| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber istWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
09.06.2013, 17:03
| #1 |
 |  Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist Hallo zusammen, seit ein paar Tagen macht mein Laptop sich selbstständig. Der Cursor bewegt sich, es öffnen sich Dateien (selbst erstellte Tabellen von OpenOffice), bei einen Spiel ändern sich die Einstellungen, die Benutzerkontenverwaltung öffent sich usw. Und Opera öffent sich erst nach mehreren Versuchen. Ich habe dann mit Avira einen SystemScan gemacht. Dort wurden auch Trojaner gefunden. (TR/Barys.17770 TR/HideExec.A TR/CoinBit.M) Diese habe ich in Quarantäne gesteckt und gelöscht. Avira, Malwarebytes und Spybot S&D (die letzten zwei habe ich ganz frisch runter geladen, weil Avira nichts gefunden hat) zeigen bei Scans immer an, dass sie nichts finden und alles sauber wäre, trotzdem öffnet sich immer wieder etwas, wenn ich nicht am Laptop bin (auch wenn das Internet getrennt ist). Zuletzt hat sich im Taskmanager selbst "neuer Task" geöffnet und dort stand "C:\Users\Katja\AppData\LocalLow\Sun\Java" drinn und Opera zeigt an, dass ich keine Internetverbindung hätte. Ich weiß nicht was ich nun machen soll und wäre sehr dankbar, wenn mir hier jemand weiterhelfen könnte. Achja, falls dies jemanden trotz des Textes noch nicht klar ist: Ich bin eine absolute PC-Blondine und bin schon glücklich, dass mein Laptop bis jetzt noch nicht zum Waffeleisen geworden ist. Also bitte dies beim Antworten berücksichtigen und auf Fachchinesisch verzichten (und am besten auch verdammt viel Geduld haben. Im Gegenzug nehme ich auch gerne den Spott im Kauf).  Hier die Scantexte von den Programmen die man vorher machen soll. defogger_disable.log - Editor defogger_disable by jpshortstuff (23.02.10.1) Log created at 17:28 on 09/06/2013 (Katja) Checking for autostart values... HKCU\~\Run values retrieved. HKLM\~\Run values retrieved. Checking for services/drivers... -=E.O.F=- Extras.Txt - Editor OTL Extras logfile created on: 09.06.2013 17:28:33 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Katja\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16576) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,68 Gb Total Physical Memory | 2,10 Gb Available Physical Memory | 57,10% Memory free 7,36 Gb Paging File | 5,58 Gb Available in Paging File | 75,88% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 683,54 Gb Total Space | 612,70 Gb Free Space | 89,64% Space Free | Partition Type: NTFS Drive D: | 6,93 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Computer Name: KATJAS-PC | User Name: Katja | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software) ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software) https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software) https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.) ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0793772A-5335-4ECF-853B-2FEC8EE918CF}" = rport=138 | protocol=17 | dir=out | app=system | "{130C5FDE-B3D1-4D50-8DD7-FC6F3E066906}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{2272A891-88B8-40D4-9A9C-6EBBBA71B056}" = lport=139 | protocol=6 | dir=in | app=system | "{2C748389-9B10-4D1F-916D-08306DC570FC}" = rport=445 | protocol=6 | dir=out | app=system | "{3293CD03-9516-48D0-9AE0-71E32E297CA9}" = rport=139 | protocol=6 | dir=out | app=system | "{361CE98B-99B8-4919-A248-C5ED81EBBAAC}" = lport=445 | protocol=6 | dir=in | app=system | "{43AF4A43-82D6-4EB5-B467-1DD938E427D4}" = lport=137 | protocol=17 | dir=in | app=system | "{4F910D8C-3873-4A35-B6B5-07A4890B9E91}" = lport=138 | protocol=17 | dir=in | app=system | "{65F4A719-2A59-4E92-AC71-DD86F9BCCDB6}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{6A9C1F49-8A8C-46B8-AF88-03421E312743}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{8F5098A5-A232-4D89-875C-2CC9B640C7F7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{A45B9B0D-99A6-463E-B296-BA25BE9C262C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{AC0353C1-4B4E-41CA-BC57-6D74064F7C2A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{AF76E04A-40DC-4958-95A5-BA042821AA74}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{BB65CD85-9A9A-4BF2-BEBD-B34DE59D28C7}" = rport=137 | protocol=17 | dir=out | app=system | "{E54B4C6A-5078-4684-A809-DD3CE924DDB2}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{097122A8-5515-452E-9598-DF4E9C11284E}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{0E759757-1DEA-4832-9998-CAA1F685298D}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe | "{0F53CE25-9A96-4D62-82E6-112589D4CF8D}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe | "{1E2A2774-A5E9-4913-B55F-C74B4B40AE64}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{223E617D-1646-4A72-93B2-763E1C26F10E}" = dir=in | app=c:\program files (x86)\acer\acer vcm\vc.exe | "{2300C142-283D-4C6A-B472-514FBC58EB85}" = dir=in | app=c:\eigene dateien\itunes\itunes.exe | "{238B126C-8B4E-4143-AD64-2AF47FCF23DF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{2F934194-8BD2-4569-8452-D266A7B414AD}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{307DF8C2-0297-49ED-ACA5-1BEA1811BF42}" = protocol=17 | dir=in | app=c:\program files (x86)\sweetim\communicator\sweetpacksupdatemanager.exe | "{3B12EBE8-DA7F-4615-BC51-7CFCE03AA6FA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{3C13F0F1-BF9C-4888-ACF9-F8258CD6BED9}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{3EF599A5-2FEA-46B0-AA3B-CA1AAAA7F414}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | "{433ACB28-799C-4A02-B22E-0E9BC9CD8BCA}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe | "{4624157E-5D8A-4DF9-9E42-EABDAEE87101}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe | "{478B0443-B6D4-4CAC-A9CF-E6BD55A2044D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{47C16121-A382-4EE4-98B9-EB913B81B838}" = dir=in | app=c:\program files (x86)\acer\acer vcm\rs_service.exe | "{63072D1F-4C1B-463B-ACD7-E57C9588ED50}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{67B4F85C-6302-4103-AD52-9F69DC4E7285}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{69FE46A8-F585-4E75-88A8-5EC69B3801B3}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe | "{6D7336EC-D482-402C-8B46-3930CB59CE60}" = protocol=17 | dir=in | app=c:\program files\hp\hp deskjet 1000 j110 series\bin\usbsetup.exe | "{6E918D94-2CDA-4D43-A718-FBA5856F6651}" = protocol=6 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\schedulersvc.exe | "{70D10400-9048-4A38-B2C1-CC87E9A86051}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{76A2AA0E-7FB0-4E6E-A0CB-A518ADB7D92E}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{79189415-934B-4D37-B80C-1831DC6B907E}" = protocol=17 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\schedulersvc.exe | "{7FD35537-FFAE-4098-B8CF-E97275091863}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | "{8475868A-0B83-4B07-9382-037CD9FC4158}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe | "{87735518-1C59-4D25-929A-365F2FA0CDD9}" = protocol=6 | dir=in | app=c:\program files\hp\hp deskjet 1000 j110 series\bin\usbsetup.exe | "{9A1F6891-0692-477C-951A-F1A011AA2B4B}" = protocol=6 | dir=in | app=c:\program files (x86)\sweetim\communicator\sweetpacksupdatemanager.exe | "{A1FF660C-4057-4A5F-ABE5-FE61E5E86672}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{A319C65C-ABA7-4202-B167-20C5E57EDFB7}" = protocol=6 | dir=in | app=c:\windows\syswow64\msiexec.exe | "{A6F21B6B-4F09-489E-A047-BE8C208981B8}" = protocol=6 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\backupsvc.exe | "{AA8EFA79-58EB-40C7-8304-57241C89F3B0}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{ADE33B44-8DB7-4532-A57C-BC9D6F74C189}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe | "{AEA8FF2C-5F60-4A8D-94B2-308FA3BF9F16}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe | "{AF550F63-5666-4111-AF4A-B9FF6C5D31AF}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\pluginwrapper\opera_plugin_wrapper.exe | "{D02F4FCC-0F57-46A3-A748-855000821AA9}" = protocol=17 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\backupsvc.exe | "{D931D71C-246B-4327-946A-8109FF38D6EC}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{DC9DF5CE-F042-4DE8-BA02-72428C47BCD9}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | "{DEE60518-3E47-4E61-8892-AB058D673EF0}" = protocol=17 | dir=in | app=c:\windows\syswow64\msiexec.exe | "{E3EE62E4-B04A-4D15-8A14-3BB3DC7FD64C}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{F565B4BF-ABA3-4FB1-A699-7E510031D007}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe | "{FF071744-80D3-42D8-9C8B-B7F0FDEED798}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\pluginwrapper\opera_plugin_wrapper.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0919C44F-F18A-4E3B-A737-03685272CE72}" = Windows Live Remote Service Resources "{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}" = iTunes "{1553D712-B35F-4A82-BC72-D6B11A94BE3E}" = Windows Live Remote Service Resources "{1685AE50-97ED-485B-80F6-145071EE14B0}" = Windows Live Remote Service Resources "{17A4FD95-A507-43F1-BC92-D8572AF8340A}" = Windows Live Remote Service Resources "{19F09425-3C20-4730-9E2A-FC2E17C9F362}" = Windows Live Remote Service Resources "{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant "{1EB2CFC3-E1C5-4FC4-B1F8-549DD6242C67}" = Windows Live Remote Service Resources "{22AB5CFD-B3DB-414E-9F99-4D024CCF1DA6}" = Windows Live Remote Client Resources "{2426E29F-9E8C-4C0B-97FC-0DB690C1ED98}" = Windows Live Remote Client Resources "{26A24AE4-039D-4CA4-87B4-2F86417004FF}" = Java(TM) 7 Update 4 (64-bit) "{2C1A6191-9804-4FDC-AB01-6F9183C91A13}" = Windows Live Remote Client Resources "{2F304EF4-0C31-47F4-8557-0641AAE4197C}" = Windows Live Remote Client Resources "{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources "{350FD0E7-175A-4F86-84EF-05B77FCD7161}" = Windows Live Remote Service Resources "{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources "{3F7C54EA-F59C-45DD-BA93-AD1E084A9550}" = Studie zur Verbesserung von HP Deskjet 1000 J110 series Produkten "{456FB9B5-AFBC-4761-BBDC-BA6BAFBB818F}" = Windows Live Remote Client Resources "{480F28F0-8BCE-404A-A52E-0DBB7D1CE2EF}" = Windows Live Remote Service Resources "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{4C2E49C0-9276-4324-841D-774CCCE5DB48}" = Windows Live Remote Client Resources "{5141AA6E-5FAC-4473-BFFB-BEE69DDC7F2B}" = Windows Live Remote Service Resources "{5151E2DB-0748-4FD1-86A2-72E2F94F8BE7}" = Windows Live Remote Service Resources "{57F2BD1C-14A3-4785-8E48-2075B96EB2DF}" = Windows Live Remote Service Resources "{5E2CD4FB-4538-4831-8176-05D653C3E6D4}" = Windows Live Remote Service Resources "{5F44A3A1-5D24-4708-8776-66B42B174C64}" = Windows Live Remote Client Resources "{5FCD6EFE-C2E7-4D77-8212-4BA223D8DF8E}" = Windows Live Remote Client Resources "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{5FEAD3E5-A158-4B66-B92B-0C959D7CF838}" = Windows Live Remote Service Resources "{61407251-7F7D-4303-810D-226A04D5CFF3}" = Windows Live Remote Service Resources "{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources "{692CCE55-9EAE-4F57-A834-092882E7FE0B}" = Windows Live Remote Client Resources "{6C9D3F1D-DBBE-46F9-96A0-726CC72935AF}" = Windows Live Remote Service Resources "{6CBFDC3C-CF21-4C02-A6DC-A5A2707FAF55}" = Windows Live Remote Service Resources "{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour "{702A632F-99CE-4E2D-B8F2-BF980E9CF62F}" = Windows Live Remote Client Resources "{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}" = Apple Mobile Device Support "{7AEC844D-448A-455E-A34E-E1032196BBCD}" = Windows Live Remote Service Resources "{825C7D3F-D0B3-49D5-A42B-CBB0FBE85E99}" = Windows Live Remote Client Resources "{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources "{850B8072-2EA7-4EDC-B930-7FE569495E76}" = Windows Live Remote Client Resources "{8970AE69-40BE-4058-9916-0ACB1B974A3D}" = Windows Live Remote Client Resources "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8EB588BD-D398-40D0-ADF7-BE1CEEF7C116}" = Windows Live Remote Client Resources "{8F7F2D9C-2DBE-4F10-9C7C-2724110A3339}" = Windows Live Remote Service Resources "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{97A295A7-8840-4B35-BB61-27A8F4512CA3}" = Windows Live Remote Service Resources "{9E9C960F-7F47-46D5-A95D-950B354DE2B8}" = Windows Live Remote Service Resources "{A060182D-CDBE-4AD6-B9B4-860B435D6CBD}" = Windows Live Remote Client Resources "{A508D5A2-3AC1-4594-A718-A663D6D3CF11}" = Windows Live Remote Service Resources "{A679FBE4-BA2D-4514-8834-030982C8B31A}" = Windows Live Remote Service Resources "{A6E0F6BE-30AC-4D36-97B0-1AC20E23CB83}" = Windows Live Remote Client Resources "{A84DB02B-9C2B-4272-9D2D-A80E00A56513}" = Broadcom Gigabit NetLink Controller "{B0BF8602-EA52-4B0A-A2BD-EDABB0977030}" = Windows Live Remote Client Resources "{B680A663-1A15-47A5-A07C-7DF9A97558B7}" = Windows Live Remote Client Resources "{B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}" = Windows Live Remote Client Resources "{C504EC13-E122-4939-BD6E-EE5A3BAA5FEC}" = Windows Live Remote Client Resources "{C9F05151-95A9-4B9B-B534-1760E2D014A5}" = Windows Live Remote Client Resources "{CFF3C688-2198-4BC3-A399-598226949C39}" = Windows Live Remote Client Resources "{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector "{D1C1556C-7FF3-48A3-A5D6-7126F0FAFB66}" = Windows Live Remote Client Resources "{D3E4F422-7E0F-49C7-8B00-F42490D7A385}" = Windows Live Remote Service Resources "{D5876F0A-B2E9-4376-B9F5-CD47B7B8D820}" = Windows Live Remote Client Resources "{D930AF5C-5193-4616-887D-B974CEFC4970}" = Windows Live Remote Service Resources "{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter "{DBEDAF67-C5A3-4C91-951D-31F3FE63AF3F}" = Windows Live Remote Client Resources "{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client "{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service "{ECFFD23C-3111-4685-8118-E1F79644203F}" = HP Deskjet 1000 J110 series - Grundlegende Software für das Gerät "{ED421F97-E1C3-4E78-9F54-A53888215D58}" = Windows Live Remote Client Resources "{EFB20CF5-1A6D-41F3-8895-223346CE6291}" = Windows Live Remote Service Resources "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "{F6CB2C5F-B2C1-4DF1-BF44-39D0DC06FE6F}" = Windows Live Remote Service Resources "{FAA3933C-6F0D-4350-B66B-9D7F7031343E}" = Windows Live Remote Service Resources "{FAD0EC0B-753B-4A97-AD34-32AC1EC8DB69}" = Windows Live Remote Client Resources "Elantech" = ETDWare PS/2-x64 7.0.6.5_WHQL "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{00884F14-05BD-4D8E-90E5-1ABF78948CA4}" = Windows Live Mesh "{0125DB4D-98A0-4DBF-B68A-23BF08FFA6A3}" = Windows Live Messenger "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam "{039480EE-6933-4845-88B8-77FD0C3D059D}" = Windows Live Mesh "{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM "{0557BBDA-69D3-4FA4-A93C-A5300F7034B4}" = Windows Live Writer "{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack "{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common "{06B05153-97E4-427E-B1A8-E098F6C5E52F}" = Windows Live Essentials "{073F306D-9851-4969-B828-7B6444D07D55}" = Windows Live Photo Common "{0785A0B6-07DF-43CF-B147-E1EB4CEA0345}" = Windows Live Messenger "{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}" = SweetIM for Messenger 3.6 "{09922FFE-D153-44AE-8B60-EA3CB8088F93}" = Windows Live UX Platform Language Pack "{0A4C4B29-5A9D-4910-A13C-B920D5758744}" = بريد Windows Live "{0A9256E0-C924-46DE-921B-F6C4548A1C64}" = Windows Live Messenger "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer "{0C1931EB-8339-4837-8BEC-75029BF42734}" = Windows Live UX Platform Language Pack "{0C975FCC-A06E-4CB6-8F54-A9B52CF37781}" = Windows Liven sähköposti "{0D261C88-454B-46FE-B43B-640E621BDA11}" = Windows Live Mail "{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}" = Galeria de Fotografias do Windows Live "{10186F1A-6A14-43DF-A404-F0105D09BB07}" = Windows Live Mail "{110668B7-54C6-47C9-BAC4-1CE77F156AF5}" = Windows Live Mesh "{11417707-1F72-4279-95A3-01E0B898BBF5}" = Windows Live Mesh "{11778DA1-0495-4ED9-972F-F9E0B0367CD5}" = Windows Live Writer "{1203DC60-D9BD-44F9-B372-2B8F227E6094}" = Windows Live Temel Parçalar "{120C160F-F53D-4A15-A873-E79BF5B98B48}" = Windows Live Photo Common "{128133D3-037A-4C62-B1B7-55666A10587A}" = Windows Live UX Platform Language Pack "{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard "{133D9D67-D475-4407-AC3C-D558087B2453}" = Windows Live Movie Maker "{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources "{168E7302-890A-4138-9109-A225ACAF7AD1}" = Windows Live Photo Common "{17835B63-8308-427F-8CF5-D76E0D5FE457}" = Windows Live Essentials "{17F99FCE-8F03-4439-860A-25C5A5434E18}" = Windows Live Essentials "{198EA334-8A3F-4CB2-9D61-6C10B8168A6F}" = Windows Live Writer "{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker "{1A72337E-D126-4BAF-AC89-E6122DB71866}" = Windows Liven valokuvavalikoima "{1A82AE99-84D3-486D-BAD6-675982603E14}" = Windows Live Writer "{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}" = Bing Bar "{1D6C2068-807F-4B76-A0C2-62ED05656593}" = Windows Live Writer "{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack "{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update "{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}" = Windows Live Writer "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions "{20381A8A-808E-4A53-B6CD-AD2B85E16365}" = Windows Live UX Platform Language Pack "{220C7F8C-929D-4F71-9DC7-F7A6823B38E4}" = Windows Live UX Platform Language Pack "{226F0D93-76DE-4F1C-B14D-DE10443ADB60}" = Windows Live Movie Maker "{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8 "{249EE21B-8EDD-4F36-8A23-E580E9DBE80A}" = Windows Live Mail "{24DF33E0-F924-4D0D-9B96-11F28F0D602D}" = Windows Live UX Platform Language Pack "{2511AAD7-82DF-4B97-B0B3-E1B933317010}" = Windows Live Writer Resources "{25A381E1-0AB9-4E7A-ACCE-BA49D519CF4E}" = Windows Live Mail "{25CD4B12-8CC5-433E-B723-C9CB41FA8C5A}" = Windows Live Writer "{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java(TM) 6 Update 22 "{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7 "{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources "{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com "{28B9D2D8-4304-483F-AD71-51890A063A74}" = Windows Live Photo Common "{29373E24-AC72-424E-8F2A-FB0F9436F21F}" = Windows Live Photo Common "{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials "{2AD2DD70-27F7-4343-BB4E-DE50A32D854B}" = Windows Live Messenger "{2BA5FD10-653F-4CAF-9CCD-F685082A1DC1}" = Windows Live Writer "{2C4E06CC-1F04-4C25-8B3C-93A9049EC42C}" = Windows Live UX Platform Language Pack "{2C7E8AA1-9C03-4606-BF34-5D99D07964DA}" = Windows Live Messenger "{2C865FB0-051E-4D22-AC62-428E035AEAF0}" = Windows Live Mesh "{2D3E034E-F76B-410A-A169-55755D2637BB}" = Windows Live Mesh "{2E50E321-4747-4EB5-9ECB-BBC6C3AC0F31}" = Windows Live Writer Resources "{30075A70-B5D2-440B-AFA3-FB2021740121}" = Backup Manager Advance "{303143DD-1F6D-4BC5-9342-FFC2E19B2DBD}" = Windows Live Messenger "{3125D9DE-8D7A-4987-95F3-8A42389833D8}" = Windows Live Writer Resources "{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery "{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live "{34C4F5AF-D757-4E6A-ABCA-65AB5A50A1A8}" = Windows Live Messenger "{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery "{370F888E-42A7-4911-9E34-7D74632E17EB}" = Windows Live Photo Common "{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack "{39BDD209-5704-480C-9F4A-B69D0370DDBB}" = Windows Live Messenger "{39F95B0B-A0B7-4FA7-BB6C-197DA2546468}" = Windows Live Mesh "{3B72C1E0-26A1-40F6-8516-D50C651DFB3C}" = Windows Live Essentials "{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer "{3D0C22FA-96D7-4789-BC5B-991A5A99BFFA}" = Windows Live Messenger "{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology "{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh "{40BFD84C-64CD-42CC-9909-8734C50429C6}" = Windows Live UX Platform Language Pack "{40C4903E-EDFB-4CAE-A611-41FEBA585921}" = VTech Download Agent Library "{40F4FF7A-B214-4453-B973-080B09CED019}" = Install Absolute Data Protect "{410DF0AA-882D-450D-9E1B-F5397ACFFA80}" = Windows Live Essentials "{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer "{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3 "{429DF1A0-3610-4E9E-8ACE-3C8AC1BA8FCA}" = Windows Live Photo Gallery "{43B43577-2514-4CE0-B14A-7E85C17C0453}" = Windows Live Essentials "{4444F27C-B1A8-464E-9486-4C37BAB39A09}" = Фотогалерия на Windows Live "{458F399F-62AC-4747-99F5-499BBF073D29}" = Windows Live Writer Resources "{4664ED39-C80A-48F7-93CD-EBDCAFAB6CC5}" = Windows Live Writer Resources "{46872828-6453-4138-BE1C-CE35FBF67978}" = Windows Live Mesh "{4736B0ED-F6A1-48EC-A1B7-C053027648F1}" = Galeria fotogràfica del Windows Live "{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live "{48C0DC5E-820A-44F2-890E-29B68EDD3C78}" = Windows Live Writer "{48F597DD-D397-4CFA-91A0-4C033A0113BD}" = Windows Live Mail "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4A04DB63-8F81-4EF4-9D09-61A2057EF419}" = Windows Live Essentials "{4A275FD1-2F24-4274-8C01-813F5AD1A92D}" = Windows Live Messenger "{4B28D47A-5FF0-45F8-8745-11DC2A1C9D0F}" = Windows Live Writer "{4C378B16-46B7-4DA1-A2CE-2EE676F74680}" = Windows Live UX Platform Language Pack "{4D141929-141B-4605-95D6-2B8650C1C6DA}" = Windows Live UX Platform Language Pack "{4D7BAC8A-51B8-4243-8567-1415C4272D13}" = Windows Live Writer "{4D83F339-5A5C-4B21-8FD3-5D407B981E72}" = Windows Live Photo Common "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1 "{50300123-F8FC-4B50-B449-E847D04F1BA2}" = Windows Live Messenger "{506FC723-8E6C-4417-9CFF-351F99130425}" = Windows Live UX Platform Language Pack "{523DF2BB-3A85-4047-9898-29DC8AEB7E69}" = Windows Live UX Platform Language Pack "{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}" = Windows Live Writer Resources "{5495E9A4-501A-4D4C-87C9-E80916CA9478}" = Windows Live UX Platform Language Pack "{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack "{5B58EF61-85F2-4977-97A5-84C19F926579}" = SweetPacks Toolbar for Internet Explorer 4.5 "{5C1F18D2-F6B7-4242-B803-B5A78648185D}" = Corel WinDVD "{5C2F5C1B-9732-4F81-8FBF-6711627DC508}" = Windows Live Fotogalleri "{5CF5B1A5-CBC3-42F0-8533-5A5090665862}" = Windows Live Mesh "{5D273F60-0525-48BA-A5FB-D0CAA4A952AE}" = Windows Live Movie Maker "{5D2E7BD7-4B6F-4086-BA8A-E88484750624}" = Windows Live Writer Resources "{5D90ABE5-8A35-4947-8269-6F40BCE47A95}" = Windows Live Messenger "{5DA7D148-D2D2-4C67-8444-2F0F9BD88A06}" = Windows Live Writer "{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack "{5F6E678A-7E61-448A-86CB-BC2AD1E04138}" = Windows Live Messenger "{6057E21C-ABE9-4059-AE3E-3BEB9925E660}" = Windows Live Messenger "{60C3C026-DB53-4DAB-8B97-7C1241F9A847}" = Windows Live Movie Maker "{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}" = newsXpresso "{625D45F0-5DCB-48BF-8770-C240A84DAAEB}" = Windows Live Mesh "{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources "{63AE67AA-1AB1-4565-B4EF-ABBC5C841E8D}" = Windows Live Messenger "{63CF7D0C-B6E7-4EE9-8253-816B613CC437}" = Windows Live Mail "{63EC2120-1742-4625-AA47-C6A8AEC9C64C}" = Apple Application Support "{640798A0-A4FB-4C52-AC72-755134767F1E}" = Windows Live Movie Maker "{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live "{644063FA-ABA3-42AC-A8AC-3EDC0706018B}" = Windows Live Mesh "{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials "{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{677AAD91-1790-4FC5-B285-0E6A9D65F7DC}" = Windows Live Mail "{6807427D-8D68-4D30-AF5B-0B38F8F948C8}" = Windows Live Writer Resources "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE "{6986737B-F286-40D1-87AF-938339DCF6AB}" = Windows Live Messenger "{69C9C672-400A-43A0-B2DE-9DB38C371282}" = Windows Live Writer "{69CAC24D-B1DC-4B97-A1BE-FE21843108FE}" = Windows Live Writer Resources "{6A4ABCDC-0A49-4132-944E-01FBCCB3465C}" = Windows Live UX Platform Language Pack "{6A563426-3474-41C6-B847-42B39F1485B2}" = Windows Live Messenger "{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}" = Windows Live Mesh "{6B556C37-8919-4991-AC34-93D018B9EA49}" = Windows Live Photo Common "{6CB36609-E3A6-446C-A3C1-C71E311D2B9C}" = Windows Live Movie Maker "{6D30E864-46AE-435B-8230-8B5D42B4AE37}" = Windows Live Messenger "{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker "{6EE9F44A-B8C7-4CDB-B2A9-441AF2AE315A}" = Windows Live Messenger "{6EF2BE2C-3121-48B7-B7A6-C56046B3A588}" = Windows Live Movie Maker "{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common "{709E38A9-7F80-4598-96CC-44B0D553FECE}" = Windows Live Messenger "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{71527C7C-5289-4CB2-88C9-23344C0FF6C1}" = Windows Live Movie Maker "{71A81378-79D5-40CC-9BDC-380642D1A87F}" = Windows Live Writer "{71C95134-F6A9-45E7-B7B3-07CA6012BF2A}" = Windows Live Mesh "{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}" = Windows Live Fotótár "{7327080F-6673-421F-BBD9-B618F357EEB3}" = Windows Live UX Platform Language Pack "{734104DE-C2BF-412F-BB97-FCCE1EC94229}" = Windows Live Writer Resources "{7373E17D-18E0-44A7-AC3A-6A3BFB85D3B3}" = Windows Live Movie Maker "{73FC3510-6421-40F7-9503-EDAE4D0CF70D}" = Windows Live Photo Common "{7465A996-0FCA-4D2D-A52C-F833B0829B5B}" = Windows Live Movie Maker "{7496FD31-E5CB-4AE4-82D3-31099558BF6A}" = Windows Live Mesh "{74E8A7F6-575D-42C7-9178-E87D1B3BEFE8}" = Windows Live UX Platform Language Pack "{77477AEA-5757-47D8-8B33-939F43D82218}" = Windows Live UX Platform Language Pack "{77F69CA1-E53D-4D77-8BA3-FA07606CC851}" = Фотоальбом Windows Live "{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{78DAE910-CA72-450E-AD22-772CB1A00678}" = Windows Live Mesh "{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live "{7ADFA72D-2A9F-4DEC-80A5-2FAA27E23F0F}" = Windows Live Photo Common "{7AF8E500-B349-4A77-8265-9854E9A47925}" = Windows Live Movie Maker "{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}" = Pošta Windows Live "{7C2A3479-A5A0-412B-B0E6-6D64CBB9B251}" = Windows Live Photo Common "{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}" = Windows Live Writer Resources "{7D0DE76C-874E-4BDE-A204-F4240160693E}" = Windows Live Photo Common "{7D1C7B9F-2744-4388-B128-5C75B8BCCC84}" = Windows Live Essentials "{7D926AD2-16D6-42C2-8CA1-AB09E96040BA}" = Windows Live Writer Resources "{7D99B933-E29C-4599-92F0-DAED2AF041E3}" = Windows Live Essentials "{7E017923-16F8-4E32-94EF-0A150BD196FE}" = Windows Live Writer "{7E90B133-FF47-48BB-91B8-36FC5A548FE9}" = Windows Live Writer Resources "{7F6021AE-E688-4D03-843A-C2260482BA0D}" = Windows Live Messenger "{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management "{7FF11E53-C002-4F40-8D68-6BE751E5DD62}" = Windows Live Writer Resources "{804DE397-F82C-4867-9085-E0AA539A3294}" = Windows Live Writer "{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger "{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh "{827D3E4A-0186-48B7-9801-7D1E9DD40C07}" = Windows Live Essentials "{82803FF3-563F-414F-A403-8D4C167D4120}" = Windows Live Mail "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform "{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh "{84267681-BF16-40B6-9564-27BC57D7D71C}" = Windows Live Photo Common "{84A411F9-40A5-4CDA-BF46-E09FBB2BC313}" = Windows Live Essentials "{85373DA7-834E-4850-8AF5-1D99F7526857}" = Windows Live Photo Common "{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer "{861B1145-7762-4794-B40C-3FF0A389DFE6}" = Windows Live Photo Gallery "{86F444A5-C9B9-41DC-AF28-B5E46F5497C7}" = Windows Live Argazki Galeria "{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger "{885F1BCD-C344-4758-85BD-09640CF449A5}" = Windows Live Photo Gallery "{8909CFA8-97BF-4077-AC0F-6925243FFE08}" = Windows Liven asennustyökalu "{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime "{8CF5D47D-27B7-49D6-A14F-10550B92749D}" = Windows Live UX Platform Language Pack "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{8E285C75-9BE2-4349-972B-DECDDF472656}" = Windows Live Writer Resources "{924B4D82-1B97-48EB-8F1E-55C4353C22DB}" = Windows Live Mail "{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker "{93C4B7D5-4E00-491F-BA3E-25B7B63EE7F6}" = Windows Live Mail "{93E464B3-D075-4989-87FD-A828B5C308B1}" = Windows Live Writer Resources "{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010 "{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader "{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria "{99BE7F5D-AB52-4404-9E03-4240FFAA7DE9}" = Windows Live Mesh "{9A00D1BA-D03A-44E5-AF28-86A1F377DF61}" = Die Sims - Hokus Pokus "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail "{9DA3F03B-2CEE-4344-838E-117861E61FAF}" = Windows Live Mail "{9DB90178-B5B0-45BD-B0A7-D40A6A1DF1CA}" = Windows Live Movie Maker "{9E2C5B0E-7A2D-4767-A9B2-77469FB1873A}" = Windows Live Mesh "{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail "{A0B91308-6666-4249-8FF6-1E11AFD75FE1}" = Windows Live Mail "{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh "{A101F637-2E56-42C0-8E08-F1E9086BFAF3}" = Windows Live Movie Maker "{A199DB88-E22D-4CE7-90AC-B8BE396D7BF4}" = Windows Live Movie Maker "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR "{A41A708E-3BE6-4561-855D-44027C1CF0F8}" = Windows Live Photo Common "{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery "{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer "{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer "{AB0B2113-5B96-4B95-8AD1-44613384911F}" = Windows Live Mesh "{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources "{ABD534B7-E951-470E-92C2-CD5AF1735726}" = Windows Live Essentials "{ABE2F2AA-7ADC-4717-9573-BF3F83C696AC}" = Windows Live Mail "{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.1 MUI "{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh "{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}" = Windows Live Mesh "{ADE85655-8D1E-4E4B-BF88-5E312FB2C74F}" = Windows Live Mail "{ADFE4AED-7F8E-4658-8D6E-742B15B9F120}" = Windows Live Photo Common "{AF01B90A-D25C-4F60-AECD-6EEDF509DC11}" = Windows Live Mesh "{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}" = HP Update "{B0AD205F-60D0-4084-AFB8-34D9A706D9A8}" = Windows Live Essentials "{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie "{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail "{B2BCA478-EC0F-45EE-A9E9-5EABE87EA72D}" = Windows Live Photo Common "{B33B61FE-701F-425F-98AB-2B85725CBF68}" = Windows Live Photo Common "{B3BE54A4-8DFE-4593-8E66-56AB7133B812}" = Windows Live Writer "{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1" = Spybot - Search & Destroy "{B618C3BF-5142-4630-81DD-F96864F97C7E}" = Windows Live Essentials "{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}" = Почта Windows Live "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{B7B67AA5-12DA-4F01-918D-B1BF66779D8A}" = Windows Live Writer Resources "{BD4EBDB5-EB14-4120-BB04-BE0A26C7FB3E}" = Windows Live Photo Common "{BD695C2F-3EA0-4DA4-92D5-154072468721}" = Windows Live Fotoğraf Galerisi "{BF022D76-9F72-4203-B8FA-6522DC66DFDA}" = Windows Live Movie Maker "{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh "{C00C2A91-6CB3-483F-80B3-2958E29468F1}" = Συλλογή φωτογραφιών του Windows Live "{C01FCACE-CC3D-49A2-ADC2-583A49857C58}" = Windows Live Essentials "{C08D5964-C42F-48EE-A893-2396F9562A7C}" = Windows Live Mesh "{C1C9D199-B4DD-4895-92DD-9A726A2FE341}" = Windows Live Writer "{C29FC15D-E84B-4EEC-8505-4DED94414C59}" = Windows Live Writer Resources "{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common "{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail "{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail "{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}" = Windows Live Mail "{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common "{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live "{CB66242D-12B1-4494-82D2-6F53A7E024A3}" = Galerie foto Windows Live "{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker "{CD442136-9115-4236-9C14-278F6A9DCB3F}" = Windows Live Movie Maker "{CD7CB1E6-267A-408F-877D-B532AD2C882E}" = Windows Live Photo Common "{CDC39BF2-9697-4959-B893-A2EE05EF6ACB}" = Windows Live Writer "{CE929F09-3853-4180-BD90-30764BFF7136}" = גלריית התמונות של Windows Live "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform "{CF671BFE-6BA3-44E7-98C1-500D9C51D947}" = Windows Live Photo Gallery "{D07B1FDA-876B-4914-9E9A-309732B6D44F}" = Windows Live Mail "{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64 "{D299197D-CDEA-41A6-A363-F532DE4114FD}" = Windows Live UX Platform Language Pack "{D31169F2-CD71-4337-B783-3E53F29F4CAD}" = Windows Live Mail "{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform "{D54A52A8-DF24-4CE8-850B-074CA47DFA74}" = Windows Live Messenger "{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail "{D6CBB3B2-F510-483D-AE0D-1CF3F43CF1EE}" = Windows Live Writer Resources "{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack "{DA29F644-2420-4448-8128-1331BE588999}" = Windows Live Writer "{DAEF48AD-89C8-4A93-B1DD-45B7E4FB6071}" = Windows Live Movie Maker "{DB1208F4-B2FE-44E9-BFE6-8824DBD7891B}" = Windows Live Movie Maker "{DBAA2B17-D596-4195-A169-BA2166B0D69B}" = Windows Live Mail "{DCAB6BA7-6533-44BF-9235-E5BF33B7431C}" = Windows Live Writer "{DDC1E1BD-7615-4186-89E1-F5F43F9B6491}" = Windows Live Movie Maker "{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources "{DDDFCC77-7F9C-45E9-B38E-721BA599BA0C}" = HP Deskjet 1000 J110 series Hilfe "{DE7C13A6-E4EA-4296-B0D5-5D7E8AD69501}" = Windows Live Writer "{DE8F99FD-2FC7-4C98-AA67-2729FDE1F040}" = Windows Live Writer Resources "{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh "{DEF91E0F-D266-453D-B6F2-1BA002B40CB6}" = Windows Live Essentials "{DF71ABBB-B834-41C0-BB58-80B0545D754C}" = Windows Live UX Platform Language Pack "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker "{E5377D46-83C5-445A-A1F1-830336B42A10}" = Windows Live Galerija fotografija "{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer "{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}" = Fotogalerija Windows Live "{E5DD4723-FE0B-436E-A815-DC23CF902A0B}" = Windows Live UX Platform Language Pack "{E62E0550-C098-43A2-B54B-03FB1E634483}" = Windows Live Writer "{E727A662-AF9F-4DEE-81C5-F4A1686F3DFC}" = Windows Live Writer Resources "{E7688C7D-DE09-4D43-9785-534EDE9BC18E}" = Windows Live Messenger "{E83DC314-C926-4214-AD58-147691D6FE9F}" = Основные компоненты Windows Live "{E8524B28-3BBB-4763-AC83-0E83FE31C350}" = Windows Live Writer "{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}" = Galería fotográfica de Windows Live "{E9D98402-21AB-4E9F-BF6B-47AF36EF7E97}" = Windows Live Writer Resources "{EA777812-4905-4C08-8F6E-13BDCC734609}" = Windows Live UX Platform Language Pack "{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger "{ED16B700-D91F-44B0-867C-7EB5253CA38D}" = Raccolta foto di Windows Live "{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater "{EE492B20-FB15-4A98-883C-3054354A11F8}" = Windows Live Messenger "{EEF99142-3357-402C-B298-DEC303E12D92}" = Windows Live 影像中心 "{EF7EAB13-46FC-49DD-8E3C-AAF8A286C5BB}" = Windows Live 程式集 "{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.155 "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver "{F0F5D89A-197C-495B-827E-3E98B811CD2E}" = Windows Live Photo Common "{F0F9505B-3ACF-4158-9311-D0285136AA00}" = Windows Live Essentials "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F13587F7-AA4C-4C2E-AE7D-F33F3CCE57A9}" = Windows Live Messenger "{F4BEA6C1-AAC3-4810-AAEA-588E26E0F237}" = Windows Live UX Platform Language Pack "{F52C5BE7-3F57-464E-8A54-908402E43CE8}" = Windows Live Writer Resources "{F694D1F7-1F12-4550-9B7A-C871273ABAD5}" = Windows Live Messenger "{F7A46527-DF1F-4B0F-9637-98547E189442}" = Windows Live Galeria de Fotos "{F7E80BA7-A09D-4DD1-828B-C4A0274D4720}" = Windows Live Mesh "{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center "{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials "{FA6CF94F-DACF-4FE7-959D-55C421B91B17}" = Windows Live Mail "{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker "{FB697452-8CA4-46B4-98B1-165C922A2EF3}" = Update Manager for SweetPacks 1.0 "{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie "{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}" = معرض صور Windows Live "{FCBC19F7-E068-4B7A-ACBB-CE9CCEB4B21F}" = Windows Live Messenger "{FCDE76CB-989D-4E32-9739-6A272D2B0ED7}" = Windows Live Mesh "{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials "{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials "{FEEF7F78-5876-438B-B554-C4CC426A4302}" = Windows Live Essentials "{FF105207-8423-4E13-B0B1-50753170B245}" = Windows Live Movie Maker "{FF3DFA01-1E98-46B4-A065-DA8AD47C9598}" = Windows Live Movie Maker "{FF737490-5A2D-4269-9D82-97DB2F7C0B09}" = Windows Live Movie Maker "Acer Registration" = Acer Registration "Acer Screensaver" = Acer ScreenSaver "Acer Welcome Center" = Welcome Center "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Avira AntiVir Desktop" = Avira Free Antivirus "BFG-Azada" = Azada "BFG-Big City Adventure - Sydney Australia" = Big City Adventure: Sydney, Australia "BFGC" = Big Fish Games: Game Manager "BFG-Christmasville" = Christmasville "BFG-Cooking Academy" = Cooking Academy "BFG-Cooking Quest" = Cooking Quest "BFG-Die Kunst des Mordens - Geheimakte FBI" = Die Kunst des Mordens: Geheimakte FBI "BFG-Dream Day First Home" = Dream Day First Home "BFG-Gardenscapes" = Gardenscapes "BFG-Mystery Case Files - Huntsville" = Mystery Case Files: Huntsville ™ "BFG-Redrum" = Redrum ™ "BFG-Satisfashion" = Satisfashion "HP Photo Creations" = HP Photo Creations "Identity Card" = Identity Card "Imikimi Plugin" = Imikimi Plugin "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam "InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5 "InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8 "InstallShield_{30075A70-B5D2-440B-AFA3-FB2021740121}" = Acer Backup Manager "InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}" = newsXpresso "Jigsaw Puzzle Lite" = Jigsaw Puzzle Lite "KraiSoft Games Launcher" = KraiSoft Games Launcher "LManager" = Launch Manager "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.75.0.1300 "Opera 12.15.1748" = Opera 12.15 "Picasa 3" = Picasa 3 "PriceGong" = PriceGong 2.6.4 "Update Engine" = Sony Ericsson Update Engine "VTechDownloadManager" = VTech Download Manager "WinGimp-2.0_is1" = GIMP 2.6.12 "WinLiveSuite" = Windows Live Essentials "WinRAR archiver" = WinRAR 4.20 (32-Bit) ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 17.07.2012 13:01:25 | Computer Name = Katjas-PC | Source = SideBySide | ID = 16842815 Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig. Error - 25.07.2012 13:50:18 | Computer Name = Katjas-PC | Source = SideBySide | ID = 16842815 Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig. Error - 26.07.2012 09:18:50 | Computer Name = Katjas-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: gimp-2.6.exe, Version: 0.0.0.0, Zeitstempel: 0x4f2ed3cb Name des fehlerhaften Moduls: libglib-2.0-0.dll, Version: 2.24.2.0, Zeitstempel: 0x4c63c556 Ausnahmecode: 0x40000015 Fehleroffset: 0x00047417 ID des fehlerhaften Prozesses: 0x980 Startzeit der fehlerhaften Anwendung: 0x01cd6b2fa4517455 Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\GIMP-2.0\bin\gimp-2.6.exe Pfad des fehlerhaften Moduls: C:\Program Files (x86)\GIMP-2.0\bin\libglib-2.0-0.dll Berichtskennung: 6ffdf70a-d724-11e1-a299-dc0ea119e436 Error - 29.07.2012 13:37:59 | Computer Name = Katjas-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Cook.exe, Version: 0.0.0.0, Zeitstempel: 0x4836faff Name des fehlerhaften Moduls: Cook.exe, Version: 0.0.0.0, Zeitstempel: 0x4836faff Ausnahmecode: 