Scherrd

Trojan.GenericKD.1652455 kann nicht gelöscht werden

Recommended Posts

Hi und Herzlich Willkommen beim Emsisoft Support Forum!

Systemscan mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit

(Wenn du nicht sicher bist: Start > Computer (Rechtsklick) > Eigenschaften)

  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Scan.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Bitte beide Logfiles anhängen

Share this post


Link to post
Share on other sites

Hi,

die Programme bitte immer auf dem Desktop speichern und nicht nur auf Ausführen klicken, somit werden sie aus dem Temp-Ordner ausgeführt und funktionieren nicht richtig.

Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen.

Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop

  • Starte die TDSSKiller.exe
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und speichere das Logfile.

    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern ( Meistens C:\ )

    Als Beispiel: C:\TDSSKiller.<version_date_time>log.txt

Poste den Inhalt bitte hier in deinen Thread.

Share this post


Link to post
Share on other sites

22:29:49.0078 0x0344  TDSS rootkit removing tool 3.0.0.34 Apr 29 2014 18:20:10
22:29:51.0093 0x0344  ============================================================
22:29:51.0093 0x0344  Current date / time: 2014/05/06 22:29:51.0093
22:29:51.0093 0x0344  SystemInfo:
22:29:51.0093 0x0344 
22:29:51.0093 0x0344  OS Version: 5.1.2600 ServicePack: 3.0
22:29:51.0093 0x0344  Product type: Workstation
22:29:51.0093 0x0344  ComputerName: LAPTOP
22:29:51.0093 0x0344  UserName: Daniel Scherr
22:29:51.0093 0x0344  Windows directory: C:\WINDOWS
22:29:51.0093 0x0344  System windows directory: C:\WINDOWS
22:29:51.0093 0x0344  Processor architecture: Intel x86
22:29:51.0093 0x0344  Number of processors: 2
22:29:51.0093 0x0344  Page size: 0x1000
22:29:51.0093 0x0344  Boot type: Normal boot
22:29:51.0093 0x0344  ============================================================
22:29:51.0093 0x0344  BG loaded
22:29:55.0187 0x0344  System UUID: {BE93606F-32D6-9DE8-9622-76E207BA13FE}
22:30:06.0406 0x0344  Drive \Device\Harddisk0\DR0 - Size: 0x174A446000 (93.16 Gb), SectorSize: 0x200, Cylinders: 0x3279, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
22:30:06.0437 0x0344  ============================================================
22:30:06.0437 0x0344  \Device\Harddisk0\DR0:
22:30:06.0484 0x0344  MBR partitions:
22:30:06.0484 0x0344  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xAC41861
22:30:06.0484 0x0344  \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0xAC418A0, BlocksNum 0xE0F1F0
22:30:06.0484 0x0344  ============================================================
22:30:06.0984 0x0344  C: <-> \Device\Harddisk0\DR0\Partition1
22:30:07.0000 0x0344  ============================================================
22:30:07.0000 0x0344  Initialize success
22:30:07.0000 0x0344  ============================================================
22:31:15.0312 0x0fc4  ============================================================
22:31:15.0312 0x0fc4  Scan started
22:31:15.0312 0x0fc4  Mode: Manual;
22:31:15.0312 0x0fc4  ============================================================
22:31:15.0312 0x0fc4  KSN ping started
22:31:29.0031 0x0fc4  KSN ping finished: true
22:31:35.0031 0x0fc4  ================ Scan system memory ========================
22:31:35.0046 0x0fc4  System memory - ok
22:31:35.0046 0x0fc4  ================ Scan services =============================
22:31:36.0437 0x0fc4  [ FFE988E896F2777F490A56531A3BEF24, D9A8E09DC6669C59281CD0EB7BAEAB321AE76D4A39DAE4E37A25240E1B1AE6DD ] a2acc           C:\PROGRAMME\EMSISOFT ANTI-MALWARE\a2accx86.sys
22:31:36.0531 0x0fc4  a2acc - ok
22:31:40.0062 0x0fc4  [ 133E9D8945F8ADAA60101902DB7467B3, 110941D28A68D59DBA18F4A6C4C4D44577C4F06202E2AC0E605BD7EBD3EA5446 ] a2AntiMalware   C:\Programme\Emsisoft Anti-Malware\a2service.exe
22:31:40.0265 0x0fc4  a2AntiMalware - ok
22:31:40.0546 0x0fc4  [ B0CC0B50441372157F31C4C023D43A3E, A0FCC03588C06E42D3B8465AC7D0F7A909E8CABEEE3C82B3CBD68F150D7692EE ] A2DDA           C:\Programme\Emsisoft Anti-Malware\a2ddax86.sys
22:31:40.0562 0x0fc4  A2DDA - ok
22:31:40.0703 0x0fc4  [ 8DEA3FE12A6686573F16A06AD95D7AB9, 7C3ED19440088F7EE28F8A527DDABDAFD8C5321002B2847907F4669CEE010F72 ] a2util          C:\Programme\Emsisoft Anti-Malware\a2util32.sys
22:31:40.0953 0x0fc4  a2util - ok
22:31:50.0234 0x0fc4  Abiosdsk - ok
22:31:59.0515 0x0fc4  abp480n5 - ok
22:31:59.0640 0x0fc4  [ 2AD11B75224BC6C54735FB6853105B8B, FDEEEF3CF0B01EE4CE127D690213E54BE9B0DB2C6BADD35ECE57C3591F654C5A ] Accelerometer   C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
22:31:59.0640 0x0fc4  Accelerometer - ok
22:32:00.0234 0x0fc4  [ 419C06524DC5A79BAAD9A67339C1C65C, 5310164AE5B9D71CF55FA3106873560A2F789DA90A447ABFE72900AB65FEB0CE ] ACDaemon        C:\Programme\Gemeinsame Dateien\ArcSoft\Connection Service\Bin\ACService.exe
22:32:00.0312 0x0fc4  ACDaemon - ok
22:32:00.0609 0x0fc4  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:32:00.0984 0x0fc4  ACPI - ok
22:32:01.0171 0x0fc4  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
22:32:01.0390 0x0fc4  ACPIEC - ok
22:32:01.0859 0x0fc4  [ 7356EFF52AD50B8946D346002118CE62, 4AFE5F103989B78C1FE48A06CD95054D9AEAFFB018C2F89703D4EEA16C20F0DA ] ADIHdAudAddService C:\WINDOWS\system32\drivers\ADIHdAud.sys
22:32:01.0859 0x0fc4  ADIHdAudAddService - ok
22:32:02.0593 0x0fc4  [ 7C7E868E1D8096ED08D80FF7712BB9D8, EB4438F3CC377728173E018A763F0D0A8D5BBA4A289F554036D06B24030D2D62 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:32:03.0390 0x0fc4  AdobeFlashPlayerUpdateSvc - ok
22:32:03.0484 0x0fc4  adpu160m - ok
22:32:03.0656 0x0fc4  [ FFF87A9B1AB36EE4B7BEC98A4CB01B79, EC11E349E6236E7384E689ED8CE2876DD358AF6E820F1D99B7E269AB6998C5D3 ] AEAudio         C:\WINDOWS\system32\drivers\AEAudio.sys
22:32:03.0734 0x0fc4  AEAudio - ok
22:32:03.0921 0x0fc4  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
22:32:03.0937 0x0fc4  aec - ok
22:32:04.0062 0x0fc4  [ A7B8A3A79D35215D798A300DF49ED23F, D441633C0F8E22F8976B95D6A3DCD552AA07C616AC5FE4379472954F7BE6075E ] Afc             C:\WINDOWS\system32\drivers\Afc.sys
22:32:04.0156 0x0fc4  Afc - ok
22:32:04.0343 0x0fc4  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
22:32:04.0375 0x0fc4  AFD - ok
22:32:05.0343 0x0fc4  [ 9C7B1314D5E1212BD3D654177C06E24D, 04FDD43F78C7A3D0E15794CA9F5B7E1D3BDFAF0F5351BA6446B8AFB587199255 ] AgereSoftModem  C:\WINDOWS\system32\DRIVERS\AGRSM.sys
22:32:06.0562 0x0fc4  AgereSoftModem - ok
22:32:06.0578 0x0fc4  Aha154x - ok
22:32:06.0750 0x0fc4  aic78u2 - ok
22:32:06.0765 0x0fc4  aic78xx - ok
22:32:06.0828 0x0fc4  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
22:32:07.0343 0x0fc4  Alerter - ok
22:32:07.0375 0x0fc4  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
22:32:07.0500 0x0fc4  ALG - ok
22:32:07.0593 0x0fc4  [ 1140AB9938809700B46BB88E46D72A96, 369379ECC5941ACE984A7F31EAABB66A2E693EDBADA639B86D26FD681D45608E ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
22:32:07.0625 0x0fc4  AliIde - ok
22:32:07.0640 0x0fc4  amsint - ok
22:32:08.0843 0x0fc4  [ 4D282B9C5BB05DF92C9F3977DFB9F916, E6D49ED0D5FA26F2936FC97A0F1DFA38D1066AAF2EEFCE2931AF21B2CBE54CAD ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
22:32:09.0500 0x0fc4  AntiVirSchedulerService - ok
22:32:09.0750 0x0fc4  [ 65AF41A7A2C5B6693E1B4164E7632C3E, BA1DC45D7BB5307BD418D2BDFDBD1DD593439245A0A3F65FE6287F6F5198B999 ] AntiVirService  C:\Programme\Avira\AntiVir Desktop\avguard.exe
22:32:09.0765 0x0fc4  AntiVirService - ok
22:32:09.0812 0x0fc4  [ B9B27616DC541945737B837DA374147A, FDE487BEE39B26C80E33AC789AB6A20955440D6EB1827A91A0CDB95D805CA43E ] AnyDVD          C:\WINDOWS\system32\Drivers\AnyDVD.sys
22:32:09.0812 0x0fc4  AnyDVD - ok
22:32:10.0250 0x0fc4  [ A5299D04ED225D64CF07A568A3E1BF8C, 6F7E73893127BADC8C9815E9BCC0EB5F6584E254D0D09A0B6A680704C71E0A90 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:32:10.0250 0x0fc4  Apple Mobile Device - ok
22:32:10.0375 0x0fc4  [ D45960BE52C3C610D361977057F98C54, 9186589B502F46B47672CFB8EBD558D51B0F3CBFE4E0DDBA625A4265236518CE ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
22:32:10.0609 0x0fc4  AppMgmt - ok
22:32:10.0687 0x0fc4  [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:32:10.0687 0x0fc4  Arp1394 - ok
22:32:10.0703 0x0fc4  asc - ok
22:32:10.0734 0x0fc4  asc3350p - ok
22:32:10.0750 0x0fc4  asc3550 - ok
22:32:11.0343 0x0fc4  [ 47589CC135E28532AFC39394BBF87F0D, 75368012C742E8F6488813638A9996EE0CB83A18051618E5B351FDD2FA8D76C6 ] ASChannel       C:\Programme\HPQ\IAM\Bin\ASChnl.dll
22:32:11.0343 0x0fc4  ASChannel - ok
22:32:12.0312 0x0fc4  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:32:12.0921 0x0fc4  aspnet_state - ok
22:32:12.0968 0x0fc4  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:32:13.0375 0x0fc4  AsyncMac - ok
22:32:13.0437 0x0fc4  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
22:32:13.0468 0x0fc4  atapi - ok
22:32:13.0468 0x0fc4  Atdisk - ok
