21:59.0390 2044  PSched - ok

00:21:59.0437 2044  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys

00:21:59.0984 2044  Ptilink - ok

00:22:00.0000 2044  ql1080 - ok

00:22:00.0015 2044  Ql10wnt - ok

00:22:00.0031 2044  ql12160 - ok

00:22:00.0046 2044  ql1240 - ok

00:22:00.0062 2044  ql1280 - ok

00:22:00.0156 2044  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys

00:22:00.0515 2044  RasAcd - ok

00:22:00.0625 2044  [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto         C:\WINDOWS\System32\rasauto.dll

00:22:00.0921 2044  RasAuto - ok

00:22:01.0015 2044  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

00:22:01.0625 2044  Rasl2tp - ok

00:22:01.0687 2044  [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan          C:\WINDOWS\System32\rasmans.dll

00:22:01.0968 2044  RasMan - ok

00:22:02.0000 2044  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys

00:22:02.0218 2044  RasPppoe - ok

00:22:02.0234 2044  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys

00:22:02.0937 2044  Raspti - ok

00:22:02.0968 2044  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys

00:22:03.0609 2044  Rdbss - ok

00:22:03.0640 2044  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

00:22:04.0234 2044  RDPCDD - ok

00:22:04.0296 2044  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys

00:22:04.0406 2044  RDPWD - ok

00:22:04.0421 2044  [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe

00:22:05.0125 2044  RDSessMgr - ok

00:22:05.0171 2044  [ ED761D453856F795A7FE056E42C36365 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys

00:22:05.0734 2044  redbook - ok

00:22:05.0781 2044  [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll

00:22:06.0390 2044  RemoteAccess - ok

00:22:06.0437 2044  [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys

00:22:07.0031 2044  RFCOMM - ok

00:22:07.0062 2044  [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator      C:\WINDOWS\system32\locator.exe

00:22:07.0687 2044  RpcLocator - ok

00:22:07.0718 2044  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs           C:\WINDOWS\System32\rpcss.dll

00:22:07.0890 2044  RpcSs - ok

00:22:07.0921 2044  [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP            C:\WINDOWS\system32\rsvp.exe

00:22:08.0500 2044  RSVP - ok

00:22:08.0546 2044  [ 85334AA5417BA063E9AAE58EB3C7280D ] rtl8187Se       C:\WINDOWS\system32\DRIVERS\rtl8187Se.sys

00:22:08.0687 2044  rtl8187Se - ok

00:22:08.0750 2044  [ 839141088AD7EE90F5B441B2D1AFD22C ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys

00:22:08.0843 2044  RTLE8023xp - ok

00:22:08.0875 2044  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs           C:\WINDOWS\system32\lsass.exe

00:22:09.0515 2044  SamSs - ok

00:22:09.0562 2044  [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe

00:22:10.0343 2044  SCardSvr - ok

00:22:10.0375 2044  [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule        C:\WINDOWS\system32\schedsvc.dll

00:22:10.0968 2044  Schedule - ok

00:22:11.0000 2044  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys

00:22:11.0468 2044  Secdrv - ok

00:22:11.0500 2044  [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon        C:\WINDOWS\System32\seclogon.dll

00:22:12.0296 2044  seclogon - ok

00:22:12.0390 2044  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS            C:\WINDOWS\system32\sens.dll

00:22:13.0093 2044  SENS - ok

00:22:13.0203 2044  [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial          C:\WINDOWS\system32\drivers\Serial.sys

00:22:13.0984 2044  Serial - ok

00:22:14.0062 2044  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\DRIVERS\sfloppy.sys

00:22:14.0625 2044  Sfloppy - ok

00:22:14.0671 2044  [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll

00:22:15.0359 2044  SharedAccess - ok

00:22:15.0390 2044  [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

00:22:15.0468 2044  ShellHWDetection - ok

00:22:15.0468 2044  Simbad - ok

00:22:15.0578 2044  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe

00:22:15.0656 2044  SkypeUpdate - ok

00:22:15.0703 2044  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys

00:22:16.0375 2044  SLIP - ok

00:22:16.0437 2044  [ A4E2792D7BBF7B9A05D61B78D78EE6A3 ] Sony_EricssonWWSC C:\WINDOWS\system32\DRIVERS\emc2scard.sys