0xc0000005 Fehleroffset: 0x0001c941 ID des fehlerhaften Prozesses: 0x16d8 Startzeit der fehlerhaften Anwendung: 0x01cd6db0ccb01ef7 Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Cooking Quest\Cook.exe Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Cooking Quest\Cook.exe Berichtskennung: 22e9a5a7-d9a4-11e1-a299-dc0ea119e436 Error - 09.08.2012 06:38:51 | Computer Name = Katjas-PC | Source = WinMgmt | ID = 10 Description = Error - 16.08.2012 03:26:36 | Computer Name = Katjas-PC | Source = WinMgmt | ID = 10 Description = Error - 16.08.2012 14:35:45 | Computer Name = Katjas-PC | Source = WinMgmt | ID = 10 Description = Error - 29.08.2012 14:58:50 | Computer Name = Katjas-PC | Source = SideBySide | ID = 16842815 Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig. Error - 30.08.2012 08:24:14 | Computer Name = Katjas-PC | Source = WinMgmt | ID = 10 Description = Error - 30.08.2012 16:26:45 | Computer Name = Katjas-PC | Source = WinMgmt | ID = 10 Description = [ System Events ] Error - 19.10.2012 11:31:00 | Computer Name = Katjas-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20 Description = Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Definition Update for Windows Defender - KB915597 (Definition 1.139.124.0) Error - 28.10.2012 13:42:36 | Computer Name = Katjas-PC | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst lmhosts erreicht. Error - 17.11.2012 08:58:43 | Computer Name = Katjas-PC | Source = DCOM | ID = 10010 Description = < End of report > OTL.Txt. - Editor &OTL logfile created on: 09.06.2013 17:28:32 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Katja\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16576) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,68 Gb Total Physical Memory | 2,10 Gb Available Physical Memory | 57,10% Memory free 7,36 Gb Paging File | 5,58 Gb Available in Paging File | 75,88% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 683,54 Gb Total Space | 612,70 Gb Free Space | 89,64% Space Free | Partition Type: NTFS Drive D: | 6,93 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Computer Name: KATJAS-PC | User Name: Katja | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013.06.09 17:10:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Katja\Downloads\OTL.exe PRC - [2013.06.09 17:08:26 | 000,050,477 | ---- | M] () -- C:\Users\Katja\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FQX0T3D6\Defogger.exe PRC - [2013.05.16 10:59:00 | 003,830,224 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe PRC - [2013.05.16 10:56:34 | 001,033,688 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe PRC - [2013.05.16 10:56:30 | 001,817,560 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe PRC - [2013.05.15 13:21:32 | 000,171,928 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe PRC - [2013.05.07 19:36:23 | 000,345,312 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe PRC - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2013.04.04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2013.03.20 13:20:36 | 000,086,752 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe PRC - [2013.03.20 13:20:28 | 000,110,816 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2013.03.18 17:47:58 | 000,448,736 | ---- | M] (Sony) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe PRC - [2013.02.04 17:13:54 | 000,070,832 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe PRC - [2012.11.08 04:26:52 | 000,377,800 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\AgentMonitor.exe PRC - [2012.10.02 13:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe PRC - [2012.06.11 16:22:16 | 000,240,208 | ---- | M] (Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe PRC - [2012.02.26 16:01:44 | 000,295,728 | ---- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe PRC - [2012.02.16 15:29:02 | 000,114,992 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe PRC - [2011.01.31 22:55:14 | 000,244,624 | ---- | M] (Acer Incorporated) -- C:\Programme\Acer\Acer Updater\UpdaterService.exe PRC - [2010.08.10 11:06:16 | 000,975,952 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe PRC - [2010.08.10 11:06:16 | 000,321,104 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe PRC - [2010.08.10 11:06:16 | 000,305,744 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMworker.exe PRC - [2010.06.29 00:23:06 | 000,255,744 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe PRC - [2010.06.29 00:22:46 | 000,265,984 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe PRC - [2010.05.20 17:15:00 | 000,110,736 | R--- | M] (InterVideo) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe PRC - [2010.04.13 18:57:58 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2010.04.13 18:57:56 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe PRC - [2010.03.18 06:57:02 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2010.03.18 06:56:56 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2010.03.11 15:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe PRC - [2010.01.29 17:52:58 | 000,260,640 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe PRC - [2010.01.08 15:21:22 | 000,023,584 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe ========== Modules (No Company Name) ========== MOD - [2013.06.09 17:08:26 | 000,050,477 | ---- | M] () -- C:\Users\Katja\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FQX0T3D6\Defogger.exe MOD - [2013.05.16 21:12:21 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll MOD - [2013.05.16 21:11:54 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll MOD - [2013.05.16 21:11:47 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll MOD - [2013.05.16 10:55:28 | 000,161,112 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl MOD - [2013.05.16 10:55:26 | 000,113,496 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl MOD - [2013.05.16 10:55:24 | 000,416,600 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl MOD - [2013.02.04 17:13:54 | 000,070,832 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe MOD - [2013.01.12 21:22:33 | 000,452,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\8ee98383179eca974083a41a8ca0c213\IAStorUtil.ni.dll MOD - [2013.01.12 16:45:16 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll MOD - [2013.01.12 16:44:31 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll MOD - [2013.01.12 16:44:00 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll MOD - [2013.01.12 16:43:53 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll MOD - [2013.01.12 16:43:45 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll MOD - [2012.11.08 04:26:52 | 000,377,800 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\AgentMonitor.exe MOD - [2012.11.07 16:25:36 | 000,204,288 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll MOD - [2012.08.27 22:33:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll MOD - [2012.08.27 22:33:08 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll MOD - [2012.08.06 11:54:24 | 009,843,640 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\QtWebKit4.dll MOD - [2012.04.30 10:57:42 | 000,039,936 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll MOD - [2012.01.27 12:02:32 | 000,569,344 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll MOD - [2011.11.29 19:22:14 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_de_b77a5c561934e089\System.Runtime.Remoting.resources.dll MOD - [2011.07.07 15:54:36 | 000,233,984 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll MOD - [2010.11.13 01:26:08 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll MOD - [2010.11.11 11:24:31 | 000,028,160 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\DACommCenter.dll MOD - [2010.07.13 15:07:23 | 007,826,432 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\QtGui4.dll MOD - [2010.07.05 11:19:39 | 000,116,736 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\QtSolutions_SOAP-2.7.dll MOD - [2010.06.29 00:20:54 | 000,465,576 | ---- | M] () -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll MOD - [2010.06.24 03:16:19 | 002,150,400 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\QtCore4.dll MOD - [2010.06.02 07:05:40 | 000,119,808 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\imageformats\qjpeg4.dll MOD - [2010.06.02 04:56:04 | 000,232,960 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\phonon4.dll MOD - [2010.06.02 04:54:24 | 002,530,816 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\QtXmlPatterns4.dll MOD - [2010.06.02 04:29:22 | 000,934,912 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\QtNetwork4.dll MOD - [2010.06.02 04:28:00 | 000,335,360 | ---- | M] () -- C:\Eigene Programme\VTech\DownloadManager\System\QtXml4.dll MOD - [2010.01.11 15:44:54 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll MOD - [2009.05.20 08:02:04 | 000,072,200 | ---- | M] () -- C:\Program Files (x86)\Launch Manager\CdDirIo.dll ========== Services (SafeList) ========== SRV - [2013.05.14 20:46:22 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2013.03.20 13:20:36 | 000,086,752 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2013.03.20 13:20:28 | 000,110,816 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2013.02.04 17:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion) SRV - [2013.01.08 13:55:20 | 000,161,536 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012.10.02 13:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service) SRV - [2012.06.11 16:22:16 | 000,240,208 | ---- | M] (Microsoft Corporation.) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe -- (BBUpdate) SRV - [2012.06.11 16:22:16 | 000,193,616 | ---- | M] (Microsoft Corporation.) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe -- (BBSvc) SRV - [2011.01.31 22:55:14 | 000,244,624 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Programme\Acer\Acer Updater\UpdaterService.exe -- (Live Updater Service) SRV - [2011.01.05 16:23:58 | 000,867,712 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc) SRV - [2010.09.23 03:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Programme\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV - [2010.09.21 23:49:00 | 002,286,976 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc) SRV - [2010.08.10 11:06:16 | 000,321,104 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService) SRV - [2010.06.29 00:23:06 | 000,255,744 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Running] -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc) SRV - [2010.05.20 17:15:00 | 000,110,736 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr) SRV - [2010.04.13 18:57:58 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010.03.18 06:57:02 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) SRV - [2010.03.18 06:56:56 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2010.03.11 15:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) SRV - [2010.01.29 17:52:58 | 000,260,640 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe -- (RS_Service) SRV - [2010.01.08 15:21:22 | 000,023,584 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe -- (GREGService) SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) ========== Driver Services (SafeList) ========== DRV:64bit: - [2013.04.04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector) DRV:64bit: - [2013.03.20 13:20:39 | 000,130,016 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb) DRV:64bit: - [2013.03.20 13:20:39 | 000,100,712 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:64bit: - [2013.03.20 13:20:39 | 000,028,600 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr) DRV:64bit: - [2012.08.21 14:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM) DRV:64bit: - [2012.07.09 14:42:54 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64) DRV:64bit: - [2012.03.17 23:00:04 | 000,027,176 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc) DRV:64bit: - [2012.03.17 23:00:04 | 000,013,352 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt) DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2010.07.20 02:10:40 | 010,603,904 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx) DRV:64bit: - [2010.06.21 11:45:56 | 000,287,232 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) DRV:64bit: - [2010.06.17 11:18:28 | 000,246,376 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR) DRV:64bit: - [2010.05.15 14:48:28 | 000,384,040 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a) DRV:64bit: - [2010.05.11 12:11:38 | 002,229,608 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:64bit: - [2010.04.28 08:21:38 | 000,018,432 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr) DRV:64bit: - [2010.04.28 08:21:38 | 000,017,408 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper) DRV:64bit: - [2010.04.13 18:44:22 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:64bit: - [2010.04.13 12:15:04 | 000,135,560 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD) DRV:64bit: - [2010.02.27 01:32:14 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd) DRV:64bit: - [2009.09.17 07:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2008.05.16 13:32:56 | 000,115,240 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s0016bus.sys -- (s0016bus) DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = :0 ========== FireFox ========== FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.0: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Eigene Dateien\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Eigene Programme\Picasa\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Katja\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Katja\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}: C:\Program Files (x86)\PriceGong\2.6.4\FF [2012.04.22 21:11:28 | 000,000,000 | ---D | M] ========== Chrome ========== CHR - Extension: Docs = C:\Users\Katja\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\ CHR - Extension: PriceGong = C:\Users\Katja\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok\5.6.4_0\ CHR - Extension: Google-Suche = C:\Users\Katja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ O1 HOSTS File: ([2013.06.08 23:26:08 | 000,447,822 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.0scan.com O1 - Hosts: 127.0.0.1 0scan.com O1 - Hosts: 127.0.0.1 1000gratisproben.com O1 - Hosts: 127.0.0.1 www.1000gratisproben.com O1 - Hosts: 127.0.0.1 1001namen.com O1 - Hosts: 127.0.0.1 www.1001namen.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 127.0.0.1 www.1-2005-search.com O1 - Hosts: 127.0.0.1 1-2005-search.com O1 - Hosts: 127.0.0.1 123fporn.info O1 - Hosts: 15376 more lines... O2:64bit: - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL File not found O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Shopping Assistant Plugin) - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files (x86)\PriceGong\2.6.4\PriceGongIE.dll (PriceGong) O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll File not found O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O4:64bit: - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated) O4:64bit: - HKLM..\Run: [ETDWare] C:\Programme\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.) O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [AgentMonitor] C:\Eigene Programme\VTech\DownloadManager\System\AgentMonitor.exe () O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.) O4 - HKLM..\Run: [SDTray] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.) O4 - HKLM..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.) O4 - HKCU..\Run: [noc] C:\Users\Katja\AppData\Roaming\noc\dan.bat () O4 - HKCU..\Run: [Sony PC Companion] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.) O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Reg Error: Value error.) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 10.7.2) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{97C4D411-181E-4A31-89D9-6EB61C431F63}: DhcpNameServer = 192.168.1.1 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.) O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{993e4222-6eb4-11e1-b79d-dc0ea119e436}\Shell - "" = AutoRun O33 - MountPoints2\{993e4222-6eb4-11e1-b79d-dc0ea119e436}\Shell\AutoRun\command - "" = E:\Startme.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.06.09 16:38:56 | 000,000,000 | ---D | C] -- C:\Windows\Neuer Ordner [2013.06.08 22:49:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy [2013.06.08 22:48:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 [2013.06.08 22:48:46 | 000,017,272 | ---- | C] (Safer Networking Limited) -- C:\Windows\SysNative\sdnclean64.exe [2013.06.08 22:48:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2 [2013.06.08 22:46:48 | 036,271,144 | ---- | C] (Safer-Networking Ltd. ) -- C:\Users\Katja\Desktop\spybot-2.1.exe [2013.06.07 21:33:23 | 000,000,000 | ---D | C] -- C:\Users\Katja\AppData\Roaming\Malwarebytes [2013.06.07 21:33:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2013.06.07 21:33:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2013.06.07 21:32:59 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2013.06.07 21:32:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2013.06.07 21:31:53 | 000,000,000 | ---D | C] -- C:\Users\Katja\AppData\Local\Programs [2013.06.07 21:31:34 | 010,285,040 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Katja\Desktop\mbam-setup-1.75.0.1300.exe [2013.06.02 20:59:09 | 000,000,000 | ---D | C] -- C:\Users\Katja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome [2013.06.02 20:57:38 | 000,739,856 | ---- | C] (Google Inc.) -- C:\Users\Katja\AppData\Roaming\chromebrowser.exe [2013.06.02 20:57:38 | 000,000,000 | RHSD | C] -- C:\Users\Katja\AppData\Roaming\Sjaul [2013.06.02 20:57:29 | 000,000,000 | ---D | C] -- C:\Users\Katja\AppData\Roaming\noc [2013.06.01 14:35:27 | 000,000,000 | ---D | C] -- C:\Users\Katja\Desktop\MUSIC [2013.06.01 14:14:35 | 000,000,000 | ---D | C] -- C:\Users\Katja\Desktop\Zum drucken [2013.05.19 21:40:32 | 000,000,000 | ---D | C] -- C:\Users\Katja\Desktop\Neuer Ordner [2012.04.27 21:03:55 | 005,944,600 | ---- | C] (Absolute Software Corp. ) -- C:\Users\Katja\AppData\Roaming\LoJackSetup.exe ========== Files - Modified Within 30 Days ========== [2013.06.09 17:28:20 | 000,000,000 | ---- | M] () -- C:\Users\Katja\defogger_reenable [2013.06.09 17:09:26 | 000,016,752 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.06.09 17:09:26 | 000,016,752 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.06.09 17:07:00 | 000,001,120 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3930395959-2116792347-3140329324-1000UA.job [2013.06.09 17:01:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.06.09 17:01:19 | 2962,255,872 | -HS- | M] () -- C:\hiberfil.sys [2013.06.09 16:46:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013.06.08 23:26:08 | 000,447,822 | R--- | M] () -- C:\Windows\SysNative\drivers\etc\hosts [2013.06.08 23:18:39 | 000,008,772 | ---- | M] () -- C:\Users\Katja\Desktop\OpenDocument Text (neu) (2).odt [2013.06.08 22:48:52 | 000,001,387 | ---- | M] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk [2013.06.08 22:46:55 | 036,271,144 | ---- | M] (Safer-Networking Ltd. ) -- C:\Users\Katja\Desktop\spybot-2.1.exe [2013.06.08 22:26:36 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3930395959-2116792347-3140329324-1000Core.job [2013.06.08 18:52:21 | 000,007,604 | ---- | M] () -- C:\Users\Katja\AppData\Local\Resmon.ResmonCfg [2013.06.08 11:08:30 | 001,498,506 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.06.08 11:08:30 | 000,654,166 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.06.08 11:08:30 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.06.08 11:08:30 | 000,130,006 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.06.08 11:08:30 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.06.07 21:33:01 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.06.07 21:31:34 | 010,285,040 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Katja\Desktop\mbam-setup-1.75.0.1300.exe [2013.06.05 