22:32:13.0875 0x0fc4  [ B779BDC602D43FA6DC93BAAB1FAC0483, 2078E7421E30AD2369718E63C3CB280D6D78EC3EB29D140B636FEB07D54FEAC1 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
22:32:13.0890 0x0fc4  Ati HotKey Poller - ok
22:32:15.0171 0x0fc4  [ 35CFDF8AEA0F8DB46AFE3C55DB786DA3, 585B53C4118C50F5D7C6CDB4B15AB08FE97FC1FE8CAB0FA4BD7200857DECAC09 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:32:15.0218 0x0fc4  ati2mtag - ok
22:32:15.0359 0x0fc4  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:32:15.0421 0x0fc4  Atmarpc - ok
22:32:15.0531 0x0fc4  [ 56E6740FCBD672CF61FA8CDAA607FFD5, 9382BD8031580B38682872D3BB462BFE807A5BFC70F8EC9A37F559B098D527B9 ] ATSWPDRV        C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys
22:32:15.0531 0x0fc4  ATSWPDRV - ok
22:32:15.0625 0x0fc4  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
22:32:15.0625 0x0fc4  AudioSrv - ok
22:32:15.0734 0x0fc4  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
22:32:15.0734 0x0fc4  audstub - ok
22:32:16.0281 0x0fc4  [ D02C9CD88D735A76E5D7D8A8020ACB91, 7EC89AB6F050A893FDEBA88918D5B60F65E668E763FE4032AB7F787814C7388D ] AutoUpdateD     C:\Programme\Philips\Xcelera\Programs\AutoUpdateD.exe
22:32:16.0281 0x0fc4  AutoUpdateD - ok
22:32:16.0312 0x0fc4  [ B8C10FF9369394EB84993F331810CF29, 84D674EF4FB73FD9D1539DFCC52361C2FBAFD5A2DEF1FFF4F1F416721AA80F85 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
22:32:16.0312 0x0fc4  avgntflt - ok
22:32:16.0421 0x0fc4  [ 4189E5AB2CAD6F395D87DAAE73EB090F, 8A98667451F0A9E81204BC9DD34B7BDA147FB867F0969361ED6F9C0CD422E49C ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
22:32:16.0421 0x0fc4  avipbb - ok
22:32:16.0718 0x0fc4  [ 6DD871949DDA5DC66396B23AF952CAA5, E11F5FFAC125E8449ED9EF1411FECAF763CC5FA1DA6E04F16FD3439567DD1648 ] Avira.OE.ServiceHost C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe
22:32:16.0781 0x0fc4  Avira.OE.ServiceHost - ok
22:32:16.0890 0x0fc4  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
22:32:16.0890 0x0fc4  avkmgr - ok
22:32:17.0046 0x0fc4  [ C0ACD392ECE55784884CC208AAFA06CE, B87B47062E2BAFED50D0A9CC83D00B986298A2A9E33B52D5EA331CDC5C046C56 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
22:32:17.0046 0x0fc4  b57w2k - ok
22:32:17.0062 0x0fc4  Suspicious service (NoAccess): b7cac806122b9e5d
22:32:17.0281 0x0fc4  [ 93FE08CB8733F6CCC4EF494DFC8457F3, 4810EB6C9D4E7C894A5041C5B2BFE83734174F6CD09BC8217F6A5F1F7AB4DAEC ] b7cac806122b9e5d C:\WINDOWS\System32\Drivers\b7cac806122b9e5d.sys
22:32:17.0281 0x0fc4  Suspicious file ( NoAccess ): C:\WINDOWS\System32\Drivers\b7cac806122b9e5d.sys. md5: 93FE08CB8733F6CCC4EF494DFC8457F3, sha256: 4810EB6C9D4E7C894A5041C5B2BFE83734174F6CD09BC8217F6A5F1F7AB4DAEC
22:32:21.0312 0x0fc4  b7cac806122b9e5d - detected Rootkit.Win32.Necurs.gen ( 0 )
22:32:24.0250 0x0fc4  b7cac806122b9e5d ( Rootkit.Win32.Necurs.gen ) - infected
22:32:24.0250 0x0fc4  Force sending object to P2P due to detect: C:\WINDOWS\System32\Drivers\b7cac806122b9e5d.sys
22:32:26.0984 0x0fc4  Object send P2P result: true
22:32:42.0156 0x0fc4  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
22:32:42.0156 0x0fc4  Beep - ok
22:32:42.0312 0x0fc4  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
22:32:43.0265 0x0fc4  BITS - ok
22:32:43.0328 0x0fc4  [ 1ED0D54C304C536AFA544E5AB81732DD, B4D23B0166841C3726862A98E061ECC9F34313185FB3A3A30186A00B3F1169EE ] Bonifay         C:\WINDOWS\system32\DRIVERS\Bonifay.sys
22:32:43.0328 0x0fc4  Bonifay - ok
22:32:43.0609 0x0fc4  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
22:32:43.0625 0x0fc4  Bonjour Service - ok
22:32:43.0687 0x0fc4  [ F934D1B230F84E1D19DD00AC5A7A83ED, 32CD3A7A1F06DCCE2A4D9FA6E2AE7B3E2B57FA2D5F1C74EA79D72E5E0E352E60 ] Bridge          C:\WINDOWS\system32\DRIVERS\bridge.sys
22:32:43.0687 0x0fc4  Bridge - ok
22:32:43.0703 0x0fc4  [ F934D1B230F84E1D19DD00AC5A7A83ED, 32CD3A7A1F06DCCE2A4D9FA6E2AE7B3E2B57FA2D5F1C74EA79D72E5E0E352E60 ] BridgeMP        C:\WINDOWS\system32\DRIVERS\bridge.sys
22:32:43.0718 0x0fc4  BridgeMP - ok
22:32:43.0781 0x0fc4  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
22:32:43.0796 0x0fc4  Browser - ok
22:32:43.0812 0x0fc4  btaudio - ok
22:32:43.0812 0x0fc4  BTDriver - ok
22:32:43.0828 0x0fc4  BTKRNL - ok
22:32:43.0828 0x0fc4  BTWDNDIS - ok
22:32:43.0937 0x0fc4  [ 00C8988DA469E4AC087539BD77420123, 2F613A96284707A3F9AAD14769B636A680908E73A5995A0F8D8CE5BAB4BD9B0D ] BTWUSB          C:\WINDOWS\system32\Drivers\btwusb.sys
22:32:43.0937 0x0fc4  BTWUSB - ok
22:32:44.0000 0x0fc4  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
22:32:44.0015 0x0fc4  cbidf2k - ok
22:32:44.0109 0x0fc4  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:32:44.0109 0x0fc4  CCDECODE - ok
22:32:44.0109 0x0fc4  cd20xrnt - ok
22:32:44.0140 0x0fc4  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
22:32:44.0140 0x0fc4  Cdaudio - ok
22:32:44.0203 0x0fc4  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
22:32:44.0203 0x0fc4  Cdfs - ok
22:32:44.0281 0x0fc4  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:32:44.0281 0x0fc4  Cdrom - ok
22:32:44.0296 0x0fc4  Changer - ok
22:32:44.0359 0x0fc4  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
22:32:44.0359 0x0fc4  CiSvc - ok
22:32:44.0453 0x0fc4  [ DBC8CDAFC84E96E894C3BAAED9B30F47, A25CDF4BBF8227878D3CBB8E74904A43751EC4E98DFEBFE4CBD3953890A170F9 ] cleanhlp        C:\Programme\Emsisoft Anti-Malware\cleanhlp32.sys
22:32:44.0484 0x0fc4  cleanhlp - ok
22:32:44.0531 0x0fc4  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
22:32:44.0593 0x0fc4  ClipSrv - ok
22:32:44.0656 0x0fc4  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:32:45.0421 0x0fc4  clr_optimization_v2.0.50727_32 - ok
22:32:46.0062 0x0fc4  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:32:46.0062 0x0fc4  clr_optimization_v4.0.30319_32 - ok
22:32:46.0109 0x0fc4  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
22:32:46.0109 0x0fc4  CmBatt - ok
22:32:46.0109 0x0fc4  CmdIde - ok
22:32:46.0265 0x0fc4  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
22:32:46.0359 0x0fc4  Compbatt - ok
22:32:46.0375 0x0fc4  COMSysApp - ok
22:32:46.0390 0x0fc4  Cpqarray - ok
22:32:46.0546 0x0fc4  [ DEDBAF931E4DEFA8BBF99AEEE19F212F, 75B84957543B24258A802DA2CF96C72D724A1B82A64013C4075A2D9EDDC0881C ] cpqdiag         C:\WINDOWS\system32\drivers\cpqdiag.sys
22:32:46.0625 0x0fc4  cpqdiag - ok
22:32:46.0859 0x0fc4  [ BE43D9C71508CB4116CB56979D1CE820, 4FA7D528046AF1438D4E73D915F9FBE01B8E525E77A2F3D62E9F7B58D37B5D8B ] cqcpu           C:\WINDOWS\system32\drivers\cqcpu.sys
22:32:46.0968 0x0fc4  cqcpu - ok
22:32:47.0031 0x0fc4  [ CD6364F3ACB9B2094AB60671806A5B9C, B07F759D8FF3F3DB5028B58C13930ACBEC28E19C71763CAAD2B6DEFA352FA3E6 ] cq_mem          C:\WINDOWS\system32\drivers\cq_mem.sys
22:32:47.0078 0x0fc4  cq_mem - ok
22:32:47.0171 0x0fc4  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
22:32:47.0171 0x0fc4  CryptSvc - ok
22:32:47.0265 0x0fc4  [ 5C706C06C1279952D2CC1A609CA948BF, 42E4DCBCE40AB845AC25392D17C9E79F2E4B19C96618BD03EE175C3FA660BF04 ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
22:32:47.0265 0x0fc4  CVirtA - ok
22:32:48.0296 0x0fc4  [ 861E6BCDED4F48E4C5169C3BB9408DB8, 7973EAE70825DE8F5BAEAF327ED444E083CE0C465490947D16E9329AF2265786 ] CVPND           C:\Programme\JHSecure\VPN Client\cvpnd.exe
22:32:48.0359 0x0fc4  CVPND - ok
22:32:48.0656 0x0fc4  [ 244B0408E9E20C734C97CE1E783D67EE, 5FC803C667F40BD9D6707FE3265B3C7AE4ABF919FEEC842A5F5ABC6969C63E15 ] CVPNDRVA        C:\WINDOWS\system32\Drivers\CVPNDRVA.sys
22:32:48.0671 0x0fc4  CVPNDRVA - ok
22:32:48.0671 0x0fc4  dac2w2k - ok
22:32:48.0687 0x0fc4  dac960nt - ok
22:32:48.0968 0x0fc4  [ CA812B19C0E2BC044214AD3F6436E730, 3886A253B8886B8831FFEF40790A2F51444D73478350EA08E9DE8DCCA0AB4DD9 ] dc3d            C:\WINDOWS\system32\DRIVERS\dc3d.sys
22:32:48.0968 0x0fc4  dc3d - ok
22:32:49.0328 0x0fc4  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
22:32:49.0343 0x0fc4  DcomLaunch - ok
22:32:49.0421 0x0fc4  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
22:32:49.0437 0x0fc4  Dhcp - ok
22:32:49.0484 0x0fc4  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
22:32:49.0546 0x0fc4  Disk - ok
22:32:49.0687 0x0fc4  [ 244B6285B14E06A9BA81B3ED9B9A3B38, BEC423C8F1EAE77F5E3F0F9695C7965BBD1C177E57BF4E601D0ADD31B10160DF ] DLABOIOM        C:\WINDOWS\system32\DLA\DLABOIOM.SYS
22:32:49.0687 0x0fc4  DLABOIOM - ok
22:32:49.0718 0x0fc4  [ D979BEBCF7EDCC9C9EE1857D1A68C67B, 936450704E4F2ADA6FB87F827C042FEC67F67C83D361F858F5F41AA6E8B7256D ] DLACDBHM        C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
22:32:49.0734 0x0fc4  DLACDBHM - ok
22:32:49.0781 0x0fc4  [ BE6FA594AA49EFA8D5EF032DFE0A678D, 3F644192D7CD0855B27951F5887563A5B2CB578320342C2F74ABD0547E846DC7 ] DLADResN        C:\WINDOWS\system32\DLA\DLADResN.SYS
22:32:49.0796 0x0fc4  DLADResN - ok
22:32:49.0937 0x0fc4  [ 46CDF41AB0F616168F2C03EDB590643A, 59856D2C5A8D306FD362866FC9717A183D9964754DB3DCA667C2C4E0F333EF13 ] DLAIFS_M        C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
22:32:49.0937 0x0fc4  DLAIFS_M - ok
22:32:50.0000 0x0fc4  [ 94F39387819A9AE05C788CFD7EA4E16B, E64AAAAF0C6CF5E1C9D44C9A93CC5995B94643574979444AC9C2EADF4712ED48 ] DLAOPIOM        C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