00:22:16.0453 2044  Sony_EricssonWWSC - ok

00:22:16.0468 2044  Sparrow - ok

00:22:16.0515 2044  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys

00:22:17.0218 2044  splitter - ok

00:22:17.0250 2044  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe

00:22:17.0328 2044  Spooler - ok

00:22:17.0390 2044  [ 50FA898F8C032796D3B1B9951BB5A90F ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys

00:22:17.0890 2044  sr - ok

00:22:17.0937 2044  [ FE77A85495065F3AD59C5C65B6C54182 ] srservice       C:\WINDOWS\system32\srsvc.dll

00:22:18.0390 2044  srservice - ok

00:22:18.0453 2044  [ 9469FDADC50C9D07621BE231DD792129 ] SRS_PostInstaller C:\Programme\SRS Labs\WOWHD and TSXT Driver\SRS_PostInstaller.exe

00:22:18.0468 2044  SRS_PostInstaller ( UnsignedFile.Multi.Generic ) - warning

00:22:18.0468 2044  SRS_PostInstaller - detected UnsignedFile.Multi.Generic (1)

00:22:18.0531 2044  [ 0A8F71E1DB5432A5B9285111421E77EC ] SRTSP           C:\WINDOWS\system32\drivers\NAV\1403000.024\SRTSP.SYS

00:22:18.0609 2044  SRTSP - ok

00:22:18.0656 2044  [ FE9BD381778A344F0E39AE2D5E607D7F ] SRTSPX          C:\WINDOWS\system32\drivers\NAV\1403000.024\SRTSPX.SYS

00:22:18.0687 2044  SRTSPX - ok

00:22:18.0750 2044  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys

00:22:18.0921 2044  Srv - ok

00:22:18.0968 2044  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll

00:22:19.0390 2044  SSDPSRV - ok

00:22:19.0453 2044  [ BC2C5985611C5356B24AEB370953DED9 ] stisvc          C:\WINDOWS\system32\wiaservc.dll

00:22:20.0078 2044  stisvc - ok

00:22:20.0109 2044  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys

00:22:20.0718 2044  streamip - ok

00:22:20.0750 2044  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys

00:22:21.0312 2044  swenum - ok

00:22:21.0343 2044  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys

00:22:21.0984 2044  swmidi - ok

00:22:22.0000 2044  SwPrv - ok

00:22:22.0015 2044  symc810 - ok

00:22:22.0015 2044  symc8xx - ok

00:22:22.0109 2044  [ 6EA77FF0CE4E839EA8B1CEA5F5B28C00 ] SymDS           C:\WINDOWS\system32\drivers\NAV\1403000.024\SYMDS.SYS

00:22:22.0171 2044  SymDS - ok

00:22:22.0250 2044  [ 1773FB2920EBB3A8BAD0360618091470 ] SymEFA          C:\WINDOWS\system32\drivers\NAV\1403000.024\SYMEFA.SYS

00:22:22.0375 2044  SymEFA - ok

00:22:22.0421 2044  [ C940F10C31E2C60CC967FFD6A370720C ] SymEvent        C:\WINDOWS\system32\Drivers\SYMEVENT.SYS

00:22:22.0453 2044  SymEvent - ok

00:22:22.0500 2044  [ 8C9B9036E301A9965CF15BEC91C58A12 ] SymIRON         C:\WINDOWS\system32\drivers\NAV\1403000.024\Ironx86.SYS

00:22:22.0531 2044  SymIRON - ok

00:22:22.0593 2044  [ EC979002EBA25C9D109B2FE0E03457DA ] SYMTDI          C:\WINDOWS\system32\drivers\NAV\1403000.024\SYMTDI.SYS