19:46:15 | 000,002,373 | ---- | M] () -- C:\Users\Katja\Desktop\Google Chrome.lnk [2013.05.16 21:07:18 | 000,318,456 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT ========== Files Created - No Company Name ========== [2013.06.09 17:28:20 | 000,000,000 | ---- | C] () -- C:\Users\Katja\defogger_reenable [2013.06.08 22:48:52 | 000,001,399 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk [2013.06.08 22:48:52 | 000,001,387 | ---- | C] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk [2013.06.08 18:52:21 | 000,007,604 | ---- | C] () -- C:\Users\Katja\AppData\Local\Resmon.ResmonCfg [2013.06.07 21:33:01 | 000,001,117 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.06.02 20:59:08 | 000,002,373 | ---- | C] () -- C:\Users\Katja\Desktop\Google Chrome.lnk [2013.06.02 20:57:53 | 000,001,120 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3930395959-2116792347-3140329324-1000UA.job [2013.06.02 20:57:52 | 000,001,068 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3930395959-2116792347-3140329324-1000Core.job [2012.12.30 14:31:32 | 000,000,581 | ---- | C] () -- C:\Users\Katja\AppData\Local\cookies.ini [2012.11.29 21:12:33 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys [2012.08.31 11:54:46 | 000,001,945 | ---- | C] () -- C:\Windows\eReg.dat [2012.08.30 23:14:28 | 000,000,000 | ---- | C] () -- C:\Windows\Transmogrifier.INI [2012.08.30 22:26:26 | 001,526,948 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.07.22 17:18:53 | 000,000,454 | ---- | C] () -- C:\Windows\wininit.ini [2012.03.19 23:58:32 | 000,000,193 | ---- | C] () -- C:\Windows\WORDPAD.INI [2012.03.12 14:01:02 | 000,001,104 | ---- | C] () -- C:\Users\Katja\AppData\Roaming\AbsoluteReminder.xml ========== ZeroAccess Check ========== [2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013.02.27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2012.07.29 19:38:46 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\Big Fish Games [2013.03.30 00:53:47 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\gtk-2.0 [2012.03.20 22:26:24 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\IrfanView [2013.06.07 22:23:07 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\noc [2012.04.01 09:01:43 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\OpenOffice.org [2012.03.12 14:18:22 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\Opera [2012.05.11 14:35:20 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\PacificPoker [2012.07.22 17:25:26 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\Playrix Entertainment [2012.07.23 11:02:28 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\Shockwave [2013.06.02 20:57:38 | 000,000,000 | RHSD | M] -- C:\Users\Katja\AppData\Roaming\Sjaul [2012.06.19 21:28:44 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\Skip-Bo [2012.08.30 23:25:10 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\SoftGrid Client [2012.08.30 22:27:33 | 000,000,000 | ---D | M] -- C:\Users\Katja\AppData\Roaming\TP ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 236 bytes -> C:\ProgramData\Temp:ECFD9449 @Alternate Data Stream - 218 bytes -> C:\ProgramData\Temp:A561576B @Alternate Data Stream - 214 bytes -> C:\ProgramData\Temp:0E22C5DB @Alternate Data Stream - 212 bytes -> C:\ProgramData\Temp:48FEA089 @Alternate Data Stream - 211 bytes -> C:\ProgramData\Temp:4363DE71 @Alternate Data Stream - 210 bytes -> C:\ProgramData\Temp:4673E9EA @Alternate Data Stream - 208 bytes -> C:\ProgramData\Temp:9ACB70D7 @Alternate Data Stream - 206 bytes -> C:\ProgramData\Temp:70E897B5 @Alternate Data Stream - 206 bytes -> C:\ProgramData\Temp:6C5EC3CD @Alternate Data Stream - 204 bytes -> C:\ProgramData\Temp:22313216 @Alternate Data Stream - 194 bytes -> C:\ProgramData\Temp:2BC498A4 < End of report > LG und Danke im Voraus Kate |
|
09.06.2013, 17:06
| #2 |
| /// Malware-holic   | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist Hi,
__________________otl fix Fixen mit OTL
Code:
ATTFilter :OTL
O4 - HKCU..\Run: [noc] C:\Users\Katja\AppData\Roaming\noc\dan.bat ()
[2013.06.02 20:57:38 | 000,739,856 | ---- | C] (Google Inc.) -- C:\Users\Katja\AppData\Roaming\chromebrowser.exe
[2013.06.02 20:57:38 | 000,000,000 | RHSD | C] -- C:\Users\Katja\AppData\Roaming\Sjaul
:files
:Commands
[emptytemp]
Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang in den Thread posten! Drücke bitte die  + E Taste.
__________________ |
|
09.06.2013, 19:19
| #3 |
| | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist Danke für die schnelle Antwort.
__________________Ich denke/glaube/hoffe, dass es geklappt hat. Mein Opera geht nach wie vor nicht. Macht es Sinn, denn zu deinstallieren und neu drauf zu machen? Derzeit funktioniert nur der Explorer und mit dem komm ich nicht so gut klar (und mag den auch nicht). Und kann man an den Dingern die ich gepostet hab, schon sehen ob es was schlimmes ist? |
|
09.06.2013, 19:22
| #4 |
| /// Malware-holic | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist sehe mir den Upload mal an. was heißt, opera funktioniert nicht, genau? Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
09.06.2013, 19:57
| #5 |
| | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist Bzgl. Opera: Wenn ich eine Seite öffnen möchte kommt immer "Interner Kommunikationsfehler Überprüfen Sie, ob die Adresse richtig geschrieben ist, oder suchen Sie nach der Website." (Das ist seit heute ca. 18 Uhr der Fall.) Vorher hat es halt etwas rumgesponnen alla: wenn ich es öffnen wollte kam nichts. Im Taskmanager, war es auch nicht unter Anwendungen, aber unter Prozesse mit auch den "normalen" angezeigten Arbeitsspeicher. Wenn ich es dann als Prozess geschlossen habe und noch mal versucht habe zu öffnen ging es normal. Nur wenn ich eine Weile vom Lappi weg war, war es wieder zu bzw. weg. Und ich musste wieder das Spielchen machen. Und gestern hatte ich eine Meldung das mein Opera Dienst abgemeldet wäre (also was da genau stand weiß ich nicht mehr, aber das war so der Sinn). Heut morgen als ich dann meine gängigen Seiten gegangen bin, wo ich eigentlich immer angemeldet bleibe, war ich abgemeldet ... Achja, mir ist noch eine Sache eingefallen, bei den Neustarts die ich nach den Scannen gemacht habe (also die Scans mit Avira usw. bevor ich hier angemeldet war), kam nach dem Hochfahren, wenn schon alles fertig war (Hintergrundbild war da, Destopsymbole usw.) poppte ganz kurz und schnell ein schwarzes Fenster auf und ich glaube oben stand was von Systen WIN 32 drin (allerdings ging das immer so schnell, dass ich es nicht genau sagen kann). Ich weiß auch nicht ob das normal ist, da ich recht selten mein Laptop ganz runterfahre... (ja, ich weiß, sollte man eigentlich) Bei TDSSKiller wurde glaube ich nichts gefunden. |
|
09.06.2013, 20:02
| #6 |
| | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist Euer Forum ist ja frauenfeindlich. ^^ 120.000 Zeichen sind definitiv zu wenig. =) |
|
09.06.2013, 20:04
| #7 |
| /// Malware-holic | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist ok warte erst mal mit Opera. glaube bringt mir nichts, poste das Log bitte.b
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
09.06.2013, 20:43
| #8 |
| | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist 20:35:12.0907 4592 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 20:35:13.0234 4592 ============================================================ 20:35:13.0234 4592 Current date / time: 2013/06/09 20:35:13.0234 20:35:13.0234 4592 SystemInfo: 20:35:13.0234 4592 20:35:13.0234 4592 OS Version: 6.1.7601 ServicePack: 1.0 20:35:13.0234 4592 Product type: Workstation 20:35:13.0234 4592 ComputerName: KATJAS-PC 20:35:13.0250 4592 UserName: Katja 20:35:13.0250 4592 Windows directory: C:\Windows 20:35:13.0250 4592 System windows directory: C:\Windows 20:35:13.0250 4592 Running under WOW64 20:35:13.0250 4592 Processor architecture: Intel x64 20:35:13.0250 4592 Number of processors: 2 20:35:13.0250 4592 Page size: 0x1000 20:35:13.0250 4592 Boot type: Normal boot 20:35:13.0250 4592 ============================================================ 20:35:14.0092 4592 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 20:35:14.0092 4592 ============================================================ 20:35:14.0092 4592 \Device\Harddisk0\DR0: 20:35:14.0092 4592 MBR partitions: 20:35:14.0092 4592 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000 20:35:14.0092 4592 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x55713000 20:35:14.0092 4592 ============================================================ 20:35:14.0124 4592 C: <-> \Device\Harddisk0\DR0\Partition2 20:35:14.0124 4592 ============================================================ 20:35:14.0124 4592 Initialize success 20:35:14.0124 4592 ============================================================ 20:35:54.0918 1412 ============================================================ 20:35:54.0918 1412 Scan started 20:35:54.0918 1412 Mode: Manual; SigCheck; TDLFS; 20:35:54.0918 1412 ============================================================ 20:35:55.0199 1412 ================ Scan system memory ======================== 20:35:55.0199 1412 System memory - ok 20:35:55.0199 1412 ================ Scan services ============================= 20:35:55.0417 1412 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 20:35:55.0604 1412 1394ohci - ok 20:35:55.0651 1412 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 20:35:55.0729 1412 ACPI - ok 20:35:55.0791 1412 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 20:35:55.0916 1412 AcpiPmi - ok 20:35:56.0088 1412 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 20:35:56.0119 1412 AdobeFlashPlayerUpdateSvc - ok 20:35:56.0181 1412 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 20:35:56.0244 1412 adp94xx - ok 20:35:56.0291 1412 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 20:35:56.0353 1412 adpahci - ok 20:35:56.0369 1412 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 20:35:56.0415 1412 adpu320 - ok 20:35:56.0447 1412 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 20:35:56.0649 1412 AeLookupSvc - ok 20:35:56.0712 1412 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 20:35:56.0805 1412 AFD - ok 20:35:56.0852 1412 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 20:35:56.0899 1412 agp440 - ok 20:35:56.0930 1412 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 20:35:56.0993 1412 ALG - ok 20:35:57.0024 1412 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 20:35:57.0071 1412 aliide - ok 20:35:57.0117 1412 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 20:35:57.0149 1412 amdide - ok 20:35:57.0164 1412 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 20:35:57.0211 1412 AmdK8 - ok 20:35:57.0227 1412 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 20:35:57.0273 1412 AmdPPM - ok 20:35:57.0305 1412 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 20:35:57.0351 1412 amdsata - ok 20:35:57.0367 1412 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 20:35:57.0414 1412 amdsbs - ok 20:35:57.0429 1412 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 20:35:57.0461 1412 amdxata - ok 20:35:57.0617 1412 [ D9A92E6DD41C5ADC045AE485026AA40C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe 20:35:57.0648 1412 AntiVirSchedulerService - ok 20:35:57.0695 1412 [ 66A7A38F7C439153B758548375EB9E5E ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe 20:35:57.0710 1412 AntiVirService - ok 20:35:57.0773 1412 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 20:35:58.0007 1412 AppID - ok 20:35:58.0038 1412 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 20:35:58.0148 1412 AppIDSvc - ok 20:35:58.0226 1412 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll 20:35:58.0288 1412 Appinfo - ok 20:35:58.0413 1412 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 20:35:58.0444 1412 Apple Mobile Device - ok 20:35:58.0476 1412 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 20:35:58.0522 1412 arc - ok 20:35:58.0538 1412 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 20:35:58.0585 1412 arcsas - ok 20:35:58.0616 1412 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 20:35:58.0741 1412 AsyncMac - ok 20:35:58.0756 1412 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 20:35:58.0788 1412 atapi - ok 20:35:58.0881 1412 [ E642491F64E58CD5BC8FB8B347DCF65F ] athr C:\Windows\system32\DRIVERS\athrx.sys 20:35:59.0131 1412 athr - ok 20:35:59.0178 1412 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 20:35:59.0302 1412 AudioEndpointBuilder - ok 20:35:59.0334 1412 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 20:35:59.0443 1412 AudioSrv - ok 20:35:59.0521 1412 [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys 20:35:59.0568 1412 avgntflt - ok 20:35:59.0599 1412 [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys 20:35:59.0646 1412 avipbb - ok 20:35:59.0677 1412 [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys 20:35:59.0708 1412 avkmgr - ok 20:35:59.0770 1412 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 20:35:59.0911 1412 AxInstSV - ok 20:35:59.0958 1412 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 20:36:00.0036 1412 b06bdrv - ok 20:36:00.0067 1412 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 20:36:00.0129 1412 b57nd60a - ok 20:36:00.0270 1412 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe 20:36:00.0301 1412 BBSvc - ok 20:36:00.0379 1412 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe 20:36:00.0410 1412 BBUpdate - ok 20:36:00.0441 1412 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 20:36:00.0504 1412 BDESVC - ok 20:36:00.0550 1412 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 20:36:00.0660 1412 Beep - ok 20:36:00.0722 1412 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 20:36:00.0862 1412 BFE - ok 20:36:00.0894 1412 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 20:36:01.0034 1412 BITS - ok 20:36:01.0081 1412 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys 20:36:01.0128 1412 blbdrive - ok 20:36:01.0206 1412 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 20:36:01.0237 1412 Bonjour Service - ok 20:36:01.0284 1412 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 20:36:01.0346 1412 bowser - ok 20:36:01.0377 1412 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 20:36:01.0424 1412 BrFiltLo - ok 20:36:01.0455 1412 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 20:36:01.0486 1412 BrFiltUp - ok 20:36:01.0533 1412 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 20:36:01.0564 1412 Browser - ok 20:36:01.0580 1412 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 20:36:01.0674 1412 Brserid - ok 20:36:01.0689 1412 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 20:36:01.0752 1412 BrSerWdm - ok 20:36:01.0767 1412 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 20:36:01.0830 1412 BrUsbMdm - ok 20:36:01.0830 1412 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 20:36:01.0876 1412 BrUsbSer - ok 20:36:01.0908 1412 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 20:36:01.0954 1412 BTHMODEM - ok 20:36:02.0001 1412 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 20:36:02.0095 1412 bthserv - ok 20:36:02.0126 1412 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 20:36:02.0235 1412 cdfs - ok 20:36:02.0282 1412 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 20:36:02.0360 1412 cdrom - ok 20:36:02.0376 1412 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 20:36:02.0500 1412 CertPropSvc - ok 20:36:02.0532 1412 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 20:36:02.0594 1412 circlass - ok 20:36:02.0625 1412 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 20:36:02.0672 1412 CLFS - ok 20:36:02.0734 1412 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 20:36:02.0781 1412 clr_optimization_v2.0.50727_32 - ok 20:36:02.0828 1412 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 20:36:02.0859 1412 clr_optimization_v2.0.50727_64 - ok 20:36:02.0937 1412 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 20:36:02.0968 1412 clr_optimization_v4.0.30319_32 - ok 20:36:03.0000 1412 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 20:36:03.0031 1412 clr_optimization_v4.0.30319_64 - ok 20:36:03.0062 1412 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys 20:36:03.0109 1412 CmBatt - ok 20:36:03.0124 1412 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 20:36:03.0156 1412 cmdide - ok 20:36:03.0202 1412 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 20:36:03.0296 1412 CNG - ok 20:36:03.0312 1412 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 20:36:03.0358 1412 Compbatt - ok 20:36:03.0390 1412 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 20:36:03.0452 1412 CompositeBus - ok 20:36:03.0468 1412 COMSysApp - ok 20:36:03.0499 1412 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 20:36:03.0530 1412 crcdisk - ok 20:36:03.0577 1412 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 20:36:03.0655 1412 CryptSvc - ok 20:36:03.0702 1412 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 20:36:03.0811 1412 DcomLaunch - ok 20:36:03.0858 1412 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 20:36:03.0998 1412 defragsvc - ok 20:36:04.0029 1412 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 20:36:04.0138 1412 DfsC - ok 20:36:04.0170 1412 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 20:36:04.0248 1412 Dhcp - ok 20:36:04.0279 1412 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 20:36:04.0388 1412 discache - ok 20:36:04.0419 1412 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 20:36:04.0450 1412 Disk - ok 20:36:04.0482 1412 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 20:36:04.0560 1412 Dnscache - ok 20:36:04.0591 1412 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 20:36:04.0731 1412 dot3svc - ok 20:36:04.0747 1412 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 20:36:04.0856 1412 DPS - ok 20:36:04.0887 1412 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 20:36:04.0934 1412 drmkaud - ok 20:36:05.0012 1412 [ 9CF46FDF163E06B83D03FF929EF2296C ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe 20:36:05.0043 1412 DsiWMIService - ok 20:36:05.0090 1412 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 20:36:05.0184 1412 DXGKrnl - ok 20:36:05.0215 1412 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 20:36:05.0324 1412 EapHost - ok 20:36:05.0449 1412 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 20:36:05.0667 1412 ebdrv - ok 20:36:05.0683 1412 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 20:36:05.0745 1412 EFS - ok 20:36:05.0808 1412 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 20:36:05.0917 1412 ehRecvr - ok 20:36:05.0932 1412 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 20:36:05.0979 1412 ehSched - ok 20:36:06.0026 1412 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 20:36:06.0088 1412 elxstor - ok 20:36:06.0198 1412 [ 2AEE0416C54A1A86D035366DE192B2F0 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe 20:36:06.0260 1412 ePowerSvc - ok 20:36:06.0276 1412 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 20:36:06.0322 1412 ErrDev - ok 20:36:06.0369 1412 [ 0975BF32399A24117E317B5BF1D5D0AA ] ETD C:\Windows\system32\DRIVERS\ETD.sys 20:36:06.0416 1412 ETD - ok 20:36:06.0447 1412 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 20:36:06.0588 1412 EventSystem - ok 20:36:06.0619 1412 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 20:36:06.0728 1412 exfat - ok 20:36:06.0759 1412 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 20:36:06.0868 1412 fastfat - ok 20:36:06.0915 1412 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 20:36:07.0056 1412 Fax - ok 20:36:07.0087 1412 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 20:36:07.0118 1412 fdc - ok 20:36:07.0134 1412 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 20:36:07.0227 1412 fdPHost - ok 20:36:07.0258 1412 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 20:36:07.0352 1412 FDResPub - ok 20:36:07.0368 1412 