22:32:50.0000 0x0fc4  DLAOPIOM - ok
22:32:50.0031 0x0fc4  [ F4DCC4DF6B27EE4E3D08258ECDDECB1F, 823FDC4688977A3F7C5895BFF03FC49999311FD85D32D653AB998D99B505D885 ] DLAPoolM        C:\WINDOWS\system32\DLA\DLAPoolM.SYS
22:32:50.0031 0x0fc4  DLAPoolM - ok
22:32:50.0062 0x0fc4  [ 7EE0852AE8907689DF25049DCD2342E8, A5F08D78200F5CB02539C87EA574EB34F0C330C290D7BE5D21ED42B0E04E5CF4 ] DLARTL_N        C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
22:32:50.0062 0x0fc4  DLARTL_N - ok
22:32:50.0218 0x0fc4  [ BDE11A8C697C5E22AEDF34CA3FDB5940, CB3D2709BB6299FED9EAA3D25335D3088006EF8313D22D4C274B7B1F011C834E ] DLAUDFAM        C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
22:32:50.0218 0x0fc4  DLAUDFAM - ok
22:32:50.0296 0x0fc4  [ 069D67EED1CEC572DC28CB5582B5AA96, 6FB880B930199AD4D1EC3BB8E214FD0BB5D0BD28C4EC6A5A373A5B65C4717354 ] DLAUDF_M        C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
22:32:50.0312 0x0fc4  DLAUDF_M - ok
22:32:50.0312 0x0fc4  dmadmin - ok
22:32:50.0625 0x0fc4  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
22:32:51.0000 0x0fc4  dmboot - ok
22:32:51.0218 0x0fc4  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
22:32:51.0343 0x0fc4  dmio - ok
22:32:51.0343 0x0fc4  dmload - ok
22:32:51.0453 0x0fc4  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
22:32:51.0453 0x0fc4  dmserver - ok
22:32:51.0593 0x0fc4  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
22:32:51.0593 0x0fc4  DMusic - ok
22:32:51.0812 0x0fc4  [ 2EDDBB3EF1DD5A28CB07C149D36E7286, 90577E8C1331CC721627B9145C91F722F3961E345AC4410650D39D55E28E2E96 ] DNE             C:\WINDOWS\system32\DRIVERS\dne2000.sys
22:32:51.0843 0x0fc4  DNE - ok
22:32:51.0921 0x0fc4  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
22:32:51.0921 0x0fc4  Dnscache - ok
22:32:52.0093 0x0fc4  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
22:32:52.0328 0x0fc4  Dot3svc - ok
22:32:52.0390 0x0fc4  dpti2o - ok
22:32:52.0562 0x0fc4  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
22:32:52.0562 0x0fc4  drmkaud - ok
22:32:52.0671 0x0fc4  [ FE923D5529144D47B907663D2838C032, 58102F40157C948412C8F1B50B065172190EFE9D4A2401D13070E592E15EBB65 ] DRVMCDB         C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
22:32:52.0781 0x0fc4  DRVMCDB - ok
22:32:52.0906 0x0fc4  [ B4869D320428CDC5EC4D7F5E808E99B5, A84D1D65E84C0B17CE48188AD95DF52E1FEF785E6C6415E028CB5F7F4F31C466 ] DRVNDDM         C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
22:32:52.0906 0x0fc4  DRVNDDM - ok
22:32:53.0078 0x0fc4  [ B5CB3084046146FD2587D8C9B219FEB4, 8233F47FDD9DB112CEEB62EED755648E3B35032DFABAD2DCD3F6C6952D0D7D42 ] eabfiltr        C:\WINDOWS\system32\DRIVERS\eabfiltr.sys
22:32:53.0078 0x0fc4  eabfiltr - ok
22:32:53.0187 0x0fc4  [ 231F4547AE1E4B3E60ECA66C3A96D218, FE13CB79024F3C1DFBD26AC4DE8AB2A00FF36D5805C7EF300B7AF2D24B3A2B92 ] eabusb          C:\WINDOWS\system32\DRIVERS\eabusb.sys
22:32:53.0250 0x0fc4  eabusb - ok
22:32:53.0359 0x0fc4  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
22:32:53.0484 0x0fc4  EapHost - ok
22:32:53.0656 0x0fc4  [ C61C83501268B0110B5C5DB7E63DEE0C, 83FA95AB267E4625954B5EA5DA00D70DAD445AEADB0D71ECE3B8D33D7AD20CFC ] ElbyCDFL        C:\WINDOWS\system32\Drivers\ElbyCDFL.sys
22:32:53.0656 0x0fc4  ElbyCDFL - ok
22:32:53.0734 0x0fc4  [ 178CC9403816C082D22A1D47FA1F9C85, B9AD7199C00D477EBBC15F2DCF78A6BA60C2670DAD0EF0994CEBCCB19111F890 ] ElbyCDIO        C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
22:32:53.0734 0x0fc4  ElbyCDIO - ok
22:32:53.0781 0x0fc4  [ DF9957DB3BFE5136AAD3C2C101806C98, 457FEDEE5527CB36CA18EBCA7D901DF10490F2C4A2BED5D85D73910C876EEDB6 ] ElbyDelay       C:\WINDOWS\system32\Drivers\ElbyDelay.sys
22:32:53.0859 0x0fc4  ElbyDelay - ok
22:32:53.0921 0x0fc4  [ 97CD1FC3FF95432AEC1CFA3493F9D548, 6152BCA42D6F3331F16E45CC1D28E72D3170FA823F6A612E32381A5D712FCC16 ] EnConcertRMS    C:\Programme\Philips\Xcelera\Programs\enconcertrms.exe
22:32:53.0921 0x0fc4  EnConcertRMS - ok
22:32:54.0000 0x0fc4  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
22:32:54.0000 0x0fc4  ERSvc - ok
22:32:54.0140 0x0fc4  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
22:32:54.0140 0x0fc4  Eventlog - ok
22:32:54.0390 0x0fc4  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\es.dll
22:32:54.0390 0x0fc4  EventSystem - ok
22:32:54.0468 0x0fc4  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
22:32:54.0484 0x0fc4  Fastfat - ok
22:32:54.0765 0x0fc4  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:32:54.0953 0x0fc4  FastUserSwitchingCompatibility - ok
22:32:55.0531 0x0fc4  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
22:32:56.0109 0x0fc4  Fdc - ok
22:32:57.0109 0x0fc4  [ ED6C44547540E7892A1C34FD4BD35A53, AD266690F3EDD837904556FD460C0F3D0DEFBD3AD1DE281A53E70991165F7A9F ] FilterService   C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys
22:32:57.0234 0x0fc4  FilterService - ok
22:32:57.0406 0x0fc4  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
22:32:57.0515 0x0fc4  Fips - ok
22:32:57.0828 0x0fc4  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:32:57.0953 0x0fc4  Flpydisk - ok
22:32:58.0125 0x0fc4  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
22:32:58.0171 0x0fc4  FltMgr - ok
22:32:58.0562 0x0fc4  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:32:58.0812 0x0fc4  FontCache3.0.0.0 - ok
22:32:59.0015 0x0fc4  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:32:59.0109 0x0fc4  Fs_Rec - ok
22:32:59.0187 0x0fc4  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:32:59.0296 0x0fc4  Ftdisk - ok
22:33:00.0187 0x0fc4  [ 10DBAA1703253FB511D0F5C5F6064B00, D5AB10D54BB7CC4AD303DFCB4BFE0C885D8DCC455B96809B1F18D8BABA34EF8A ] FTRTSVC         C:\PROGRA~1\GEMEIN~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
22:33:00.0187 0x0fc4  FTRTSVC - ok
22:33:00.0281 0x0fc4  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:33:00.0281 0x0fc4  GEARAspiWDM - ok
22:33:00.0421 0x0fc4  [ 9D770FE95BBF1C5CE10714D27DB0DF30, DD74C472C99211784B352BB75778E09384F40CEBED206E58DA7AB3C6228CC1E6 ] GEARSecurity    C:\WINDOWS\System32\gearsec.exe
22:33:00.0421 0x0fc4  GEARSecurity - ok
22:33:00.0531 0x0fc4  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:33:00.0531 0x0fc4  Gpc - ok
22:33:00.0750 0x0fc4  [ B6B1F53F585B41091EB3586F8297A379, 7FE80BD993F65285E2C47B289F59E0A4A28E65A671CFD1326504D32693530CF4 ] GTIPCI21        C:\WINDOWS\system32\DRIVERS\gtipci21.sys
22:33:00.0750 0x0fc4  GTIPCI21 - ok
22:33:01.0093 0x0fc4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Programme\Google\Update\GoogleUpdate.exe
22:33:01.0093 0x0fc4  gupdate - ok
22:33:01.0171 0x0fc4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Programme\Google\Update\GoogleUpdate.exe
22:33:01.0187 0x0fc4  gupdatem - ok
22:33:01.0515 0x0fc4  [ D213C2B1CE0FAEAB59EC0C55B4493F94, 198DACC6E4747A9003B61A1DF4537F915AF5C207A480E6441DC7A85CF2A7F6D1 ] gusvc           C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
22:33:01.0609 0x0fc4  gusvc - ok
22:33:01.0687 0x0fc4  [ 4D4D97671C63C3AF869B3518E6054204, 2163373A69DDF2A6E63B20003B1D6E5ECC775D8D6A426BE81CEDE9A5A79E872E ] HBtnKey         C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
22:33:01.0687 0x0fc4  HBtnKey - ok
22:33:01.0875 0x0fc4  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:33:01.0875 0x0fc4  HDAudBus - ok
22:33:02.0140 0x0fc4  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:33:02.0171 0x0fc4  helpsvc - ok
22:33:02.0281 0x0fc4  [ B35DA85E60C0103F2E4104532DA2F12B, E13C9F73DF7713554CB614B36123D75014F5121AA1FC9069733E61758751CBE4 ] HidServ         C:\WINDOWS\System32\hidserv.dll
22:33:02.0281 0x0fc4  HidServ - ok
22:33:02.0437 0x0fc4  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:33:02.0437 0x0fc4  HidUsb - ok
22:33:02.0531 0x0fc4  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
22:33:02.0625 0x0fc4  hkmsvc - ok
22:33:02.0687 0x0fc4  [ B5E68A5D9E0AAC82E4DDD340E1F0274A, 3A335DC4FFBA2EFE2E127A86C9FBEB05207DEF434030D23C1FB4511B4646F5AC ] hpdskflt        C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
22:33:02.0734 0x0fc4  hpdskflt - ok
22:33:02.0843 0x0fc4  [ 299683D4C8AAA3F6F5D5D226A1782A6E, A2ECF52DBDC442F3C9514EC80CE614A9D3F45698E5B0992CF009C66B770E9027 ] HPFXBULK        C:\WINDOWS\system32\drivers\hpfxbulk.sys
22:33:02.0875 0x0fc4  HPFXBULK - ok
22:33:02.0875 0x0fc4  hpn - ok
22:33:03.0125 0x0fc4  [ A56D9D6B31A648CD5D3ACE7E09757600, 295FCE09F8B937F6C17262DAC089C70345D95FA2C02D39317626776AA3963CE9 ] hpqwmiex        C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe
22:33:04.0921 0x0fc4  hpqwmiex - ok
22:33:05.0031 0x0fc4  [ 30CA91E657CEDE2F95359D6EF186F650, 6BBAFBE50E7819695A79586A086A9952B737E174BA2C63C1F180D97EC4AABA4B ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
22:33:05.0046 0x0fc4  HPZid412 - ok
22:33:05.0078 0x0fc4  [ EFD31AFA752AA7C7BBB57BCBE2B01C78, AC671CEE9F8DD9FE6C51069212AEB1736BB914361D4185D1E87068D244BF2B7A ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
22:33:05.0156 0x0fc4  HPZipr12 - ok