00:22:22.0718 2044  SYMTDI - ok

00:22:22.0718 2044  sym_hi - ok

00:22:22.0734 2044  sym_u3 - ok

00:22:22.0765 2044  [ AEE6E411A915F50101895BA8DC5C15D4 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys

00:22:22.0828 2044  SynTP - ok

00:22:22.0875 2044  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys

00:22:23.0531 2044  sysaudio - ok

00:22:23.0578 2044  [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe

00:22:24.0234 2044  SysmonLog - ok

00:22:24.0281 2044  [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll

00:22:24.0937 2044  TapiSrv - ok

00:22:24.0984 2044  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys

00:22:25.0078 2044  Tcpip - ok

00:22:25.0109 2044  [ FBF08035B75E52D99D81EA8EDDBA5F9C ] tcpipBM         C:\WINDOWS\system32\drivers\tcpipBM.sys

00:22:25.0140 2044  tcpipBM ( UnsignedFile.Multi.Generic ) - warning

00:22:25.0140 2044  tcpipBM - detected UnsignedFile.Multi.Generic (1)

00:22:25.0187 2044  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys

00:22:25.0828 2044  TDPIPE - ok

00:22:25.0875 2044  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys

00:22:26.0656 2044  TDTCP - ok

00:22:26.0687 2044  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys

00:22:27.0281 2044  TermDD - ok

00:22:27.0328 2044  [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService     C:\WINDOWS\System32\termsrv.dll

00:22:28.0078 2044  TermService - ok

00:22:28.0140 2044  [ 2DB7D303C36DDD055215052F118E8E75 ] Themes          C:\WINDOWS\System32\shsvcs.dll

00:22:28.0218 2044  Themes - ok

00:22:28.0234 2044  TosIde - ok

00:22:28.0265 2044  [ 626504572B175867F30F3215C04B3E2F ] TrkWks          C:\WINDOWS\system32\trkwks.dll

00:22:28.0937 2044  TrkWks - ok

00:22:28.0984 2044  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys

00:22:29.0609 2044  Udfs - ok

00:22:29.0609 2044  ultra - ok

00:22:29.0656 2044  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys

00:22:30.0312 2044  Update - ok

00:22:30.0359 2044  [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost        C:\WINDOWS\System32\upnphost.dll

00:22:30.0859 2044  upnphost - ok

00:22:30.0906 2044  [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS             C:\WINDOWS\System32\ups.exe

00:22:31.0468 2044  UPS - ok

00:22:31.0500 2044  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys

00:22:32.0171 2044  usbccgp - ok

00:22:32.0265 2044  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys

00:22:32.0984 2044  usbehci - ok

00:22:33.0000 2044  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys

00:22:33.0609 2044  usbhub - ok

00:22:33.0671 2044  [ 8BBCA23905081994E8AD00C037AA57E7 ] Usbnic          C:\WINDOWS\system32\DRIVERS\Usbnic.sys

00:22:33.0718 2044  Usbnic - ok

00:22:33.0750 2044  [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

00:22:34.0343 2044  usbstor - ok

00:22:34.0390 2044  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys

00:22:35.0015 2044  usbuhci - ok

00:22:35.0062 2044  [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys

00:22:35.0625 2044  usbvideo - ok

00:22:35.0671 2044  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys

00:22:36.0265 2044  VgaSave - ok

00:22:36.0281 2044  ViaIde - ok

00:22:36.0328 2044  [ 280757BAF6030242424A9BE5E3BD562B ] vm331avs        C:\WINDOWS\system32\Drivers\vm331avs.sys

00:22:36.0531 2044  vm331avs - ok

00:22:36.0687 2044  [ 8719BCFBAA239CCDAA3054973661F3E6 ] VMCService      C:\Programme\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe

00:22:36.0718 2044  VMCService ( UnsignedFile.Multi.Generic ) - warning

00:22:36.0718 2044  VMCService - detected UnsignedFile.Multi.Generic (1)