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 20:36:07.0414 1412 FileInfo - ok 20:36:07.0414 1412 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 20:36:07.0539 1412 Filetrace - ok 20:36:07.0555 1412 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 20:36:07.0586 1412 flpydisk - ok 20:36:07.0633 1412 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 20:36:07.0695 1412 FltMgr - ok 20:36:07.0742 1412 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll 20:36:07.0851 1412 FontCache - ok 20:36:07.0898 1412 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 20:36:07.0945 1412 FontCache3.0.0.0 - ok 20:36:07.0976 1412 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 20:36:08.0023 1412 FsDepends - ok 20:36:08.0070 1412 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 20:36:08.0101 1412 Fs_Rec - ok 20:36:08.0148 1412 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 20:36:08.0211 1412 fvevol - ok 20:36:08.0242 1412 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 20:36:08.0273 1412 gagp30kx - ok 20:36:08.0320 1412 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 20:36:08.0351 1412 GEARAspiWDM - ok 20:36:08.0383 1412 [ A4198F2BD8AA592CB90476277A81B5E1 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys 20:36:08.0414 1412 ggflt - ok 20:36:08.0429 1412 [ D266350BDAAB9EB6C1AEC370EEAAFF3A ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys 20:36:08.0461 1412 ggsemc - ok 20:36:08.0507 1412 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 20:36:08.0632 1412 gpsvc - ok 20:36:08.0679 1412 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe 20:36:08.0710 1412 GREGService - ok 20:36:08.0788 1412 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 20:36:08.0819 1412 gusvc - ok 20:36:08.0851 1412 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 20:36:08.0913 1412 hcw85cir - ok 20:36:08.0944 1412 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 20:36:09.0038 1412 HdAudAddService - ok 20:36:09.0069 1412 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 20:36:09.0116 1412 HDAudBus - ok 20:36:09.0163 1412 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\drivers\HECIx64.sys 20:36:09.0194 1412 HECIx64 - ok 20:36:09.0225 1412 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 20:36:09.0287 1412 HidBatt - ok 20:36:09.0303 1412 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 20:36:09.0365 1412 HidBth - ok 20:36:09.0381 1412 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 20:36:09.0412 1412 HidIr - ok 20:36:09.0443 1412 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 20:36:09.0568 1412 hidserv - ok 20:36:09.0599 1412 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 20:36:09.0646 1412 HidUsb - ok 20:36:09.0662 1412 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 20:36:09.0787 1412 hkmsvc - ok 20:36:09.0818 1412 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 20:36:09.0865 1412 HomeGroupListener - ok 20:36:09.0896 1412 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 20:36:09.0943 1412 HomeGroupProvider - ok 20:36:10.0021 1412 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 20:36:10.0067 1412 HpSAMD - ok 20:36:10.0099 1412 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 20:36:10.0270 1412 HTTP - ok 20:36:10.0286 1412 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 20:36:10.0317 1412 hwpolicy - ok 20:36:10.0348 1412 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 20:36:10.0395 1412 i8042prt - ok 20:36:10.0442 1412 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\drivers\iaStor.sys 20:36:10.0489 1412 iaStor - ok 20:36:10.0567 1412 [ 6B24D1C3096DE796D15571079EA5E98C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 20:36:10.0582 1412 IAStorDataMgrSvc - ok 20:36:10.0629 1412 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 20:36:10.0691 1412 iaStorV - ok 20:36:10.0754 1412 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 20:36:10.0879 1412 idsvc - ok 20:36:11.0144 1412 [ 31569A2E836C12014148BF7342716946 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 20:36:11.0674 1412 igfx - ok 20:36:11.0737 1412 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 20:36:11.0768 1412 iirsp - ok 20:36:11.0815 1412 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 20:36:11.0939 1412 IKEEXT - ok 20:36:12.0002 1412 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys 20:36:12.0049 1412 Impcd - ok 20:36:12.0142 1412 [ 235362D403D9D677514649D88DB31914 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 20:36:12.0329 1412 IntcAzAudAddService - ok 20:36:12.0376 1412 [ 03C74719D48056A1078F3A51CEB76BAA ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys 20:36:12.0454 1412 IntcDAud - ok 20:36:12.0501 1412 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 20:36:12.0532 1412 intelide - ok 20:36:12.0579 1412 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 20:36:12.0610 1412 intelppm - ok 20:36:12.0641 1412 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 20:36:12.0766 1412 IPBusEnum - ok 20:36:12.0766 1412 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 20:36:12.0860 1412 IpFilterDriver - ok 20:36:12.0922 1412 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 20:36:13.0000 1412 iphlpsvc - ok 20:36:13.0000 1412 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 20:36:13.0078 1412 IPMIDRV - ok 20:36:13.0078 1412 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 20:36:13.0187 1412 IPNAT - ok 20:36:13.0250 1412 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 20:36:13.0312 1412 iPod Service - ok 20:36:13.0328 1412 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 20:36:13.0390 1412 IRENUM - ok 20:36:13.0421 1412 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 20:36:13.0453 1412 isapnp - ok 20:36:13.0499 1412 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 20:36:13.0562 1412 iScsiPrt - ok 20:36:13.0577 1412 [ F415A88162D23977B5EDAE4F0410E903 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe 20:36:13.0609 1412 IviRegMgr - ok 20:36:13.0640 1412 [ 37E053A2CF8F0082B689ED74106E0CEC ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys 20:36:13.0702 1412 k57nd60a - ok 20:36:13.0733 1412 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys 20:36:13.0780 1412 kbdclass - ok 20:36:13.0811 1412 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 20:36:13.0843 1412 kbdhid - ok 20:36:13.0858 1412 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 20:36:13.0889 1412 KeyIso - ok 20:36:13.0936 1412 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 20:36:13.0967 1412 KSecDD - ok 20:36:13.0983 1412 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 20:36:14.0030 1412 KSecPkg - ok 20:36:14.0061 1412 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 20:36:14.0170 1412 ksthunk - ok 20:36:14.0217 1412 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 20:36:14.0342 1412 KtmRm - ok 20:36:14.0404 1412 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 20:36:14.0498 1412 LanmanServer - ok 20:36:14.0513 1412 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 20:36:14.0623 1412 LanmanWorkstation - ok 20:36:14.0685 1412 [ 6BCEE9C766815BFFF89DE7D81AF34CE1 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe 20:36:14.0701 1412 Live Updater Service - ok 20:36:14.0732 1412 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 20:36:14.0857 1412 lltdio - ok 20:36:14.0888 1412 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 20:36:15.0013 1412 lltdsvc - ok 20:36:15.0044 1412 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 20:36:15.0153 1412 lmhosts - ok 20:36:15.0215 1412 [ DBC1136A62BD4DECC3632DF650284C2E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 20:36:15.0247 1412 LMS - ok 20:36:15.0278 1412 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 20:36:15.0309 1412 LSI_FC - ok 20:36:15.0340 1412 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 20:36:15.0371 1412 LSI_SAS - ok 20:36:15.0387 1412 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 20:36:15.0418 1412 LSI_SAS2 - ok 20:36:15.0434 1412 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 20:36:15.0481 1412 LSI_SCSI - ok 20:36:15.0496 1412 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 20:36:15.0590 1412 luafv - ok 20:36:15.0637 1412 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 20:36:15.0668 1412 MBAMProtector - ok 20:36:15.0746 1412 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe 20:36:15.0808 1412 MBAMScheduler - ok 20:36:15.0871 1412 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 20:36:15.0917 1412 MBAMService - ok 20:36:15.0949 1412 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 20:36:15.0995 1412 Mcx2Svc - ok 20:36:16.0011 1412 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 20:36:16.0042 1412 megasas - ok 20:36:16.0073 1412 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 20:36:16.0136 1412 MegaSR - ok 20:36:16.0151 1412 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 20:36:16.0245 1412 MMCSS - ok 20:36:16.0261 1412 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 20:36:16.0370 1412 Modem - ok 20:36:16.0401 1412 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 20:36:16.0448 1412 monitor - ok 20:36:16.0463 1412 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 20:36:16.0510 1412 mouclass - ok 20:36:16.0526 1412 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 20:36:16.0573 1412 mouhid - ok 20:36:16.0604 1412 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 20:36:16.0635 1412 mountmgr - ok 20:36:16.0666 1412 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 20:36:16.0713 1412 mpio - ok 20:36:16.0729 1412 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 20:36:16.0838 1412 mpsdrv - ok 20:36:16.0885 1412 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 20:36:17.0009 1412 MpsSvc - ok 20:36:17.0025 1412 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 20:36:17.0087 1412 MRxDAV - ok 20:36:17.0119 1412 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 20:36:17.0181 1412 mrxsmb - ok 20:36:17.0212 1412 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 20:36:17.0259 1412 mrxsmb10 - ok 20:36:17.0275 1412 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 20:36:17.0306 1412 mrxsmb20 - ok 20:36:17.0321 1412 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 20:36:17.0353 1412 msahci - ok 20:36:17.0384 1412 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 20:36:17.0415 1412 msdsm - ok 20:36:17.0446 1412 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 20:36:17.0477 1412 MSDTC - ok 20:36:17.0509 1412 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 20:36:17.0602 1412 Msfs - ok 20:36:17.0633 1412 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 20:36:17.0727 1412 mshidkmdf - ok 20:36:17.0743 1412 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 20:36:17.0774 1412 msisadrv - ok 20:36:17.0805 1412 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 20:36:17.0914 1412 MSiSCSI - ok 20:36:17.0930 1412 msiserver - ok 20:36:17.0945 1412 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 20:36:18.0055 1412 MSKSSRV - ok 20:36:18.0086 1412 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 20:36:18.0195 1412 MSPCLOCK - ok 20:36:18.0211 1412 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 20:36:18.0320 1412 MSPQM - ok 20:36:18.0351 1412 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 20:36:18.0398 1412 MsRPC - ok 20:36:18.0429 1412 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 20:36:18.0445 1412 mssmbios - ok 20:36:18.0476 1412 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 20:36:18.0585 1412 MSTEE - ok 20:36:18.0585 1412 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 20:36:18.0632 1412 MTConfig - ok 20:36:18.0647 1412 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 20:36:18.0694 1412 Mup - ok 20:36:18.0725 1412 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 20:36:18.0850 1412 napagent - ok 20:36:18.0881 1412 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 20:36:18.0975 1412 NativeWifiP - ok 20:36:19.0022 1412 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 20:36:19.0100 1412 NDIS - ok 20:36:19.0131 1412 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 20:36:19.0225 1412 NdisCap - ok 20:36:19.0256 1412 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 20:36:19.0349 1412 NdisTapi - ok 20:36:19.0365 1412 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 20:36:19.0459 1412 Ndisuio - ok 20:36:19.0474 1412 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 20:36:19.0583 1412 NdisWan - ok 20:36:19.0615 1412 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 20:36:19.0708 1412 NDProxy - ok 20:36:19.0739 1412 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 20:36:19.0849 1412 NetBIOS - ok 20:36:19.0864 1412 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 20:36:19.0973 1412 NetBT - ok 20:36:20.0005 1412 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 20:36:20.0036 1412 Netlogon - ok 20:36:20.0083 1412 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 20:36:20.0207 1412 Netman - ok 20:36:20.0239 1412 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 20:36:20.0379 1412 netprofm - ok 20:36:20.0410 1412 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 20:36:20.0441 1412 NetTcpPortSharing - ok 20:36:20.0488 1412 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 20:36:20.0519 1412 nfrd960 - ok 20:36:20.0551 1412 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 20:36:20.0597 1412 NlaSvc - ok 20:36:20.0613 1412 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 20:36:20.0707 1412 Npfs - ok 20:36:20.0738 1412 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 20:36:20.0831 1412 nsi - ok 20:36:20.0831 1412 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 20:36:20.0941 1412 nsiproxy - ok 20:36:21.0034 1412 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 20:36:21.0206 1412 Ntfs - ok 20:36:21.0268 1412 [ 9A308FCDCCA98A15B6F62D36A272160E ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe 20:36:21.0315 1412 NTI IScheduleSvc - ok 20:36:21.0362 1412 [ 28C59F594044CBF8598B18C927097091 ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe 20:36:21.0393 1412 NTIBackupSvc - ok 20:36:21.0455 1412 [ 710263B44C1D1AEE07525A53401FBE48 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys 20:36:21.0487 1412 NTIDrvr - ok 20:36:21.0518 1412 [ B8D903B2894FF9AFBD99CA51C35590D7 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe 20:36:21.0533 1412 NTISchedulerSvc - ok 20:36:21.0549 1412 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 20:36:21.0643 1412 Null - ok 20:36:21.0674 1412 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 20:36:21.0721 1412 nvraid - ok 20:36:21.0752 1412 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 20:36:21.0799 1412 nvstor - ok 20:36:21.0814 1412 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 20:36:21.0861 1412 nv_agp - ok 20:36:21.0861 1412 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 20:36:21.0908 1412 ohci1394 - ok 20:36:21.0939 1412 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 20:36:22.0001 1412 p2pimsvc - ok 20:36:22.0033 1412 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 20:36:22.0064 1412 p2psvc - ok 20:36:22.0079 1412 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 20:36:22.0126 1412 Parport - ok 20:36:22.0173 1412 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 20:36:22.0204 1412 partmgr - ok 20:36:22.0220 1412 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 20:36:22.0282 1412 PcaSvc - ok 20:36:22.0313 1412 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 20:36:22.0346 1412 pci - ok 20:36:22.0361 1412 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 20:36:22.0392 1412 pciide - ok 20:36:22.0408 1412 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 20:36:22.0455 1412 pcmcia - ok 20:36:22.0470 1412 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 20:36:22.0517 1412 pcw - ok 20:36:22.0548 1412 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 20:36:22.0689 1412 PEAUTH - ok 20:36:22.0782 1412 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 20:36:22.0814 1412 PerfHost - ok 20:36:22.0892 1412 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 20:36:23.0079 1412 pla - ok 20:36:23.0110 1412 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 20:36:23.0204 1412 PlugPlay - ok 20:36:23.0235 1412 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 20:36:23.0282 1412 PNRPAutoReg - ok 20:36:23.0313 1412 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 20:36:23.0344 1412 PNRPsvc - ok 20:36:23.0375 1412 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 20:36:23.0500 1412 PolicyAgent - ok 20:36:23.0531 1412 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 20:36:23.0640 1412 Power - ok 20:36:23.0672 1412 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 20:36:23.0796 1412 PptpMiniport - ok 20:36:23.0828 1412 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 20:36:23.0874 1412 Processor - ok 20:36:23.0906 1412 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 20:36:23.0984 1412 ProfSvc - ok 20:36:23.0984 1412 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 20:36:24.0015 1412 ProtectedStorage - ok 20:36:24.0046 1412 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 20:36:24.0140 1412 Psched - ok 20:36:24.0171 1412 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe 20:36:24.0249 1412 PSI_SVC_2 - ok 20:36:24.0296 1412 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 20:36:24.0436 1412 ql2300 - ok 20:36:24.0467 1412 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 20:36:24.0514 1412 ql40xx - ok 20:36:24.0545 1412 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 20:36:24.0623 1412 QWAVE - ok 20:36:24.0639 1412 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 20:36:24.0701 1412 QWAVEdrv - ok 20:36:24.0717 1412 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 20:36:24.0826 1412 RasAcd - ok 20:36:24.0873 1412 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 20:36:24.0966 1412 RasAgileVpn - ok 20:36:24.0998 1412 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 20:36:25.0122 1412 RasAuto - ok 20:36:25.0154 1412 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 20:36:25.0263 1412 Rasl2tp - ok 20:36:25.0294 1412 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 20:36:25.0403 1412 RasMan - ok 20:36:25.0419 1412 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 20:36:25.0528 1412 RasPppoe - ok 20:36:25.0559 1412 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 20:36:25.0668 1412 RasSstp - ok 20:36:25.0700 1412 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 20:36:25.0840 1412 rdbss - ok 20:36:25.0856 1412 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 20:36:25.0887 1412 rdpbus - ok 20:36:25.0902 1412 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 20:36:25.0996 1412 RDPCDD - ok 20:36:26.0043 1412 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 20:36:26.0152 1412 RDPENCDD - ok 20:36:26.0168 1412 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 20:36:26.0261 1412 RDPREFMP - ok 20:36:26.0292 1412 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 20:36:26.0355 1412 RDPWD - ok 20:36:26.0386 1412 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 20:36:26.0433 1412 rdyboost - ok 20:36:26.0464 1412 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 20:36:26.0573 1412 RemoteAccess - ok 20:36:26.0604 1412 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 20:36:26.0729 1412 RemoteRegistry - ok 20:36:26.0745 1412 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 20:36:26.0854 1412 RpcEptMapper - ok 20:36:26.0885 1412 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 20:36:26.0932 1412 RpcLocator - ok 20:36:26.0948 1412 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 20:36:27.0057 1412 RpcSs - ok 20:36:27.0104 1412 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 20:36:27.0213 1412 rspndr - ok 20:36:27.0260 1412 [ 763AE0C6D9DF4C24B7E2C26036A8188A ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys 20:36:27.0306 1412 RSUSBSTOR - ok 20:36:27.0338 1412 [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A ] RS_Service C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe 20:36:27.0369 1412 RS_Service - ok 20:36:27.0416 1412 [ EA268BCE30691C2DD24F02E617FD2EB5 ] s0016bus C:\Windows\system32\DRIVERS\s0016bus.sys 20:36:27.0447 1412 s0016bus - ok 20:36:27.0447 1412 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 20:36:27.0478 1412 SamSs - ok 20:36:27.0494 1412 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 20:36:27.0540 1412 sbp2port - ok 20:36:27.0572 1412 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 20:36:27.0681 1412 SCardSvr - ok 20:36:27.0728 1412 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 20:36:27.0837 1412 scfilter - ok 20:36:27.0884 1412 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 20:36:28.0024 1412 Schedule - ok 20:36:28.0040 1412 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 20:36:28.0133 1412 SCPolicySvc - ok 20:36:28.0164 1412 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 20:36:28.0196 1412 SDRSVC - ok 20:36:28.0367 1412 [ 95AA9E165C7DE1B64A11E8B18E91E499 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe 20:36:28.0461 1412 SDScannerService - ok 20:36:28.0523 1412 [ D31398D4BB4907B517B6E784C2100C4A ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe 20:36:28.0601 1412 SDUpdateService - ok 20:36:28.0648 1412 [ 6AE8E702D1027A9627DDE2B77BB9992B ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe 20:36:28.0679 1412 SDWSCService - ok 20:36:28.0726 1412 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 20:36:28.0820 1412 secdrv - ok 20:36:28.0851 1412 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 20:36:28.0944 1412 seclogon - ok 20:36:28.0976 1412 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 20:36:29.0069 1412 SENS - ok 20:36:29.0100 1412 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 20:36:29.0163 1412 SensrSvc - ok 20:36:29.0178 1412 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 20:36:29.0225 1412 Serenum - ok 20:36:29.0241 1412 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 20:36:29.0303 1412 Serial - ok 20:36:29.0334 1412 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 20:36:29.0381 1412 sermouse - ok 20:36:29.0412 1412 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 20:36:29.0537 1412 SessionEnv - ok 20:36:29.0537 1412 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 20:36:29.0584 1412 sffdisk - ok 20:36:29.0584 1412 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 20:36:29.0631 1412 sffp_mmc - ok 20:36:29.0631 1412 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 20:36:29.0678 1412 sffp_sd - ok 20:36:29.0693 1412 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 20:36:29.0724 1412 sfloppy - ok 20:36:29.0756 1412 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 20:36:29.0896 1412 SharedAccess - ok 20:36:29.0927 1412 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 20:36:30.0036 1412 ShellHWDetection - ok 20:36:30.0083 1412 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 20:36:30.0130 1412 SiSRaid2 - ok 20:36:30.0146 1412 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 20:36:30.0177 1412 SiSRaid4 - ok 20:36:30.0364 1412 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe 20:36:30.0536 1412 Skype C2C Service - ok 20:36:30.0598 1412 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 20:36:30.0614 1412 SkypeUpdate - ok 20:36:30.0660 1412 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 20:36:30.0785 1412 Smb - ok 20:36:30.0848 1412 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 20:36:30.0894 1412 SNMPTRAP - ok 20:36:30.0910 1412 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 20:36:30.0941 1412 spldr - ok 20:36:31.0004 1412 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 20:36:31.0050 1412 Spooler - ok 20:36:31.0160 1412 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 20:36:31.0409 1412 sppsvc - ok 20:36:31.0440 1412 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 20:36:31.0551 1412 sppuinotify - ok 20:36:31.0582 1412 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 20:36:31.0644 1412 srv - ok 20:36:31.0691 1412 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 20:36:31.0769 1412 srv2 - ok 20:36:31.0831 1412 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 20:36:31.0863 1412 srvnet - ok 20:36:31.0909 1412 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 20:36:32.0019 1412 SSDPSRV - ok 20:36:32.0034 1412 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 20:36:32.0143 1412 SstpSvc - ok 20:36:32.0190 1412 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 20:36:32.0221 1412 stexstor - ok 20:36:32.0268 1412 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 20:36:32.0331 1412 stisvc - ok 20:36:32.0346 1412 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys 20:36:32.0377 1412 swenum - ok 20:36:32.0424 1412 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 20:36:32.0565 1412 swprv - ok 20:36:32.0627 1412 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 20:36:32.0752 1412 SysMain - ok 20:36:32.0767 1412 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 20:36:32.0845 1412 TabletInputService - ok 20:36:32.0877 1412 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 20:36:33.0001 1412 TapiSrv - ok 20:36:33.0033 1412 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 20:36:33.0126 1412 TBS - ok 20:36:33.0189 1412 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 20:36:33.0407 1412 Tcpip - ok 20:36:33.0454 1412 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 20:36:33.0563 1412 TCPIP6 - ok 20:36:33.0610 1412 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 20:36:33.0641 1412 tcpipreg - ok 20:36:33.0688 1412 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 20:36:33.0735 1412 TDPIPE - ok 20:36:33.0766 1412 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 20:36:33.0813 1412 TDTCP - ok 20:36:33.0844 1412 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 20:36:33.0969 1412 tdx - ok 20:36:34.0000 1412 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys 20:36:34.0031 1412 TermDD - ok 20:36:34.0093 1412 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 20:36:34.0234 1412 TermService - ok 20:36:34.0265 1412 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 20:36:34.0312 1412 Themes - ok 20:36:34.0343 1412 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 20:36:34.0437 1412 THREADORDER - ok 20:36:34.0468 1412 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 20:36:34.0561 1412 TrkWks - ok 20:36:34.0608 1412 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 20:36:34.0702 1412 TrustedInstaller - ok 20:36:34.0733 1412 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 20:36:34.0842 1412 tssecsrv - ok 20:36:34.0873 1412 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 20:36:34.0920 1412 TsUsbFlt - ok 20:36:34.0951 1412 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 20:36:34.0983 1412 TsUsbGD - ok 20:36:35.0029 1412 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 20:36:35.0139 1412 tunnel - ok 20:36:35.0154 1412 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 20:36:35.0201 1412 uagp35 - ok 20:36:35.0248 1412 [ 40079B0B801C5432BA435B5AD61CE6E3 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys 20:36:35.0263 1412 UBHelper - ok 20:36:35.0295 1412 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 20:36:35.0435 1412 udfs - ok 20:36:35.0498 1412 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 20:36:35.0545 1412 UI0Detect - ok 20:36:35.0592 1412 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 20:36:35.0623 1412 uliagpkx - ok 20:36:35.0654 1412 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 20:36:35.0717 1412 umbus - ok 20:36:35.0732 1412 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 20:36:35.0779 1412 UmPass - ok 20:36:35.0888 1412 [ 7466809E6DA561D60C2F1CE8EDE3C73F ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 20:36:36.0013 1412 UNS - ok 20:36:36.0076 1412 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 20:36:36.0200 1412 upnphost - ok 20:36:36.0263 1412 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 20:36:36.0325 1412 USBAAPL64 - ok 20:36:36.0372 1412 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 20:36:36.0434 1412 usbaudio - ok 20:36:36.0466 1412 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 20:36:36.0528 1412 usbccgp - ok 20:36:36.0559 1412 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 20:36:36.0606 1412 usbcir - ok 20:36:36.0622 1412 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys 20:36:36.0668 1412 usbehci - ok 20:36:36.0715 1412 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 20:36:36.0762 1412 usbhub - ok 20:36:36.0778 1412 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 20:36:36.0824 1412 usbohci - ok 20:36:36.0871 1412 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 20:36:36.0918 1412 usbprint - ok 20:36:36.0949 1412 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 20:36:36.0996 1412 usbscan - ok 20:36:37.0012 1412 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 20:36:37.0074 1412 USBSTOR - ok 20:36:37.0105 1412 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 20:36:37.0152 1412 usbuhci - ok 20:36:37.0183 1412 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 20:36:37.0246 1412 usbvideo - ok 20:36:37.0292 1412 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 20:36:37.0402 1412 UxSms - ok 20:36:37.0417 1412 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 20:36:37.0448 1412 VaultSvc - ok 20:36:37.0480 1412 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 20:36:37.0526 1412 vdrvroot - ok 20:36:37.0558 1412 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 20:36:37.0714 1412 vds - ok 20:36:37.0745 1412 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 20:36:37.0792 1412 vga - ok 20:36:37.0823 1412 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 20:36:37.0948 1412 VgaSave - ok 20:36:37.0963 1412 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 20:36:38.0026 1412 vhdmp - ok 20:36:38.0041 1412 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 20:36:38.0088 1412 viaide - ok 20:36:38.0104 1412 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 20:36:38.0150 1412 volmgr - ok 20:36:38.0166 1412 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 20:36:38.0213 1412 volmgrx - ok 20:36:38.0244 1412 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 20:36:38.0322 1412 volsnap - ok 20:36:38.0353 1412 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 20:36:38.0400 1412 vsmraid - ok 20:36:38.0462 1412 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 20:36:38.0634 1412 VSS - ok 20:36:38.0634 1412 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 20:36:38.0696 1412 vwifibus - ok 20:36:38.0743 1412 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 20:36:38.0806 1412 vwififlt - ok 20:36:38.0837 1412 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 20:36:38.0946 1412 W32Time - ok 20:36:38.0977 1412 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 20:36:39.0024 1412 WacomPen - ok 20:36:39.0071 1412 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 20:36:39.0180 1412 WANARP - ok 20:36:39.0196 1412 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 20:36:39.0289 1412 Wanarpv6 - ok 20:36:39.0352 1412 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 20:36:39.0523 1412 wbengine - ok 20:36:39.0539 1412 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 20:36:39.0617 1412 WbioSrvc - ok 20:36:39.0648 1412 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 20:36:39.0726 1412 wcncsvc - ok 20:36:39.0757 1412 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 20:36:39.0835 1412 WcsPlugInService - ok 20:36:39.0866 1412 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 20:36:39.0913 1412 Wd - ok 20:36:39.0976 1412 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 20:36:40.0085 1412 Wdf01000 - ok 20:36:40.0116 1412 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 20:36:40.0241 1412 WdiServiceHost - ok 20:36:40.0256 1412 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 20:36:40.0303 1412 WdiSystemHost - ok 20:36:40.0319 1412 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 20:36:40.0412 1412 WebClient - ok 20:36:40.0428 1412 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 20:36:40.0584 1412 Wecsvc - ok 20:36:40.0615 1412 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 20:36:40.0724 1412 wercplsupport - ok 20:36:40.0771 1412 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 20:36:40.0865 1412 WerSvc - ok 20:36:40.0896 1412 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 20:36:41.0005 1412 WfpLwf - ok 20:36:41.0021 1412 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 20:36:41.0068 1412 WIMMount - ok 20:36:41.0083 1412 WinDefend - ok 20:36:41.0114 1412 WinHttpAutoProxySvc - ok 20:36:41.0161 1412 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 20:36:41.0270 1412 Winmgmt - ok 20:36:41.0348 1412 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 20:36:41.0582 1412 WinRM - ok 20:36:41.0645 1412 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 20:36:41.0707 1412 WinUsb - ok 20:36:41.0770 1412 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 20:36:41.0863 1412 Wlansvc - ok 20:36:41.0941 1412 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 20:36:41.0972 1412 wlcrasvc - ok 20:36:42.0050 1412 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 20:36:42.0191 1412 wlidsvc - ok 20:36:42.0222 1412 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 20:36:42.0269 1412 WmiAcpi - ok 20:36:42.0300 1412 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 20:36:42.0378 1412 wmiApSrv - ok 20:36:42.0394 1412 WMPNetworkSvc - ok 20:36:42.0440 1412 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 20:36:42.0487 1412 WPCSvc - ok 20:36:42.0518 1412 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 20:36:42.0550 1412 WPDBusEnum - ok 20:36:42.0597 1412 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 20:36:42.0691 1412 ws2ifsl - ok 20:36:42.0707 1412 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 20:36:42.0785 1412 wscsvc - ok 20:36:42.0800 1412 WSearch - ok 20:36:42.0894 1412 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 20:36:43.0050 1412 wuauserv - ok 20:36:43.0097 1412 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 20:36:43.0159 1412 WudfPf - ok 20:36:43.0190 1412 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 20:36:43.0237 1412 WUDFRd - ok 20:36:43.0268 1412 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 20:36:43.0315 1412 wudfsvc - ok 20:36:43.0346 1412 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll 20:36:43.0424 1412 WwanSvc - ok 20:36:43.0455 1412 ================ Scan global =============================== 20:36:43.0487 1412 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 20:36:43.0518 1412 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 20:36:43.0533 1412 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 20:36:43.0580 1412 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 20:36:43.0611 1412 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 20:36:43.0611 1412 [Global] - ok 20:36:43.0611 1412 ================ Scan MBR ================================== 20:36:43.0627 1412 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 20:36:44.0501 1412 \Device\Harddisk0\DR0 - ok 20:36:44.0501 1412 ================ Scan VBR ================================== 20:36:44.0516 1412 [ 458FA561BD523EFFFE5A83F97522E3A8 ] \Device\Harddisk0\DR0\Partition1 20:36:44.0516 1412 \Device\Harddisk0\DR0\Partition1 - ok 20:36:44.0547 1412 [ 9E3E533D7880F6B4A1A32676E1E1B4C3 ] \Device\Harddisk0\DR0\Partition2 20:36:44.0547 1412 \Device\Harddisk0\DR0\Partition2 - ok 20:36:44.0547 1412 ============================================================ 20:36:44.0547 1412 Scan finished 20:36:44.0547 1412 ============================================================ 20:36:44.0579 5044 Detected object count: 0 20:36:44.0579 5044 Actual detected object count: 0 20:37:39.0070 0604 ============================================================ 20:37:39.0070 0604 Scan started 20:37:39.0070 0604 Mode: Manual; SigCheck; TDLFS; 20:37:39.0070 0604 ============================================================ 20:37:39.0320 0604 ================ Scan system memory ======================== 20:37:39.0320 0604 System memory - ok 20:37:39.0320 0604 ================ Scan services ============================= 20:37:39.0492 0604 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 20:37:39.0538 0604 1394ohci - ok 20:37:39.0585 0604 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 20:37:39.0632 0604 ACPI - ok 20:37:39.0648 0604 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 20:37:39.0694 0604 AcpiPmi - ok 20:37:39.0804 0604 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 20:37:39.0835 0604 AdobeFlashPlayerUpdateSvc - ok 20:37:39.0882 0604 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 20:37:39.0928 0604 adp94xx - ok 20:37:39.0944 0604 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 20:37:39.0975 0604 adpahci - ok 20:37:40.0006 0604 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 20:37:40.0038 0604 adpu320 - ok 20:37:40.0069 0604 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 20:37:40.0162 0604 AeLookupSvc - ok 20:37:40.0209 0604 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 20:37:40.0240 0604 AFD - ok 20:37:40.0272 0604 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 20:37:40.0287 0604 agp440 - ok 20:37:40.0318 0604 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 20:37:40.0350 0604 ALG - ok 20:37:40.0350 0604 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 20:37:40.0381 0604 aliide - ok 20:37:40.0396 0604 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 20:37:40.0428 0604 amdide - ok 20:37:40.0428 0604 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 20:37:40.0459 0604 AmdK8 - ok 20:37:40.0474 0604 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 20:37:40.0506 0604 AmdPPM - ok 20:37:40.0521 0604 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 20:37:40.0552 0604 amdsata - ok 20:37:40.0568 0604 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 20:37:40.0599 0604 amdsbs - ok 20:37:40.0615 0604 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 20:37:40.0646 0604 amdxata - ok 20:37:40.0755 0604 [ D9A92E6DD41C5ADC045AE485026AA40C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe 20:37:40.0771 0604 AntiVirSchedulerService - ok 20:37:40.0802 0604 [ 66A7A38F7C439153B758548375EB9E5E ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe 20:37:40.0833 0604 AntiVirService - ok 20:37:40.0864 0604 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 20:37:40.0958 0604 AppID - ok 20:37:40.0974 0604 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 20:37:41.0067 0604 AppIDSvc - ok 20:37:41.0114 0604 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll 20:37:41.0145 0604 Appinfo - ok 20:37:41.0239 0604 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 20:37:41.0254 0604 Apple Mobile Device - ok 20:37:41.0270 0604 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 20:37:41.0301 0604 arc - ok 20:37:41.0317 0604 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 20:37:41.0348 0604 arcsas - ok 20:37:41.0364 0604 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 20:37:41.0442 0604 AsyncMac - ok 20:37:41.0457 0604 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 20:37:41.0488 0604 atapi - ok 20:37:41.0566 0604 [ E642491F64E58CD5BC8FB8B347DCF65F ] athr C:\Windows\system32\DRIVERS\athrx.sys 20:37:41.0676 0604 athr - ok 20:37:41.0707 0604 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 20:37:41.0816 0604 AudioEndpointBuilder - ok 20:37:41.0863 0604 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 20:37:41.0956 0604 AudioSrv - ok 20:37:42.0003 0604 [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys 20:37:42.0019 0604 avgntflt - ok 20:37:42.0066 0604 [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys 20:37:42.0097 0604 avipbb - ok 20:37:42.0113 0604 [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys 20:37:42.0128 0604 avkmgr - ok 20:37:42.0144 0604 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 20:37:42.0191 0604 AxInstSV - ok 20:37:42.0237 0604 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 20:37:42.0269 0604 b06bdrv - ok 20:37:42.0315 0604 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 20:37:42.0347 0604 b57nd60a - ok 20:37:42.0472 0604 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe 20:37:42.0504 0604 BBSvc - ok 20:37:42.0550 0604 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe 20:37:42.0597 0604 BBUpdate - ok 20:37:42.0613 0604 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 20:37:42.0644 0604 BDESVC - ok 20:37:42.0660 0604 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 20:37:42.0753 0604 Beep - ok 20:37:42.0784 0604 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 20:37:42.0878 0604 BFE - ok 20:37:42.0925 0604 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 20:37:43.0034 0604 BITS - ok 20:37:43.0050 0604 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys 20:37:43.0081 0604 blbdrive - ok 20:37:43.0143 0604 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 20:37:43.0174 0604 Bonjour Service - ok 20:37:43.0206 0604 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 20:37:43.0237 0604 bowser - ok 20:37:43.0268 0604 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 20:37:43.0299 0604 BrFiltLo - ok 20:37:43.0315 0604 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 20:37:43.0346 0604 BrFiltUp - ok 20:37:43.0394 0604 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 20:37:43.0425 0604 Browser - ok 20:37:43.0441 0604 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 20:37:43.0472 0604 Brserid - ok 20:37:43.0487 0604 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 20:37:43.0519 0604 BrSerWdm - ok 20:37:43.0534 0604 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 20:37:43.0565 0604 BrUsbMdm - ok 20:37:43.0581 0604 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 20:37:43.0612 0604 BrUsbSer - ok 20:37:43.0628 0604 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 20:37:43.0659 0604 BTHMODEM - ok 20:37:43.0706 0604 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 20:37:43.0799 0604 bthserv - ok 20:37:43.0815 0604 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 20:37:43.0909 0604 cdfs - ok 20:37:43.0924 0604 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 20:37:43.0955 0604 cdrom - ok 20:37:43.0971 0604 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 20:37:44.0065 0604 CertPropSvc - ok 20:37:44.0080 0604 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 20:37:44.0111 0604 circlass - ok 20:37:44.0143 0604 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 20:37:44.0174 0604 CLFS - ok 20:37:44.0236 0604 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 20:37:44.0267 0604 clr_optimization_v2.0.50727_32 - ok 20:37:44.0299 0604 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 20:37:44.0314 0604 clr_optimization_v2.0.50727_64 - ok 20:37:44.0377 0604 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 20:37:44.0408 0604 clr_optimization_v4.0.30319_32 - ok 20:37:44.0439 0604 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 20:37:44.0470 0604 clr_optimization_v4.0.30319_64 - ok 20:37:44.0486 0604 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys 20:37:44.0517 0604 CmBatt - ok 20:37:44.0533 0604 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 20:37:44.0548 0604 cmdide - ok 20:37:44.0595 0604 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 20:37:44.0642 0604 CNG - ok 20:37:44.0657 0604 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 20:37:44.0673 0604 Compbatt - ok 20:37:44.0704 0604 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 20:37:44.0735 0604 CompositeBus - ok 20:37:44.0735 0604 COMSysApp - ok 20:37:44.0751 0604 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 20:37:44.0767 0604 crcdisk - ok 20:37:44.0813 0604 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 20:37:44.0829 0604 CryptSvc - ok 20:37:44.0876 0604 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 20:37:44.0969 0604 DcomLaunch - ok 20:37:45.0001 0604 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 20:37:45.0094 0604 defragsvc - ok 20:37:45.0110 0604 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 20:37:45.0188 0604 DfsC - ok 20:37:45.0203 0604 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 20:37:45.0235 0604 Dhcp - ok 20:37:45.0250 0604 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 20:37:45.0344 0604 discache - ok 20:37:45.0359 0604 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 20:37:45.0391 0604 Disk - ok 20:37:45.0422 0604 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 20:37:45.0453 0604 Dnscache - ok 20:37:45.0469 0604 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 20:37:45.0562 0604 dot3svc - ok 20:37:45.0578 0604 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 20:37:45.0656 0604 DPS - ok 20:37:45.0671 0604 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 20:37:45.0703 0604 drmkaud - ok 20:37:45.0765 0604 [ 9CF46FDF163E06B83D03FF929EF2296C ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe 20:37:45.0796 0604 DsiWMIService - ok 20:37:45.0843 0604 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 20:37:45.0905 0604 DXGKrnl - ok 20:37:45.0921 0604 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 20:37:46.0015 0604 EapHost - ok 20:37:46.0093 0604 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 20:37:46.0202 0604 ebdrv - ok 20:37:46.0217 0604 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 20:37:46.0249 0604 EFS - ok 20:37:46.0311 0604 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 20:37:46.0342 0604 ehRecvr - ok 20:37:46.0373 0604 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 20:37:46.0389 0604 ehSched - ok 20:37:46.0437 0604 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 20:37:46.0468 0604 elxstor - ok 20:37:46.0562 0604 [ 2AEE0416C54A1A86D035366DE192B2F0 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe 20:37:46.0608 0604 ePowerSvc - ok 20:37:46.0624 0604 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 20:37:46.0640 0604 ErrDev - ok 20:37:46.0686 0604 [ 0975BF32399A24117E317B5BF1D5D0AA ] ETD C:\Windows\system32\DRIVERS\ETD.sys 20:37:46.0702 0604 ETD - ok 20:37:46.0733 0604 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 20:37:46.0827 0604 EventSystem - ok 20:37:46.0842 0604 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 20:37:46.0936 0604 exfat - ok 20:37:46.0952 0604 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 20:37:47.0045 0604 fastfat - ok 20:37:47.0076 0604 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 20:37:47.0108 0604 Fax - ok 20:37:47.0139 0604 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 20:37:47.0154 0604 fdc - ok 20:37:47.0186 0604 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 20:37:47.0264 0604 fdPHost - ok 20:37:47.0264 0604 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 20:37:47.0357 0604 FDResPub - ok 20:37:47.0373 0604 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 20:37:47.0404 0604 FileInfo - ok 20:37:47.0420 0604 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 20:37:47.0498 0604 Filetrace - ok 20:37:47.0513 0604 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 20:37:47.0529 0604 flpydisk - ok 20:37:47.0560 0604 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 20:37:47.0591 0604 FltMgr - ok 20:37:47.0638 0604 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll 20:37:47.0700 0604 FontCache - ok 20:37:47.0747 0604 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 20:37:47.0763 0604 FontCache3.0.0.0 - ok 20:37:47.0778 0604 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 20:37:47.0794 0604 FsDepends - ok 20:37:47.0841 0604 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 20:37:47.0856 0604 Fs_Rec - ok 20:37:47.0888 0604 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 20:37:47.0934 0604 fvevol - ok 20:37:47.0950 0604 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 20:37:47.0966 0604 gagp30kx - ok 20:37:47.0997 0604 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 20:37:48.0012 0604 GEARAspiWDM - ok 20:37:48.0044 0604 [ A4198F2BD8AA592CB90476277A81B5E1 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys 20:37:48.0059 0604 ggflt - ok 20:37:48.0090 0604 [ D266350BDAAB9EB6C1AEC370EEAAFF3A ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys 20:37:48.0106 0604 ggsemc - ok 20:37:48.0153 0604 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 20:37:48.0246 0604 gpsvc - ok 20:37:48.0309 0604 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe 20:37:48.0324 0604 GREGService - ok 20:37:48.0356 0604 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 20:37:48.0387 0604 gusvc - ok 20:37:48.0418 0604 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 20:37:48.0434 0604 hcw85cir - ok 20:37:48.0465 0604 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 20:37:48.0496 0604 HdAudAddService - ok 20:37:48.0527 0604 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 20:37:48.0558 0604 HDAudBus - ok 20:37:48.0590 0604 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\drivers\HECIx64.sys 20:37:48.0605 0604 HECIx64 - ok 20:37:48.0621 0604 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 20:37:48.0652 0604 HidBatt - ok 20:37:48.0652 0604 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 20:37:48.0699 0604 HidBth - ok 20:37:48.0699 0604 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 20:37:48.0746 0604 HidIr - ok 20:37:48.0761 0604 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 20:37:48.0855 0604 hidserv - ok 20:37:48.0870 0604 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 20:37:48.0902 0604 HidUsb - ok 20:37:48.0917 0604 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 20:37:48.0995 0604 hkmsvc - ok 20:37:49.0011 0604 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 20:37:49.0042 0604 HomeGroupListener - ok 20:37:49.0073 0604 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 20:37:49.0104 0604 HomeGroupProvider - ok 20:37:49.0120 0604 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 20:37:49.0151 0604 HpSAMD - ok 20:37:49.0182 0604 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 20:37:49.0276 0604 HTTP - ok 20:37:49.0292 0604 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 20:37:49.0307 0604 hwpolicy - ok 20:37:49.0338 0604 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 20:37:49.0354 0604 i8042prt - ok 20:37:49.0401 0604 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\drivers\iaStor.sys 20:37:49.0432 0604 iaStor - ok 20:37:49.0494 0604 [ 6B24D1C3096DE796D15571079EA5E98C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 20:37:49.0510 0604 IAStorDataMgrSvc - ok 20:37:49.0541 0604 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 20:37:49.0588 0604 iaStorV - ok 20:37:49.0650 0604 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 20:37:49.0697 0604 idsvc - ok 20:37:49.0962 0604 [ 31569A2E836C12014148BF7342716946 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 20:37:50.0274 0604 igfx - ok 20:37:50.0337 0604 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 20:37:50.0368 0604 iirsp - ok 20:37:50.0399 0604 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 20:37:50.0524 0604 IKEEXT - ok 20:37:50.0540 0604 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys 20:37:50.0571 0604 Impcd - ok 20:37:50.0649 0604 [ 235362D403D9D677514649D88DB31914 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 20:37:50.0758 0604 IntcAzAudAddService - ok 20:37:50.0789 0604 [ 03C74719D48056A1078F3A51CEB76BAA ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys 20:37:50.0805 0604 IntcDAud - ok 20:37:50.0820 0604 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 20:37:50.0836 0604 intelide - ok 20:37:50.0867 0604 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 20:37:50.0883 0604 intelppm - ok 20:37:50.0930 0604 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 20:37:51.0023 0604 IPBusEnum - ok 20:37:51.0039 0604 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 20:37:51.0148 0604 IpFilterDriver - ok 20:37:51.0195 0604 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 20:37:51.0242 0604 iphlpsvc - ok 20:37:51.0242 0604 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 20:37:51.0273 0604 IPMIDRV - ok 20:37:51.0288 0604 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 20:37:51.0382 0604 IPNAT - ok 20:37:51.0507 0604 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 20:37:51.0554 0604 iPod Service - ok 20:37:51.0569 0604 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM |
|
09.06.2013, 20:43
| #9 |
| | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist C:\Windows\system32\drivers\irenum.sys 20:37:51.0616 0604 IRENUM - ok 20:37:51.0632 0604 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 20:37:51.0663 0604 isapnp - ok 20:37:51.0694 0604 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 20:37:51.0725 0604 iScsiPrt - ok 20:37:51.0756 0604 [ F415A88162D23977B5EDAE4F0410E903 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe 20:37:51.0772 0604 IviRegMgr - ok 20:37:51.0803 0604 [ 37E053A2CF8F0082B689ED74106E0CEC ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys 20:37:51.0850 0604 k57nd60a - ok 20:37:51.0850 0604 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys 20:37:51.0881 0604 kbdclass - ok 20:37:51.0897 0604 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 20:37:51.0928 0604 kbdhid - ok 20:37:51.0959 0604 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 20:37:51.0975 0604 KeyIso - ok 20:37:52.0022 0604 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 20:37:52.0037 0604 KSecDD - ok 20:37:52.0068 0604 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 20:37:52.0100 0604 KSecPkg - ok 20:37:52.0100 0604 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 20:37:52.0193 0604 ksthunk - ok 20:37:52.0224 0604 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 20:37:52.0334 0604 KtmRm - ok 20:37:52.0365 0604 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 20:37:52.0458 0604 LanmanServer - ok 20:37:52.0521 0604 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 20:37:52.0614 0604 LanmanWorkstation - ok 20:37:52.0677 0604 [ 6BCEE9C766815BFFF89DE7D81AF34CE1 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe 20:37:52.0708 0604 Live Updater Service - ok 20:37:52.0724 0604 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 20:37:52.0817 0604 lltdio - ok 20:37:52.0864 0604 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 20:37:52.0958 0604 lltdsvc - ok 20:37:52.0973 0604 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 20:37:53.0067 0604 lmhosts - ok 20:37:53.0114 0604 [ DBC1136A62BD4DECC3632DF650284C2E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 20:37:53.0129 0604 LMS - ok 20:37:53.0176 0604 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 20:37:53.0207 0604 LSI_FC - ok 20:37:53.0223 0604 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 20:37:53.0254 0604 LSI_SAS - ok 20:37:53.0270 0604 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 20:37:53.0285 0604 LSI_SAS2 - ok 20:37:53.0301 0604 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 20:37:53.0332 0604 LSI_SCSI - ok 20:37:53.0348 0604 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 20:37:53.0441 0604 luafv - ok 20:37:53.0488 0604 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 20:37:53.0504 0604 MBAMProtector - ok 20:37:53.0550 0604 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe 20:37:53.0597 0604 MBAMScheduler - ok 20:37:53.0628 0604 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 20:37:53.0675 0604 MBAMService - ok 20:37:53.0706 0604 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 20:37:53.0738 0604 Mcx2Svc - ok 20:37:53.0753 0604 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 20:37:53.0784 0604 megasas - ok 20:37:53.0816 0604 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 20:37:53.0847 0604 MegaSR - ok 20:37:53.0862 0604 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 20:37:53.0956 0604 MMCSS - ok 20:37:53.0972 0604 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 20:37:54.0065 0604 Modem - ok 20:37:54.0065 0604 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 20:37:54.0112 0604 monitor - ok 20:37:54.0128 0604 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 20:37:54.0143 0604 mouclass - ok 20:37:54.0159 0604 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 20:37:54.0190 0604 mouhid - ok 20:37:54.0206 0604 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 20:37:54.0237 0604 mountmgr - ok 20:37:54.0252 0604 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 20:37:54.0284 0604 mpio - ok 20:37:54.0299 0604 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 20:37:54.0393 0604 mpsdrv - ok 20:37:54.0440 0604 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 20:37:54.0549 0604 MpsSvc - ok 20:37:54.0564 0604 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 20:37:54.0596 0604 MRxDAV - ok 20:37:54.0642 0604 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 20:37:54.0658 0604 mrxsmb - ok 20:37:54.0689 0604 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 20:37:54.0720 0604 mrxsmb10 - ok 20:37:54.0752 0604 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 20:37:54.0783 0604 mrxsmb20 - ok 20:37:54.0814 0604 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 20:37:54.0845 0604 msahci - ok 20:37:54.0861 0604 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 20:37:54.0892 0604 msdsm - ok 20:37:54.0908 0604 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 20:37:54.0954 0604 MSDTC - ok 20:37:54.0986 0604 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 20:37:55.0064 0604 Msfs - ok 20:37:55.0095 0604 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 20:37:55.0188 0604 mshidkmdf - ok 20:37:55.0188 0604 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 20:37:55.0220 0604 msisadrv - ok 20:37:55.0251 0604 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 20:37:55.0360 0604 MSiSCSI - ok 20:37:55.0360 0604 msiserver - ok 20:37:55.0376 0604 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 20:37:55.0469 0604 MSKSSRV - ok 20:37:55.0500 0604 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 20:37:55.0578 0604 MSPCLOCK - ok 20:37:55.0610 0604 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 20:37:55.0703 0604 MSPQM - ok 20:37:55.0719 0604 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 20:37:55.0766 0604 MsRPC - ok 20:37:55.0781 0604 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 20:37:55.0797 0604 mssmbios - ok 20:37:55.0812 0604 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 20:37:55.0906 0604 MSTEE - ok 20:37:55.0906 0604 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 20:37:55.0937 0604 MTConfig - ok 20:37:55.0953 0604 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 20:37:55.0968 0604 Mup - ok 20:37:56.0015 0604 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 20:37:56.0109 0604 napagent - ok 20:37:56.0140 0604 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 20:37:56.0187 0604 NativeWifiP - ok 20:37:56.0249 0604 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 20:37:56.0312 0604 NDIS - ok 20:37:56.0327 0604 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 20:37:56.0405 0604 NdisCap - ok 20:37:56.0421 0604 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 20:37:56.0514 0604 NdisTapi - ok 20:37:56.0530 0604 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 20:37:56.0624 0604 Ndisuio - ok 20:37:56.0639 0604 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 