22:33:05.0203 0x0fc4  [ 7AC43C38CA8FD7ED0B0A4466F753E06E, B4D44B366170D247E0145B9435CC678BEE2A2A42CFF7B485E077B3B582557B5A ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
22:33:05.0234 0x0fc4  HPZius12 - ok
22:33:05.0531 0x0fc4  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
22:33:05.0531 0x0fc4  HTTP - ok
22:33:05.0718 0x0fc4  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
22:33:05.0734 0x0fc4  HTTPFilter - ok
22:33:05.0796 0x0fc4  [ 8ADF5EF39E896A65BEDED878494EE2B6, BA9755A97EA653E85EA2C17C7FD1E20210039152C8D170D4D85B5F6D0EAC93B3 ] hwdatacard      C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
22:33:05.0875 0x0fc4  hwdatacard - ok
22:33:05.0968 0x0fc4  [ 9BE5CAEABC6B2EB98B3A4839A55D47A0, 3FE471705AE84AF2B9F8FB49D4C87C2C8605B8A43617651D6B1F588A180004B2 ] hwusbfake       C:\WINDOWS\system32\DRIVERS\ewusbfake.sys
22:33:06.0125 0x0fc4  hwusbfake - ok
22:33:06.0125 0x0fc4  i2omgmt - ok
22:33:06.0140 0x0fc4  i2omp - ok
22:33:06.0281 0x0fc4  [ 7C575018D0413440D75432A78B88C899, 064E0980C2D30ABB15BD4A20E0B0CC184B5E4FAB509307D91B4FB18973F6DD6F ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:33:06.0281 0x0fc4  i8042prt - ok
22:33:06.0796 0x0fc4  [ 309C4D86D989FB1FCF64BD30DC81C51B, 90412120B005D5178E27EFD09D52005BE6CE1965E5CBB59612EAD02C5896A8A7 ] iaStor          C:\WINDOWS\system32\DRIVERS\iaStor.sys
22:33:06.0828 0x0fc4  iaStor - ok
22:33:07.0218 0x0fc4  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:33:07.0531 0x0fc4  IDriverT - ok
22:33:08.0046 0x0fc4  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:33:11.0671 0x0fc4  idsvc - ok
22:33:11.0906 0x0fc4  [ FF9F7B9FD77A6F26BDE91A33A348404C, F0A05ADB8E6451021614C6B1E62019A441F51A216C91F86BFCDCC6E2D2C46820 ] IFXSpMgtSrv     C:\WINDOWS\system32\IFXSPMGT.exe
22:33:11.0921 0x0fc4  IFXSpMgtSrv - ok
22:33:12.0140 0x0fc4  [ E80B373A6B42C2274AE85379173F0204, 7A2D2840CD79BB98470A1274E2C6B3BFB302B63A7C4CF45365398F6FD60A483D ] IFXTCS          C:\WINDOWS\system32\IFXTCS.exe
22:33:12.0156 0x0fc4  IFXTCS - ok
22:33:12.0265 0x0fc4  [ 0B556E950404D90D097C687E65238730, 0ECE1737889B695B93AAEFEE0B89109A950CCCE8CDB85673D3F8198868554633 ] IFXTPM          C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS
22:33:12.0296 0x0fc4  IFXTPM - ok
22:33:12.0343 0x0fc4  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
22:33:12.0359 0x0fc4  Imapi - ok
22:33:12.0515 0x0fc4  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
22:33:12.0671 0x0fc4  ImapiService - ok
22:33:12.0687 0x0fc4  ini910u - ok
22:33:12.0734 0x0fc4  [ 69C4E3C9E67A1F103B94E14FDD5F3213, 894ABDDBF95E3FFE59A4621AF94AFA7E6F6D780420845078622C76624C0326D2 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
22:33:12.0828 0x0fc4  IntelIde - ok
22:33:13.0031 0x0fc4  [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:33:13.0031 0x0fc4  intelppm - ok
22:33:13.0218 0x0fc4  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
22:33:13.0250 0x0fc4  Ip6Fw - ok
22:33:13.0328 0x0fc4  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:33:13.0406 0x0fc4  IpFilterDriver - ok
22:33:13.0500 0x0fc4  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:33:13.0515 0x0fc4  IpInIp - ok
22:33:13.0687 0x0fc4  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:33:15.0687 0x0fc4  IpNat - ok
22:33:16.0468 0x0fc4  [ EF1C51222117B37AFBFF8F4642EA8C62, 7AC322295B33E9BF1548AB42773421609E11332E7E9B42EE58908EF6A298A8F3 ] iPod Service    C:\Programme\iPod\bin\iPodService.exe
22:33:17.0203 0x0fc4  iPod Service - ok
22:33:17.0312 0x0fc4  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:33:17.0359 0x0fc4  IPSec - ok
22:33:17.0531 0x0fc4  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
22:33:17.0687 0x0fc4  IRENUM - ok
22:33:17.0859 0x0fc4  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:33:18.0031 0x0fc4  isapnp - ok
22:33:18.0625 0x0fc4  [ 890369AED0DDE1A98F09F7DC239CA2BD, A878419C2A20551075A4148A521DECEEECB0FA32FBE71C92F25A3CCF6B24F26E ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe
22:33:18.0656 0x0fc4  JavaQuickStarterService - ok
22:33:18.0781 0x0fc4  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:33:18.0796 0x0fc4  Kbdclass - ok
22:33:18.0937 0x0fc4  [ B6D6C117D771C98130497265F26D1882, E79CC4EA5C088F988BA61F80764F9CAD9B78BC56A7E17DD54622C75483BC5DF4 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:33:18.0953 0x0fc4  kbdhid - ok
22:33:19.0093 0x0fc4  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
22:33:19.0109 0x0fc4  kmixer - ok
22:33:19.0203 0x0fc4  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
22:33:19.0250 0x0fc4  KSecDD - ok
22:33:19.0375 0x0fc4  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
22:33:19.0390 0x0fc4  lanmanserver - ok
22:33:19.0500 0x0fc4  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:33:19.0500 0x0fc4  lanmanworkstation - ok
22:33:19.0578 0x0fc4  Lavasoft Kernexplorer - ok
22:33:19.0734 0x0fc4  [ B7C19EC8B0DD7EFA58AD41FFEB8B8CDA, F309A747575F1AD38813C788A2AAF41126660BBCD2B369493FC598F3435B50E7 ] Lbd             C:\WINDOWS\system32\DRIVERS\Lbd.sys
22:33:19.0734 0x0fc4  Lbd - ok
22:33:19.0812 0x0fc4  lbrtfdc - ok
22:33:20.0125 0x0fc4  [ D30D9547C02ECEE13E259970F71503D7, 91231B898B6B5F857336763C7200F7C866D0AFB52E24FAF5EF4EDBE44DB19081 ] LightScribeService C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
22:33:20.0140 0x0fc4  LightScribeService - ok
22:33:20.0203 0x0fc4  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
22:33:20.0234 0x0fc4  LmHosts - ok
22:33:21.0515 0x0fc4  [ FB548FF809634BFA866312B37D8A18AE, C24D95B65DA56A1C9809A4582501118E4A514339FD4979CEC59DBE45C1EA4EA7 ] LVcKap          C:\WINDOWS\system32\DRIVERS\LVcKap.sys
22:33:22.0515 0x0fc4  LVcKap - ok
22:33:22.0796 0x0fc4  [ 14E4CC4D46169759D874F57604EA6BE5, 0039D12880825A82D8DBAD0843C09DF417C50285BC3CD874013E1C6DAE14F2F7 ] LVCOMSer        C:\Programme\Gemeinsame Dateien\LogiShrd\LVCOMSER\LVComSer.exe
22:33:22.0812 0x0fc4  LVCOMSer - ok
22:33:23.0656 0x0fc4  [ FE3FB994F8702D9E37648927819B74B8, A011BBAD452C41CEA137C71490196F3385F1BEBA8F03D3E6584B5167A3A5BA18 ] LVMVDrv         C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
22:33:24.0656 0x0fc4  LVMVDrv - ok
22:33:25.0546 0x0fc4  [ 92990B040B68632CC3F80A742D163937, 528310571B9BD0265DF689F7846CA0562F2D810929704614CA2A56F9B6026DA0 ] lvpopflt        C:\WINDOWS\system32\DRIVERS\lvpopflt.sys
22:33:26.0718 0x0fc4  lvpopflt - ok
22:33:26.0875 0x0fc4  [ C7EA51F1AB10B0B2B443F4D5589FC1A5, 16BD02ADA7FCA2A4A39433393BD50E0A39C3D9B16730C9930C765B8F7BC18098 ] LVPr2Mon        C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
22:33:26.0890 0x0fc4  LVPr2Mon - ok
22:33:27.0078 0x0fc4  [ B2D04E813BA12AB179DAF0B9FDECBA3D, 9F62F9FAD32C0979B6713BE2303C1C2E3B727BC8E39DD3ECF6B7F1A6A73EAB3D ] LVPrcSrv        C:\Programme\Gemeinsame Dateien\LogiShrd\LVMVFM\LVPrcSrv.exe
22:33:27.0093 0x0fc4  LVPrcSrv - ok
22:33:27.0187 0x0fc4  [ A7A2EF5000007CA361DA1E2B99DF8C57, 61743DC20452B25465C6B258033E3F9B6F46DCAF8700C0C4319ECAE08C6DA344 ] LVSrvLauncher   C:\Programme\Gemeinsame Dateien\LogiShrd\SrvLnch\SrvLnch.exe
22:33:27.0187 0x0fc4  LVSrvLauncher - ok
22:33:27.0250 0x0fc4  [ CAEF4C05BA2C1ACAD4EBCAA4261CD55D, 27CFD2D55F8EAA98CF3D4152570B0966BA3FC87E1203081F34D0452C5B0D8436 ] LVUSBSta        C:\WINDOWS\system32\drivers\LVUSBSta.sys
22:33:27.0250 0x0fc4  LVUSBSta - ok
22:33:29.0468 0x0fc4  [ B0DFEE7DA5E6D04762E25E355D94D8B5, E7C58B971F6035FA7AEDBB5DA6F46B4915497413BF20ABD6B09E16276238618B ] LVUVC           C:\WINDOWS\system32\DRIVERS\lvuvc.sys
22:33:34.0453 0x0fc4  LVUVC - ok
22:33:34.0609 0x0fc4  [ 8D1CACAAA50DA42A4E0B15612757AC80, 77A929AC15FFDCB01BFD84AEFB8A540DE122A215D9F490F0DA0985A654F32F87 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
22:33:34.0609 0x0fc4  MBAMProtector - ok
22:33:36.0750 0x0fc4  [ E4AC73F5795796406F437D8D208D7B48, 49074D3BCB17B59B4D75D89A1EA01C4C0A44F5D6BDF18CFB8EDE4DE4F3473F00 ] MBAMScheduler   C:\Programme\Malwarebytes Anti-Malware\mbamscheduler.exe
22:33:38.0484 0x0fc4  MBAMScheduler - ok
22:33:39.0406 0x0fc4  [ E62EA096BD13EECC4BF7FA70C9223B46, D312F2F5185CB7547B18ACA818B65670E6E90CF3892C164C3FC89D9D3383D435 ] MBAMService     C:\Programme\Malwarebytes Anti-Malware\mbamservice.exe
22:33:40.0531 0x0fc4  MBAMService - ok
22:33:40.0765 0x0fc4  McAfeeFramework - ok
22:33:40.0828 0x0fc4  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
22:33:40.0859 0x0fc4  Messenger - ok
22:33:40.0921 0x0fc4  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
22:33:40.0921 0x0fc4  mnmdd - ok
22:33:41.0031 0x0fc4  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
22:33:41.0062 0x0fc4  mnmsrvc - ok
22:33:41.0125 0x0fc4  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
22:33:41.0125 0x0fc4  Modem - ok
22:33:41.0296 0x0fc4  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:33:41.0296 0x0fc4  Mouclass - ok
22:33:41.0359 0x0fc4  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:33:41.0359 0x0fc4  mouhid - ok
22:33:41.0390 0x0fc4  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
22:33:41.0421 0x0fc4  MountMgr - ok
22:33:41.0609 0x0fc4  [ 70C14F5CCA5CF73F8A645C73A01D8726, 7849C06480EEB96C0D06689E5DB80DDCACC5DD077CE6DFA25CCB7BDF3378C962 ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