00:22:36.0750 2044  [ 94623623B4E319ADF68C04448D4EDF30 ] vodafone_K3805-z_dc_enum C:\WINDOWS\system32\DRIVERS\vodafone_K3805-z_dc_enum.sys

00:22:37.0062 2044  vodafone_K3805-z_dc_enum - ok

00:22:37.0109 2044  [ A5A712F4E880874A477AF790B5186E1D ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys

00:22:37.0812 2044  VolSnap - ok

00:22:37.0859 2044  [ 68F106273BE29E7B7EF8266977268E78 ] VSS             C:\WINDOWS\System32\vssvc.exe

00:22:38.0312 2044  VSS - ok

00:22:38.0375 2044  [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time         C:\WINDOWS\system32\w32time.dll

00:22:39.0109 2044  W32Time - ok

00:22:39.0171 2044  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys

00:22:39.0796 2044  Wanarp - ok

00:22:39.0843 2044  [ D918617B46457B9AC28027722E30F647 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys

00:22:39.0921 2044  Wdf01000 - ok

00:22:39.0937 2044  WDICA - ok

00:22:39.0984 2044  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys

00:22:40.0562 2044  wdmaud - ok

00:22:40.0609 2044  [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient       C:\WINDOWS\System32\webclnt.dll

00:22:41.0218 2044  WebClient - ok

00:22:41.0312 2044  [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll

00:22:42.0015 2044  winmgmt - ok

00:22:42.0125 2044  [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB          C:\WINDOWS\system32\DRIVERS\WinUSB.sys

00:22:42.0156 2044  WinUSB - ok

00:22:42.0203 2044  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll

00:22:42.0296 2044  WmdmPmSN - ok

00:22:42.0359 2044  [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys

00:22:43.0062 2044  WmiAcpi - ok

00:22:43.0109 2044  [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe

00:22:43.0687 2044  WmiApSrv - ok

00:22:43.0781 2044  [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe

00:22:43.0937 2044  WMPNetworkSvc - ok

00:22:44.0015 2044  [ 017695393AFFFED8DE58ABD1B085BE6D ] WMZuneComm      C:\Programme\Zune\WMZuneComm.exe

00:22:44.0062 2044  WMZuneComm - ok

00:22:44.0093 2044  [ ED55357FF5D8551F9D105163BCB70408 ] wowfilter       C:\WINDOWS\system32\drivers\wowfilter.sys

00:22:44.0109 2044  wowfilter ( UnsignedFile.Multi.Generic ) - warning

00:22:44.0109 2044  wowfilter - detected UnsignedFile.Multi.Generic (1)

00:22:44.0156 2044  [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys

00:22:44.0218 2044  WpdUsb - ok

00:22:44.0250 2044  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys

00:22:44.0843 2044  WS2IFSL - ok

00:22:44.0921 2044  [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc          C:\WINDOWS\system32\wscsvc.dll

00:22:45.0484 2044  wscsvc - ok

00:22:45.0578 2044  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

00:22:46.0109 2044  WSTCODEC - ok

00:22:46.0140 2044  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv        C:\WINDOWS\system32\wuauserv.dll

00:22:46.0718 2044  wuauserv - ok

00:22:46.0781 2044  [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys

00:22:46.0859 2044  WudfPf - ok

00:22:46.0921 2044  [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys

00:22:46.0953 2044  WudfRd - ok

00:22:46.0984 2044  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll

00:22:47.0031 2044  WudfSvc - ok

00:22:47.0078 2044  [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll

00:22:47.0687 2044  WZCSVC - ok

00:22:47.0750 2044  [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll

00:22:48.0328 2044  xmlprov - ok

00:22:48.0406 2044  [ AE279CD76B38FC079EEC3CA6D65A5926 ] zumbus          C:\WINDOWS\system32\DRIVERS\zumbus.sys