22:33:41.0609 0x0fc4  MQAC - ok
22:33:41.0625 0x0fc4  mraid35x - ok
22:33:41.0781 0x0fc4  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:33:41.0781 0x0fc4  MRxDAV - ok
22:33:42.0140 0x0fc4  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:33:42.0140 0x0fc4  MRxSmb - ok
22:33:42.0218 0x0fc4  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
22:33:42.0218 0x0fc4  MSDTC - ok
22:33:42.0296 0x0fc4  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
22:33:42.0296 0x0fc4  Msfs - ok
22:33:42.0296 0x0fc4  MSIServer - ok
22:33:42.0453 0x0fc4  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:33:42.0500 0x0fc4  MSKSSRV - ok
22:33:42.0578 0x0fc4  [ 0DCA65CF0B5E016192DFC8D184544FB6, 87F43121AAF56A6F3CFED5BEFCA402D6933CFABE63522CABD20CA3E4ABA68C6B ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
22:33:42.0578 0x0fc4  MSMQ - ok
22:33:42.0640 0x0fc4  [ 7E68E3D511CF98CCD613DE1253DA4247, 5062E5288DCECE191D0D86808ACBA3802CC23B3EA10FAD3AB6D20166649EDEEA ] MSMQTriggers    C:\WINDOWS\system32\mqtgsvc.exe
22:33:42.0640 0x0fc4  MSMQTriggers - ok
22:33:42.0671 0x0fc4  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:33:42.0671 0x0fc4  MSPCLOCK - ok
22:33:42.0750 0x0fc4  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
22:33:42.0828 0x0fc4  MSPQM - ok
22:33:43.0015 0x0fc4  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:33:43.0015 0x0fc4  mssmbios - ok
22:33:43.0093 0x0fc4  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
22:33:43.0156 0x0fc4  MSTEE - ok
22:33:43.0234 0x0fc4  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
22:33:43.0343 0x0fc4  Mup - ok
22:33:43.0484 0x0fc4  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:33:43.0578 0x0fc4  NABTSFEC - ok
22:33:43.0859 0x0fc4  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
22:33:45.0109 0x0fc4  napagent - ok
22:33:45.0265 0x0fc4  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
22:33:45.0421 0x0fc4  NDIS - ok
22:33:45.0515 0x0fc4  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:33:45.0593 0x0fc4  NdisIP - ok
22:33:45.0687 0x0fc4  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:33:45.0687 0x0fc4  NdisTapi - ok
22:33:45.0734 0x0fc4  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:33:45.0734 0x0fc4  Ndisuio - ok
22:33:45.0828 0x0fc4  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:33:45.0937 0x0fc4  NdisWan - ok
22:33:46.0031 0x0fc4  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
22:33:46.0046 0x0fc4  NDProxy - ok
22:33:46.0171 0x0fc4  [ 2969D26EEE289BE7422AA46FC55F4E38, 0128C6C764C9BE01E9C5B272385524361C46C051D9D371D8E06B8493A49250AF ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
22:33:46.0171 0x0fc4  Net Driver HPZ12 - ok
22:33:46.0406 0x0fc4  [ 1352E1648213551923A0A822E441553C, F9BCA299249D8E1ADF88F54554F72428E267E39911143F4C99DFF562F0EE4E70 ] Netaapl         C:\WINDOWS\system32\DRIVERS\netaapl.sys
22:33:47.0234 0x0fc4  Netaapl - ok
22:33:47.0296 0x0fc4  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
22:33:48.0218 0x0fc4  NetBIOS - ok
22:33:48.0484 0x0fc4  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
22:33:48.0500 0x0fc4  NetBT - ok
22:33:48.0609 0x0fc4  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
22:33:48.0765 0x0fc4  NetDDE - ok
22:33:48.0796 0x0fc4  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
22:33:48.0796 0x0fc4  NetDDEdsdm - ok
22:33:48.0921 0x0fc4  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
22:33:48.0921 0x0fc4  Netlogon - ok
22:33:49.0062 0x0fc4  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
22:33:49.0062 0x0fc4  Netman - ok
22:33:49.0265 0x0fc4  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:33:49.0515 0x0fc4  NetTcpPortSharing - ok
22:33:49.0656 0x0fc4  [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:33:49.0656 0x0fc4  NIC1394 - ok
22:33:49.0796 0x0fc4  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
22:33:49.0796 0x0fc4  Nla - ok
22:33:49.0843 0x0fc4  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
22:33:49.0859 0x0fc4  Npfs - ok
22:33:50.0187 0x0fc4  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
22:33:50.0531 0x0fc4  Ntfs - ok
22:33:50.0640 0x0fc4  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
22:33:50.0640 0x0fc4  NtLmSsp - ok
22:33:50.0921 0x0fc4  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
22:33:52.0093 0x0fc4  NtmsSvc - ok
22:33:52.0156 0x0fc4  [ 37BE10FF10A92031FC5A01E8363925CC, CB07869ABAC2FD2B052CB05810B6B0987A38DD63C90FD5377121E027FAD0312A ] NuidFltr        C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
22:33:52.0218 0x0fc4  NuidFltr - ok
22:33:52.0328 0x0fc4  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
22:33:52.0328 0x0fc4  Null - ok
22:33:52.0515 0x0fc4  [ C34A6A72DEC2C317D67355DC18F87090, CFB91AAFDA022A79A7C9CF0088394B937E9C739A8F1F4F2700691FB383781CA7 ] NWCWorkstation  C:\WINDOWS\System32\nwwks.dll
22:33:53.0281 0x0fc4  NWCWorkstation - ok
22:33:53.0500 0x0fc4  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:33:53.0515 0x0fc4  NwlnkFlt - ok
22:33:53.0562 0x0fc4  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:33:53.0578 0x0fc4  NwlnkFwd - ok
22:33:53.0703 0x0fc4  [ 8B8B1BE2DBA4025DA6786C645F77F123, E47D5EED2F3AF85E2332C325DA80AEF2C4EC989E38A175194EBBFA967BA8BF81 ] NwlnkIpx        C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
22:33:53.0718 0x0fc4  NwlnkIpx - ok
22:33:53.0781 0x0fc4  [ 56D34A67C05E94E16377C60609741FF8, ABE48D3E7D38DB20E9D4884FC6FE42FAE0C5FAFD3AC86F1E585A4BB17C6F09C5 ] NwlnkNb         C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
22:33:53.0781 0x0fc4  NwlnkNb - ok
22:33:53.0859 0x0fc4  [ C0BB7D1615E1ACBDC99757F6CEAF8CF0, 899905C0EB182ABCDAE0D0D749C0BC39CD231B9FAEE733D5DFDAE86EB8BC755B ] NwlnkSpx        C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
22:33:53.0875 0x0fc4  NwlnkSpx - ok
22:33:53.0953 0x0fc4  [ 36B9B950E3D2E100970A48D8BAD86740, B0F320E68974925E1BB199B9F59A191FA1EBA2D2F164F182FE7820A83220687C ] NWRDR           C:\WINDOWS\system32\DRIVERS\nwrdr.sys
22:33:53.0953 0x0fc4  NWRDR - ok
22:33:54.0109 0x0fc4  [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:33:54.0234 0x0fc4  ohci1394 - ok
22:33:54.0531 0x0fc4  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
22:33:54.0625 0x0fc4  ose - ok
22:33:54.0765 0x0fc4  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
22:33:54.0765 0x0fc4  Parport - ok
22:33:54.0890 0x0fc4  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
22:33:54.0953 0x0fc4  PartMgr - ok
22:33:55.0062 0x0fc4  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
22:33:55.0156 0x0fc4  ParVdm - ok
22:33:56.0406 0x0fc4  [ 5EEB45F500E3E97153CB75723F8CA185, 97FA86B80D37BF9ADC51CC7EBA07479EE8746BCD9C68A0A8D1A9E56CF02EE933 ] PCA             C:\WINDOWS\SMINST\PCAngel.exe
22:33:56.0484 0x0fc4  PCA - ok
22:33:56.0546 0x0fc4  [ B670C5D89F0726B7A2A7DFB4E968CDF8, 5C79A6EB9D911ECDBF2AA7F832FF59EDA275B981B6E1BF03AEE16F6D91C247F0 ] PCAMPR5         C:\WINDOWS\system32\PCAMPR5.SYS
22:33:59.0359 0x0fc4  PCAMPR5 - ok
22:33:59.0578 0x0fc4  [ ECD2F9D67B06606064DAF6961A6D5EFE, E8B98AF7D0731FD1E30C7016492FD078CCA7649873F291C1733CD6EBD319506B ] PCANDIS5        C:\WINDOWS\system32\PCANDIS5.SYS
22:33:59.0921 0x0fc4  PCANDIS5 - ok
22:34:00.0093 0x0fc4  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
22:34:00.0343 0x0fc4  PCI - ok
22:34:00.0343 0x0fc4  PCIDump - ok
22:34:00.0437 0x0fc4  [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
22:34:00.0515 0x0fc4  PCIIde - ok
22:34:00.0578 0x0fc4  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\DRIVERS\pcmcia.sys
22:34:00.0718 0x0fc4  Pcmcia - ok
22:34:00.0718 0x0fc4  PDCOMP - ok
22:34:00.0734 0x0fc4  PDFRAME - ok
22:34:00.0734 0x0fc4  PDRELI - ok
22:34:00.0750 0x0fc4  PDRFRAME - ok
22:34:00.0875 0x0fc4  [ C5D5EA6A29523E0F6016741E9851C6DB, 1845EF5971D92CA353C47C219E3D4FA97B1BECF66B44191351E01C42EB0EFF17 ] pepifilter      C:\WINDOWS\system32\DRIVERS\lv302af.sys
22:34:01.0031 0x0fc4  pepifilter - ok
22:34:01.0046 0x0fc4  perc2 - ok
22:34:01.0046 0x0fc4  perc2hib - ok
22:34:01.0187 0x0fc4  [ 9F09361EEAE6180CCDC8E99BAC641943, DBD74951FA047492FB04E9A42005F4BF05B444BB1ADC5DA2D0990AB4EFF430A4 ] PersonalSecureDrive C:\WINDOWS\System32\drivers\psd.sys
22:34:01.0187 0x0fc4  PersonalSecureDrive - ok
22:34:01.0562 0x0fc4  [ 2A8335EE3997E72690394D86258814A2, 7CA7F3667588DC5829F863A7B64FD78EE39CE17F0BD66D57C52640660D3D4EAC ] PersonalSecureDriveService C:\Programme\ProtectTools\Embedded Security Software\PSDsrvc.EXE
22:34:01.0640 0x0fc4  PersonalSecureDriveService - ok
22:34:01.0718 0x0fc4  [ 444F122E68DB44C0589227781F3C8B3F, 99581AD22CBD3B647E719E250291C315099B62FDF80671225F0C5A05489D0F91 ] pfc             C:\WINDOWS\system32\drivers\pfc.sys
22:34:01.0718 0x0fc4  pfc - ok
22:34:02.0015 0x0fc4  [ CEBEFEAE6156F4FEE41F56BE89EA9C96, 3015F498BA050D90FE3632C15800DD098F515AE9F6E4C290FE0C0D0A460B8CFE ] PID_08A0        C:\WINDOWS\system32\DRIVERS\LV302AV.SYS
22:34:02.0640 0x0fc4  PID_08A0 - ok
22:34:03.0046 0x0fc4  [ 3F96DCD4AC98C8E0D3C03C24FD49A2FE, 3A87A0DD22A36F324573F09C227286B214D309CFC1DADB0051FC1BB6548C5463 ] PID_PEPI        C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
22:34:04.0078 0x0fc4  PID_PEPI - ok
22:34:04.0156 0x0fc4  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
22:34:04.0171 0x0fc4  PlugPlay - ok
22:34:04.0328 0x0fc4  [ BAFC9706BDF425A02B66468AB2605C59, 6F8F7982AD452F0E68D91CCAF05DF152F00FA3D885DCBBBC470199E74F17B1E0 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
22:34:04.0343 0x0fc4  Pml Driver HPZ12 - ok
22:34:04.0453 0x0fc4  [ 896D916DE06F5502D301E8C4DC442AE8, 7B5C5FA075BA680B990A0A78A690CF2DE04EF7EB1457781E38D0EE4A95CEFDCA ] Point32         C:\WINDOWS\system32\DRIVERS\point32.sys
22:34:04.0468 0x0fc4  Point32 - ok
22:34:04.0578 0x0fc4  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
22:34:04.0578 0x0fc4  PolicyAgent - ok
22:34:04.0656 0x0fc4  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:34:04.0656 0x0fc4  PptpMiniport - ok
22:34:04.0687 0x0fc4  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:34:04.0687 0x0fc4  ProtectedStorage - ok
22:34:04.0843 0x0fc4  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
22:34:04.0859 0x0fc4  PSched - ok
22:34:04.0984 0x0fc4  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:34:04.0984 0x0fc4  Ptilink - ok
22:34:05.0062 0x0fc4  [ 49452BFCEC22F36A7A9B9C2181BC3042, C01A2005E9897B142FF9BC6155770F70C19725C425E48D14239195E81E2E42D0 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:34:05.0125 0x0fc4  PxHelp20 - ok
22:34:05.0125 0x0fc4  ql1080 - ok
22:34:05.0171 0x0fc4  Ql10wnt - ok
22:34:05.0187 0x0fc4  ql12160 - ok
22:34:05.0187 0x0fc4  ql1240 - ok
22:34:05.0203 0x0fc4  ql1280 - ok
22:34:05.0312 0x0fc4  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:34:05.0312 0x0fc4  RasAcd - ok
22:34:05.0359 0x0fc4  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
22:34:05.0421 0x0fc4  RasAuto - ok
22:34:05.0468 0x0fc4  [ 0207D26DDF796A193CCD9F83047BB5FC, 13613036BCB869FBD7229A0FE25D324710308385D8C35E5D990A40E52BE040DF ] Rasirda         C:\WINDOWS\system32\DRIVERS\rasirda.sys
22:34:05.0484 0x0fc4  Rasirda - ok
22:34:05.0578 0x0fc4  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:34:05.0578 0x0fc4  Suspicious file ( NoAccess ): C:\WINDOWS\system32\DRIVERS\rasl2tp.sys. md5: 11B4A627BC9614B885C4969BFA5FF8A6, sha256: EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD
22:34:05.0578 0x0fc4  Rasl2tp - detected LockedFile.Multi.Generic ( 1 )
22:34:07.0953 0x0fc4  Detect skipped due to KSN trusted
22:34:07.0953 0x0fc4  Rasl2tp - ok
22:34:08.0078 0x0fc4  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
22:34:08.0171 0x0fc4  RasMan - ok
22:34:08.0187 0x0fc4  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:34:08.0218 0x0fc4  RasPppoe - ok
22:34:08.0281 0x0fc4  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
22:34:08.0312 0x0fc4  Raspti - ok
22:34:08.0390 0x0fc4  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:34:08.0468 0x0fc4  Rdbss - ok
22:34:08.0546 0x0fc4  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:34:08.0546 0x0fc4  RDPCDD - ok
22:34:08.0687 0x0fc4  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:34:08.0718 0x0fc4  rdpdr - ok
22:34:08.0812 0x0fc4  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
22:34:08.0843 0x0fc4  RDPWD - ok
22:34:08.0937 0x0fc4  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
22:34:09.0078 0x0fc4  RDSessMgr - ok
22:34:09.0125 0x0fc4  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
22:34:09.0140 0x0fc4  redbook - ok
22:34:09.0250 0x0fc4  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
22:34:09.0296 0x0fc4  RemoteAccess - ok
22:34:09.0359 0x0fc4  [ E4CD1F3D84E1C2CA0B8CF7501E201593, 649CC0B04F94D407EB6B4C7FDE2C6E4D2B1531307BC67C5775E44D66EF2E4F8A ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
22:34:09.0359 0x0fc4  RemoteRegistry - ok
22:34:09.0484 0x0fc4  [ 96F7A9A7BF0C9C0440A967440065D33C, E3B0A0337BE05E48C7BD9E6D5A08173F1E5FAAC89526DAC3D87D21D1B55D524E ] RMCAST          C:\WINDOWS\system32\drivers\RMCast.sys
22:34:09.0484 0x0fc4  RMCAST - ok
22:34:09.0546 0x0fc4  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
22:34:09.0640 0x0fc4  RpcLocator - ok
22:34:09.0828 0x0fc4  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
22:34:09.0843 0x0fc4  RpcSs - ok
22:34:09.0953 0x0fc4  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
22:34:10.0000 0x0fc4  RSVP - ok
22:34:10.0015 0x0fc4  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
22:34:10.0015 0x0fc4  SamSs - ok
22:34:10.0078 0x0fc4  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
22:34:10.0078 0x0fc4  SCardSvr - ok
22:34:10.0218 0x0fc4  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
22:34:10.0218 0x0fc4  Schedule - ok
22:34:10.0328 0x0fc4  [ 8D04819A3CE51B9EB47E5689B44D43C4, B0588AF967A7611F05BC8A8AD0C945DBB7BF995D7DA5C28FD0D007E33BF1F502 ] sdbus           C:\WINDOWS\system32\DRIVERS\sdbus.sys
22:34:10.0359 0x0fc4  sdbus - ok
22:34:11.0265 0x0fc4  [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Programme\Spybot - Search & Destroy 2\SDFSSvc.exe
22:34:11.0390 0x0fc4  SDScannerService - ok
22:34:11.0906 0x0fc4  [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Programme\Spybot - Search & Destroy 2\SDUpdSvc.exe
22:34:11.0937 0x0fc4  SDUpdateService - ok
22:34:12.0015 0x0fc4  [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService    C:\Programme\Spybot - Search & Destroy 2\SDWSCSvc.exe
22:34:12.0015 0x0fc4  SDWSCService - ok
22:34:12.0062 0x0fc4  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:34:12.0062 0x0fc4  Secdrv - ok
22:34:12.0125 0x0fc4  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
22:34:12.0125 0x0fc4  seclogon - ok
22:34:12.0171 0x0fc4  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS            C:\WINDOWS\system32\sens.dll
22:34:14.0750 0x0fc4  SENS - ok
22:34:14.0890 0x0fc4  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
22:34:14.0937 0x0fc4  serenum - ok
22:34:14.0968 0x0fc4  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
22:34:14.0984 0x0fc4  Serial - ok
22:34:15.0078 0x0fc4  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
22:34:15.0125 0x0fc4  Sfloppy - ok
22:34:15.0375 0x0fc4  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
22:34:15.0390 0x0fc4  SharedAccess - ok
22:34:15.0468 0x0fc4  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:34:15.0468 0x0fc4  ShellHWDetection - ok
22:34:15.0468 0x0fc4  Simbad - ok
22:34:17.0171 0x0fc4  [ 388AE59FE75F1B959DFA0900923C61BB, 0D47F8B4B4FBE5BF041DBE75B0A14D905E9310FFA6F0160746455B38A349EA54 ] Skype C2C Service C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Skype\Toolbars\Skype C2C Service\c2c_service.exe
22:34:17.0937 0x0fc4  Skype C2C Service - ok
22:34:18.0234 0x0fc4  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe
22:34:18.0250 0x0fc4  SkypeUpdate - ok
22:34:18.0421 0x0fc4  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:34:18.0593 0x0fc4  SLIP - ok
22:34:18.0750 0x0fc4  [ D03A4CDB1B089E3F6C23501339506E5E, 7264A840DAF2AAF19DAC52B3A445A1BEB588C10778287FABF9C0CEFC5FE99F06 ] SMCIRDA         C:\WINDOWS\system32\DRIVERS\smcirda.sys
22:34:19.0031 0x0fc4  SMCIRDA - ok
22:34:19.0343 0x0fc4  [ 79555B34913CB5D1EA429D295C5A17AC, 3A11F51C3AA416308012DA69EA4D1414DE1AFF87AB514C9633D23BC43B5FE8DC ] snapman         C:\WINDOWS\system32\DRIVERS\snapman.sys
22:34:19.0921 0x0fc4  snapman - ok
22:34:20.0062 0x0fc4  [ A1ECEEAA5C5E74B2499EB51D38185B84, BB866DDA4D1F85A68A652204DAC7378456793E096A15F88B9C153BECD3D18C27 ] SONYPVU1        C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
22:34:20.0421 0x0fc4  SONYPVU1 - ok
22:34:20.0437 0x0fc4  Sparrow - ok
22:34:20.0562 0x0fc4  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
22:34:20.0562 0x0fc4  splitter - ok
22:34:20.0812 0x0fc4  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
22:34:20.0812 0x0fc4  Spooler - ok
22:34:20.0968 0x0fc4  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
22:34:21.0156 0x0fc4  sr - ok
22:34:21.0421 0x0fc4  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
22:34:21.0437 0x0fc4  srservice - ok
22:34:21.0781 0x0fc4  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
22:34:21.0796 0x0fc4  Srv - ok
22:34:22.0000 0x0fc4  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
22:34:22.0000 0x0fc4  SSDPSRV - ok
22:34:22.0078 0x0fc4  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
22:34:22.0250 0x0fc4  ssmdrv - ok
22:34:22.0546 0x0fc4  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
22:34:23.0796 0x0fc4  stisvc - ok
22:34:23.0906 0x0fc4  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:34:24.0906 0x0fc4  streamip - ok
22:34:25.0125 0x0fc4  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
22:34:25.0218 0x0fc4  swenum - ok
22:34:25.0328 0x0fc4  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
22:34:25.0500 0x0fc4  swmidi - ok
22:34:25.0500 0x0fc4  SwPrv - ok
22:34:25.0515 0x0fc4  symc810 - ok
22:34:25.0515 0x0fc4  symc8xx - ok
22:34:25.0531 0x0fc4  sym_hi - ok
22:34:25.0531 0x0fc4  sym_u3 - ok