00:22:48.0421 2044  zumbus ( UnsignedFile.Multi.Generic ) - warning

00:22:48.0421 2044  zumbus - detected UnsignedFile.Multi.Generic (1)

00:22:48.0468 2044  [ 37F339B64F19E2775284ED7161B96683 ] ZuneBusEnum     C:\Programme\Zune\ZuneBusEnum.exe

00:22:48.0515 2044  ZuneBusEnum - ok

00:22:48.0718 2044  [ 1076DF9ADE4E13EA3BF39D2165AEB903 ] ZuneNetworkSvc  C:\Programme\Zune\ZuneNss.exe

00:22:49.0343 2044  ZuneNetworkSvc - ok

00:22:49.0390 2044  [ DE1CDB333A402B279F04D627122FA08E ] ZuneWlanCfgSvc  C:\Programme\Zune\ZuneWlanCfgSvc.exe

00:22:49.0468 2044  ZuneWlanCfgSvc - ok

00:22:49.0531 2044  ================ Scan global ===============================

00:22:49.0578 2044  [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll

00:22:49.0625 2044  [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll

00:22:49.0656 2044  [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll

00:22:49.0687 2044  [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe

00:22:49.0687 2044  [Global] - ok

00:22:49.0687 2044  ================ Scan MBR ==================================

00:22:49.0718 2044  [ D0E3B597D866A08D68AB4778454119C9 ] \Device\Harddisk0\DR0

00:22:58.0859 2044  \Device\Harddisk0\DR0 - ok

00:22:58.0859 2044  ================ Scan VBR ==================================

00:22:58.0890 2044  [ 886FB2252BCE65EF33B272FF2CCEF42D ] \Device\Harddisk0\DR0\Partition1

00:22:58.0890 2044  \Device\Harddisk0\DR0\Partition1 - ok

00:22:58.0906 2044  [ C119F1340ECE5B531559F290735D3126 ] \Device\Harddisk0\DR0\Partition2

00:22:58.0921 2044  \Device\Harddisk0\DR0\Partition2 - ok

00:22:58.0921 2044  ============================================================

00:22:58.0921 2044  Scan finished

00:22:58.0921 2044  ============================================================

00:22:59.0062 4720  Detected object count: 10

00:22:59.0062 4720  Actual detected object count: 10

00:23:34.0562 4720  avmeject ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0562 4720  avmeject ( UnsignedFile.Multi.Generic ) - User select action: Skip 

00:23:34.0562 4720  BMLoad ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0562 4720  BMLoad ( UnsignedFile.Multi.Generic ) - User select action: Skip 

00:23:34.0562 4720  DvmMDES ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0562 4720  DvmMDES ( UnsignedFile.Multi.Generic ) - User select action: Skip 

00:23:34.0578 4720  lgsnd_filter ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0578 4720  lgsnd_filter ( UnsignedFile.Multi.Generic ) - User select action: Skip 

00:23:34.0578 4720  Ndisipo ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0578 4720  Ndisipo ( UnsignedFile.Multi.Generic ) - User select action: Skip 

00:23:34.0578 4720  SRS_PostInstaller ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0578 4720  SRS_PostInstaller ( UnsignedFile.Multi.Generic ) - User select action: Skip 

00:23:34.0593 4720  tcpipBM ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0593 4720  tcpipBM ( UnsignedFile.Multi.Generic ) - User select action: Skip 

00:23:34.0593 4720  VMCService ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0593 4720  VMCService ( UnsignedFile.Multi.Generic ) - User select action: Skip 

00:23:34.0593 4720  wowfilter ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0593 4720  wowfilter ( UnsignedFile.Multi.Generic ) - User select action: Skip 

00:23:34.0609 4720  zumbus ( UnsignedFile.Multi.Generic ) - skipped by user

00:23:34.0609 4720  zumbus ( UnsignedFile.Multi.Generic ) - User select action: Skip

PS: die Fehlermeldungen beim Starten und Abmelden von Windows haben sich glaube ich auf Null minimiert - das ist doch auch schon mal ein Erfolg ;-)