22:34:26.0046 0x0fc4  [ FD5010A627D2A7BBD1C44A488E3A8FE5, F0E9D2EC77BB0B5AF4CCA8C94C23F13C4C8330356AD4527321A1A3C196B1C8C2 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:34:26.0500 0x0fc4  SynTP - ok
22:34:26.0546 0x0fc4  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
22:34:26.0546 0x0fc4  sysaudio - ok
22:34:26.0875 0x0fc4  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
22:34:27.0093 0x0fc4  SysmonLog - ok
22:34:27.0359 0x0fc4  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
22:34:27.0375 0x0fc4  TapiSrv - ok
22:34:27.0859 0x0fc4  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:34:28.0734 0x0fc4  Tcpip - ok
22:34:28.0812 0x0fc4  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
22:34:28.0953 0x0fc4  TDPIPE - ok
22:34:29.0078 0x0fc4  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
22:34:29.0218 0x0fc4  TDTCP - ok
22:34:29.0328 0x0fc4  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
22:34:34.0250 0x0fc4  TermDD - ok
22:34:34.0625 0x0fc4  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
22:34:35.0312 0x0fc4  TermService - ok
22:34:35.0968 0x0fc4  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
22:34:36.0078 0x0fc4  Themes - ok
22:34:36.0890 0x0fc4  [ 9179E07503630D6FB2E4162FF0196191, 3230FB959D4036780F480AD5AD480B1D8A456D52575ADC29174025CC0A7E239F ] tifm21          C:\WINDOWS\system32\drivers\tifm21.sys
22:34:38.0796 0x0fc4  tifm21 - ok
22:34:38.0953 0x0fc4  [ B3EE891D8C28E230421D506E363EFC07, 64CBAC67C0AECA7EA8428EC5B709B90C16FF49BD4D38074B39EB97A87B22355B ] tifsfilter      C:\WINDOWS\system32\DRIVERS\tifsfilt.sys
22:34:39.0062 0x0fc4  tifsfilter - ok
22:34:39.0656 0x0fc4  [ 9DBE8FA8CB99761A476FFC034E9DBCFC, A8B572F12F048FE53728BD313EBD0F1AE30B497C484713A0357EE0C2C9CE7649 ] timounter       C:\WINDOWS\system32\DRIVERS\timntr.sys
22:34:40.0890 0x0fc4  timounter - ok
22:34:41.0375 0x0fc4  [ 03681A1CE77F51586903869A5AB1DEAB, E2EC0A481412166B654682C2F3D953E96E757466135CBD2D813B967EDB13C721 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
22:34:41.0906 0x0fc4  TlntSvr - ok
22:34:42.0265 0x0fc4  TosIde - ok
22:34:42.0718 0x0fc4  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
22:34:43.0531 0x0fc4  TrkWks - ok
22:34:43.0734 0x0fc4  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
22:34:44.0171 0x0fc4  Udfs - ok
22:34:44.0187 0x0fc4  ultra - ok
22:34:44.0750 0x0fc4  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
22:34:45.0593 0x0fc4  Update - ok
22:34:46.0093 0x0fc4  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
22:34:46.0109 0x0fc4  upnphost - ok
22:34:46.0578 0x0fc4  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
22:34:47.0171 0x0fc4  UPS - ok
22:34:47.0375 0x0fc4  [ 8BF5D980CDCE35FB26F05047144BB57E, 8A770DD649FA0D6F574651E5525B983261B823C5778764598D89C453E68ED3F1 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
22:34:47.0515 0x0fc4  USBAAPL - ok
22:34:47.0812 0x0fc4  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
22:34:48.0015 0x0fc4  usbaudio - ok
22:34:48.0312 0x0fc4  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:34:48.0734 0x0fc4  usbccgp - ok
22:34:48.0984 0x0fc4  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:34:49.0187 0x0fc4  usbehci - ok
22:34:49.0531 0x0fc4  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:34:49.0718 0x0fc4  usbhub - ok
22:34:49.0906 0x0fc4  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:34:50.0265 0x0fc4  usbprint - ok
22:34:50.0406 0x0fc4  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:34:50.0781 0x0fc4  usbscan - ok
22:34:51.0125 0x0fc4  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:34:54.0031 0x0fc4  USBSTOR - ok
22:34:54.0187 0x0fc4  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:34:55.0500 0x0fc4  usbuhci - ok
22:34:55.0703 0x0fc4  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
22:34:55.0750 0x0fc4  usbvideo - ok
22:34:56.0234 0x0fc4  [ 1A131C2CA1B99542F9B0DD0C901F6587, CE79B4F74E46810AAA75163739739C4D6CFA5FDE1B2DE1AA6E1525CB8D589B01 ] VClone          C:\WINDOWS\system32\DRIVERS\VClone.sys
22:34:56.0421 0x0fc4  VClone - ok
22:34:56.0562 0x0fc4  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
22:34:56.0828 0x0fc4  VgaSave - ok
22:34:57.0171 0x0fc4  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
22:34:58.0609 0x0fc4  ViaIde - ok
22:34:58.0953 0x0fc4  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
22:34:59.0250 0x0fc4  VolSnap - ok
22:34:59.0750 0x0fc4  [ 27B3DD12A19EEC50220DF15B64913DDA, 3585E3A6C52DF2F6FD6667228EECEEB12A2055869377F6C4A14DEA1C213C05F9 ] vsdatant        C:\WINDOWS\system32\vsdatant.sys
22:35:00.0562 0x0fc4  vsdatant - ok
22:35:00.0890 0x0fc4  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
22:35:01.0359 0x0fc4  VSS - ok
22:35:01.0734 0x0fc4  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
22:35:01.0734 0x0fc4  W32Time - ok
22:35:03.0703 0x0fc4  [ B1F126E7E28877106D60E6FF3998D033, 1F59798DF18994AA720522CC5FBA5B79F9BD167DBBC2B9D670F796E1DFD10C0C ] w39n51          C:\WINDOWS\system32\DRIVERS\w39n51.sys
22:35:06.0015 0x0fc4  w39n51 - ok
22:35:06.0187 0x0fc4  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:35:06.0375 0x0fc4  Wanarp - ok
22:35:06.0890 0x0fc4  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
22:35:08.0281 0x0fc4  Wdf01000 - ok
22:35:08.0296 0x0fc4  WDICA - ok
22:35:08.0390 0x0fc4  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
22:35:08.0625 0x0fc4  wdmaud - ok
22:35:08.0718 0x0fc4  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
22:35:08.0812 0x0fc4  WebClient - ok
22:35:10.0187 0x0fc4  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
22:35:10.0187 0x0fc4  winmgmt - ok
22:35:10.0406 0x0fc4  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
22:35:10.0484 0x0fc4  WmdmPmSN - ok
22:35:10.0921 0x0fc4  [ FFA4D901D46D07A5BAB2D8307FBB51A6, 53C6D04D111EDF774C7F7EEB8D032B372E6244774D56B1B34CF1236027EC9450 ] Wmi             C:\WINDOWS\System32\advapi32.dll
22:35:12.0000 0x0fc4  Wmi - ok
22:35:12.0109 0x0fc4  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
22:35:12.0187 0x0fc4  WmiAcpi - ok
22:35:12.0359 0x0fc4  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:35:12.0375 0x0fc4  WmiApSrv - ok
22:35:13.0484 0x0fc4  [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
22:35:13.0515 0x0fc4  WMPNetworkSvc - ok
22:35:15.0265 0x0fc4  [ DCF3E3EDF5109EE8BC02FE6E1F045795, 4B8E14B1CFB095982D34DAEC336114F5039D7793080FB787DC95A63B6B945DD0 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:35:15.0406 0x0fc4  WPFFontCache_v0400 - ok
22:35:15.0640 0x0fc4  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
22:35:15.0640 0x0fc4  wscsvc - ok
22:35:15.0781 0x0fc4  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:35:15.0843 0x0fc4  WSTCODEC - ok
22:35:15.0890 0x0fc4  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
22:35:16.0078 0x0fc4  wuauserv - ok
22:35:16.0218 0x0fc4  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:35:16.0281 0x0fc4  WudfPf - ok
22:35:16.0390 0x0fc4  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:35:16.0500 0x0fc4  WudfRd - ok
22:35:16.0671 0x0fc4  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
22:35:16.0687 0x0fc4  WudfSvc - ok
22:35:17.0015 0x0fc4  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
22:35:19.0500 0x0fc4  WZCSVC - ok
22:35:19.0578 0x0fc4  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
22:35:19.0828 0x0fc4  xmlprov - ok
22:35:19.0843 0x0fc4  ================ Scan global ===============================
22:35:20.0109 0x0fc4  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
22:35:20.0750 0x0fc4  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
22:35:21.0031 0x0fc4  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
22:35:21.0078 0x0fc4  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
22:35:21.0078 0x0fc4  [ Global ] - ok
22:35:21.0078 0x0fc4  ================ Scan MBR ==================================
22:35:21.0125 0x0fc4  [ 14C6601BDCC8A8484143829F2700ED2C ] \Device\Harddisk0\DR0
22:35:50.0453 0x0fc4  \Device\Harddisk0\DR0 - ok
22:35:50.0453 0x0fc4  ================ Scan VBR ==================================
22:35:50.0484 0x0fc4  [ A37B678C2E14CD9DC78ECEF3AA74DFF0 ] \Device\Harddisk0\DR0\Partition1
22:35:50.0546 0x0fc4  \Device\Harddisk0\DR0\Partition1 - ok
22:35:50.0578 0x0fc4  [ EE881F92AE7DFD56AD18FF7C9D3B7BF6 ] \Device\Harddisk0\DR0\Partition2
22:35:50.0578 0x0fc4  \Device\Harddisk0\DR0\Partition2 - ok
22:35:52.0406 0x0fc4  AV detected via SS1: Avira Desktop, 14.0.3.336, disabled, updated
22:35:52.0406 0x0fc4  AV detected via SS1: Emsisoft Anti-Malware, 7, disabled, updated
22:35:52.0421 0x0fc4  Win FW state via NFM: enabled
22:35:55.0765 0x0fc4  ============================================================
22:35:55.0765 0x0fc4  Scan finished
22:35:55.0765 0x0fc4  ============================================================
22:35:55.0765 0x0fbc  Detected object count: 1
22:35:55.0765 0x0fbc  Actual detected object count: 1
22:37:20.0765 0x0fbc  b7cac806122b9e5d ( Rootkit.Win32.Necurs.gen ) - skipped by user
22:37:20.0765 0x0fbc  b7cac806122b9e5d ( Rootkit.Win32.Necurs.gen ) - User select action: Skip
22:38:30.0656 0x0680  Deinitialize success

Share this post


Link to post
Share on other sites

 

22:37:20.0765 0x0fbc  b7cac806122b9e5d ( Rootkit.Win32.Necurs.gen ) - skipped by user

22:37:20.0765 0x0fbc  b7cac806122b9e5d ( Rootkit.Win32.Necurs.gen ) - User select action: Skip

Hier bitte auf Cure oder Delete stellen und laufen lassen.

 

Dann bitte das Logfile von diesem Fix posten. Logfiles bitte nicht direkt in das Thema posten, sondern als Anhang mitschicken. Danke :)

Share this post


Link to post
Share on other sites

Sehr schön.

Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1

WICHTIG - Speichere Combofix auf deinem Desktop

  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

starte den Rechner einfach neu. Dies sollte das Problem beheben.

Share this post


Link to post
Share on other sites

Super, jetzt entfernen wir noch en bissl Adware, dan evtl ein paar Reste und sind durch.

Downloade Dir bitte AdwCleaner auf deinen Desktop.

  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Klicke auf Suchen, dann Löschen.
  • Nach Ende des Suchlaufs öffnet sich eine Textdatei.
  • Poste mir den Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner[s1].txt.
Bitte ebenso einen frischen Scan mit FRST machen und das Logfile anhängen. Gibt es noch Probleme mit dem Rechner?

Share this post


Link to post
Share on other sites

Dann räumen wir mal auf :)

Achtung nicht auf WErbung auf der Seite klicken.

Downloade dir bitte delfix auf deinen Desktop.

  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.
  • DelFix entfernt u. a. alle verwendeten Programme und löscht sich abschließend selbst.
Fertig :)

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates

    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.

    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.
Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
    Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
  • AdblockPlus

    Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.

    Es spart ausserdem Downloadkapazität.Performance

    Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC

    Halte dich fern von jedlichen Registry Cleanern.

    Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links

    Miekemoes Blogspot ( MVP )

    Bill Castner ( MVP )

    Don'ts

    • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
    • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
    • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
    • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
    Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

    Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

Share this post


Link to post
Share on other sites

Dieses Thema scheint erledigt und wird geschlossen.

Solltest du das Thema erneut brauchen, schicke mir bitte eine PM und wir machen hier weiter.

Jeder andere bitte diese Anleitung lesen und einen eigenen Thread erstellen.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.