20:37:56.0733 0604 NdisWan - ok 20:37:56.0748 0604 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 20:37:56.0826 0604 NDProxy - ok 20:37:56.0858 0604 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 20:37:56.0936 0604 NetBIOS - ok 20:37:56.0951 0604 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 20:37:57.0029 0604 NetBT - ok 20:37:57.0045 0604 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 20:37:57.0076 0604 Netlogon - ok 20:37:57.0123 0604 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 20:37:57.0201 0604 Netman - ok 20:37:57.0232 0604 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 20:37:57.0341 0604 netprofm - ok 20:37:57.0357 0604 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 20:37:57.0388 0604 NetTcpPortSharing - ok 20:37:57.0404 0604 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 20:37:57.0435 0604 nfrd960 - ok 20:37:57.0466 0604 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 20:37:57.0497 0604 NlaSvc - ok 20:37:57.0513 0604 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 20:37:57.0591 0604 Npfs - ok 20:37:57.0606 0604 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 20:37:57.0684 0604 nsi - ok 20:37:57.0700 0604 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 20:37:57.0778 0604 nsiproxy - ok 20:37:57.0856 0604 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 20:37:57.0934 0604 Ntfs - ok 20:37:58.0012 0604 [ 9A308FCDCCA98A15B6F62D36A272160E ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe 20:37:58.0028 0604 NTI IScheduleSvc - ok 20:37:58.0059 0604 [ 28C59F594044CBF8598B18C927097091 ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe 20:37:58.0074 0604 NTIBackupSvc - ok 20:37:58.0106 0604 [ 710263B44C1D1AEE07525A53401FBE48 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys 20:37:58.0121 0604 NTIDrvr - ok 20:37:58.0152 0604 [ B8D903B2894FF9AFBD99CA51C35590D7 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe 20:37:58.0168 0604 NTISchedulerSvc - ok 20:37:58.0184 0604 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 20:37:58.0262 0604 Null - ok 20:37:58.0277 0604 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 20:37:58.0308 0604 nvraid - ok 20:37:58.0340 0604 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 20:37:58.0371 0604 nvstor - ok 20:37:58.0386 0604 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 20:37:58.0418 0604 nv_agp - ok 20:37:58.0433 0604 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 20:37:58.0449 0604 ohci1394 - ok 20:37:58.0480 0604 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 20:37:58.0511 0604 p2pimsvc - ok 20:37:58.0527 0604 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 20:37:58.0574 0604 p2psvc - ok 20:37:58.0589 0604 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 20:37:58.0605 0604 Parport - ok 20:37:58.0652 0604 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 20:37:58.0683 0604 partmgr - ok 20:37:58.0698 0604 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 20:37:58.0745 0604 PcaSvc - ok 20:37:58.0761 0604 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 20:37:58.0792 0604 pci - ok 20:37:58.0808 0604 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 20:37:58.0823 0604 pciide - ok 20:37:58.0854 0604 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 20:37:58.0886 0604 pcmcia - ok 20:37:58.0901 0604 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 20:37:58.0948 0604 pcw - ok 20:37:58.0979 0604 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 20:37:59.0073 0604 PEAUTH - ok 20:37:59.0166 0604 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 20:37:59.0198 0604 PerfHost - ok 20:37:59.0276 0604 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 20:37:59.0385 0604 pla - ok 20:37:59.0416 0604 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 20:37:59.0447 0604 PlugPlay - ok 20:37:59.0463 0604 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 20:37:59.0494 0604 PNRPAutoReg - ok 20:37:59.0525 0604 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 20:37:59.0556 0604 PNRPsvc - ok 20:37:59.0588 0604 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 20:37:59.0681 0604 PolicyAgent - ok 20:37:59.0712 0604 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 20:37:59.0790 0604 Power - ok 20:37:59.0837 0604 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 20:37:59.0915 0604 PptpMiniport - ok 20:37:59.0931 0604 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 20:37:59.0962 0604 Processor - ok 20:37:59.0993 0604 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 20:38:00.0024 0604 ProfSvc - ok 20:38:00.0040 0604 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 20:38:00.0071 0604 ProtectedStorage - ok 20:38:00.0087 0604 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 20:38:00.0165 0604 Psched - ok 20:38:00.0196 0604 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe 20:38:00.0212 0604 PSI_SVC_2 - ok 20:38:00.0274 0604 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 20:38:00.0336 0604 ql2300 - ok 20:38:00.0352 0604 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 20:38:00.0383 0604 ql40xx - ok 20:38:00.0414 0604 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 20:38:00.0446 0604 QWAVE - ok 20:38:00.0477 0604 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 20:38:00.0508 0604 QWAVEdrv - ok 20:38:00.0524 0604 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 20:38:00.0602 0604 RasAcd - ok 20:38:00.0633 0604 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 20:38:00.0726 0604 RasAgileVpn - ok 20:38:00.0742 0604 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 20:38:00.0820 0604 RasAuto - ok 20:38:00.0836 0604 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 20:38:00.0914 0604 Rasl2tp - ok 20:38:00.0945 0604 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 20:38:01.0023 0604 RasMan - ok 20:38:01.0054 0604 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 20:38:01.0132 0604 RasPppoe - ok 20:38:01.0148 0604 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 20:38:01.0226 0604 RasSstp - ok 20:38:01.0257 0604 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 20:38:01.0350 0604 rdbss - ok 20:38:01.0366 0604 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 20:38:01.0397 0604 rdpbus - ok 20:38:01.0413 0604 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 20:38:01.0491 0604 RDPCDD - ok 20:38:01.0506 0604 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 20:38:01.0584 0604 RDPENCDD - ok 20:38:01.0600 0604 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 20:38:01.0678 0604 RDPREFMP - ok 20:38:01.0709 0604 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 20:38:01.0740 0604 RDPWD - ok 20:38:01.0772 0604 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 20:38:01.0803 0604 rdyboost - ok 20:38:01.0834 0604 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 20:38:01.0912 0604 RemoteAccess - ok 20:38:01.0943 0604 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 20:38:02.0037 0604 RemoteRegistry - ok 20:38:02.0052 0604 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 20:38:02.0130 0604 RpcEptMapper - ok 20:38:02.0162 0604 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 20:38:02.0177 0604 RpcLocator - ok 20:38:02.0208 0604 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 20:38:02.0302 0604 RpcSs - ok 20:38:02.0333 0604 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 20:38:02.0411 0604 rspndr - ok 20:38:02.0442 0604 [ 763AE0C6D9DF4C24B7E2C26036A8188A ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys 20:38:02.0458 0604 RSUSBSTOR - ok 20:38:02.0505 0604 [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A ] RS_Service C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe 20:38:02.0520 0604 RS_Service - ok 20:38:02.0536 0604 [ EA268BCE30691C2DD24F02E617FD2EB5 ] s0016bus C:\Windows\system32\DRIVERS\s0016bus.sys 20:38:02.0567 0604 s0016bus - ok 20:38:02.0567 0604 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 20:38:02.0583 0604 SamSs - ok 20:38:02.0614 0604 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 20:38:02.0630 0604 sbp2port - ok 20:38:02.0676 0604 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 20:38:02.0754 0604 SCardSvr - ok 20:38:02.0770 0604 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 20:38:02.0848 0604 scfilter - ok 20:38:02.0879 0604 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 20:38:02.0973 0604 Schedule - ok 20:38:03.0004 0604 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 20:38:03.0082 0604 SCPolicySvc - ok 20:38:03.0098 0604 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 20:38:03.0129 0604 SDRSVC - ok 20:38:03.0269 0604 [ 95AA9E165C7DE1B64A11E8B18E91E499 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe 20:38:03.0363 0604 SDScannerService - ok 20:38:03.0425 0604 [ D31398D4BB4907B517B6E784C2100C4A ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe 20:38:03.0488 0604 SDUpdateService - ok 20:38:03.0519 0604 [ 6AE8E702D1027A9627DDE2B77BB9992B ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe 20:38:03.0550 0604 SDWSCService - ok 20:38:03.0581 0604 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 20:38:03.0675 0604 secdrv - ok 20:38:03.0722 0604 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 20:38:03.0800 0604 seclogon - ok 20:38:03.0815 0604 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 20:38:03.0924 0604 SENS - ok 20:38:03.0940 0604 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 20:38:03.0971 0604 SensrSvc - ok 20:38:03.0987 0604 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 20:38:04.0018 0604 Serenum - ok 20:38:04.0018 0604 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 20:38:04.0049 0604 Serial - ok 20:38:04.0065 0604 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 20:38:04.0096 0604 sermouse - ok 20:38:04.0127 0604 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 20:38:04.0221 0604 SessionEnv - ok 20:38:04.0236 0604 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 20:38:04.0268 0604 sffdisk - ok 20:38:04.0268 0604 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 20:38:04.0299 0604 sffp_mmc - ok 20:38:04.0314 0604 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 20:38:04.0346 0604 sffp_sd - ok 20:38:04.0346 0604 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 20:38:04.0377 0604 sfloppy - ok 20:38:04.0408 0604 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 20:38:04.0502 0604 SharedAccess - ok 20:38:04.0533 0604 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 20:38:04.0611 0604 ShellHWDetection - ok 20:38:04.0626 0604 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 20:38:04.0658 0604 SiSRaid2 - ok 20:38:04.0673 0604 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 20:38:04.0704 0604 SiSRaid4 - ok 20:38:04.0845 0604 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe 20:38:04.0970 0604 Skype C2C Service - ok 20:38:05.0016 0604 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 20:38:05.0032 0604 SkypeUpdate - ok 20:38:05.0063 0604 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 20:38:05.0141 0604 Smb - ok 20:38:05.0172 0604 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 20:38:05.0204 0604 SNMPTRAP - ok 20:38:05.0219 0604 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 20:38:05.0250 0604 spldr - ok 20:38:05.0297 0604 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 20:38:05.0328 0604 Spooler - ok 20:38:05.0422 0604 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 20:38:05.0594 0604 sppsvc - ok 20:38:05.0609 0604 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 20:38:05.0687 0604 sppuinotify - ok 20:38:05.0734 0604 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 20:38:05.0765 0604 srv - ok 20:38:05.0796 0604 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 20:38:05.0828 0604 srv2 - ok 20:38:05.0843 0604 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 20:38:05.0874 0604 srvnet - ok 20:38:05.0890 0604 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 20:38:05.0968 0604 SSDPSRV - ok 20:38:05.0999 0604 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 20:38:06.0077 0604 SstpSvc - ok 20:38:06.0108 0604 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 20:38:06.0124 0604 stexstor - ok 20:38:06.0155 0604 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 20:38:06.0202 0604 stisvc - ok 20:38:06.0233 0604 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys 20:38:06.0249 0604 swenum - ok 20:38:06.0280 0604 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 20:38:06.0374 0604 swprv - ok 20:38:06.0420 0604 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 20:38:06.0498 0604 SysMain - ok 20:38:06.0514 0604 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 20:38:06.0545 0604 TabletInputService - ok 20:38:06.0576 0604 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 20:38:06.0654 0604 TapiSrv - ok 20:38:06.0670 0604 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 20:38:06.0764 0604 TBS - ok 20:38:06.0842 0604 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 20:38:06.0920 0604 Tcpip - ok 20:38:06.0982 0604 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 20:38:07.0076 0604 TCPIP6 - ok 20:38:07.0122 0604 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 20:38:07.0138 0604 tcpipreg - ok 20:38:07.0169 0604 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 20:38:07.0185 0604 TDPIPE - ok 20:38:07.0216 0604 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 20:38:07.0232 0604 TDTCP - ok 20:38:07.0263 0604 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 20:38:07.0341 0604 tdx - ok 20:38:07.0341 0604 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys 20:38:07.0372 0604 TermDD - ok 20:38:07.0419 0604 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 20:38:07.0512 0604 TermService - ok 20:38:07.0559 0604 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 20:38:07.0606 0604 Themes - ok 20:38:07.0622 0604 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 20:38:07.0700 0604 THREADORDER - ok 20:38:07.0715 0604 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 20:38:07.0809 0604 TrkWks - ok 20:38:07.0840 0604 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 20:38:07.0918 0604 TrustedInstaller - ok 20:38:07.0949 0604 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 20:38:08.0027 0604 tssecsrv - ok 20:38:08.0058 0604 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 20:38:08.0074 0604 TsUsbFlt - ok 20:38:08.0121 0604 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 20:38:08.0136 0604 TsUsbGD - ok 20:38:08.0168 0604 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 20:38:08.0246 0604 tunnel - ok 20:38:08.0261 0604 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 20:38:08.0277 0604 uagp35 - ok 20:38:08.0308 0604 [ 40079B0B801C5432BA435B5AD61CE6E3 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys 20:38:08.0324 0604 UBHelper - ok 20:38:08.0355 0604 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 20:38:08.0433 0604 udfs - ok 20:38:08.0480 0604 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 20:38:08.0495 0604 UI0Detect - ok 20:38:08.0511 0604 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 20:38:08.0526 0604 uliagpkx - ok 20:38:08.0558 0604 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 20:38:08.0573 0604 umbus - ok 20:38:08.0589 0604 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 20:38:08.0604 0604 UmPass - ok 20:38:08.0715 0604 [ 7466809E6DA561D60C2F1CE8EDE3C73F ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 20:38:08.0808 0604 UNS - ok 20:38:08.0824 0604 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 20:38:08.0917 0604 upnphost - ok 20:38:08.0964 0604 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 20:38:08.0980 0604 USBAAPL64 - ok 20:38:09.0011 0604 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 20:38:09.0042 0604 usbaudio - ok 20:38:09.0073 0604 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 20:38:09.0089 0604 usbccgp - ok 20:38:09.0120 0604 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 20:38:09.0167 0604 usbcir - ok 20:38:09.0183 0604 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys 20:38:09.0198 0604 usbehci - ok 20:38:09.0229 0604 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 20:38:09.0261 0604 usbhub - ok 20:38:09.0307 0604 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 20:38:09.0323 0604 usbohci - ok 20:38:09.0339 0604 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 20:38:09.0370 0604 usbprint - ok 20:38:09.0401 0604 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 20:38:09.0448 0604 usbscan - ok 20:38:09.0463 0604 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 20:38:09.0479 0604 USBSTOR - ok 20:38:09.0510 0604 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 20:38:09.0526 0604 usbuhci - ok 20:38:09.0541 0604 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 20:38:09.0573 0604 usbvideo - ok 20:38:09.0604 0604 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 20:38:09.0697 0604 UxSms - ok 20:38:09.0713 0604 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 20:38:09.0729 0604 VaultSvc - ok 20:38:09.0744 0604 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 20:38:09.0775 0604 vdrvroot - ok 20:38:09.0807 0604 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 20:38:09.0900 0604 vds - ok 20:38:09.0916 0604 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 20:38:09.0947 0604 vga - ok 20:38:09.0963 0604 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 20:38:10.0056 0604 VgaSave - ok 20:38:10.0072 0604 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 20:38:10.0103 0604 vhdmp - ok 20:38:10.0103 0604 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 20:38:10.0134 0604 viaide - ok 20:38:10.0150 0604 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 20:38:10.0181 0604 volmgr - ok 20:38:10.0197 0604 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 20:38:10.0243 0604 volmgrx - ok 20:38:10.0259 0604 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 20:38:10.0290 0604 volsnap - ok 20:38:10.0306 0604 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 20:38:10.0337 0604 vsmraid - ok 20:38:10.0399 0604 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 20:38:10.0509 0604 VSS - ok 20:38:10.0524 0604 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 20:38:10.0555 0604 vwifibus - ok 20:38:10.0571 0604 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 20:38:10.0602 0604 vwififlt - ok 20:38:10.0633 0604 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 20:38:10.0727 0604 W32Time - ok 20:38:10.0743 0604 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 20:38:10.0758 0604 WacomPen - ok 20:38:10.0774 0604 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 20:38:10.0852 0604 WANARP - ok 20:38:10.0867 0604 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 20:38:10.0930 0604 Wanarpv6 - ok 20:38:10.0977 0604 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 20:38:11.0023 0604 wbengine - ok 20:38:11.0039 0604 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 20:38:11.0086 0604 WbioSrvc - ok 20:38:11.0101 0604 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 20:38:11.0148 0604 wcncsvc - ok 20:38:11.0164 0604 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 20:38:11.0179 0604 WcsPlugInService - ok 20:38:11.0195 0604 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 20:38:11.0211 0604 Wd - ok 20:38:11.0257 0604 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 20:38:11.0304 0604 Wdf01000 - ok 20:38:11.0335 0604 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 20:38:11.0367 0604 WdiServiceHost - ok 20:38:11.0367 0604 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 20:38:11.0413 0604 WdiSystemHost - ok 20:38:11.0429 0604 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 20:38:11.0476 0604 WebClient - ok 20:38:11.0491 0604 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 20:38:11.0569 0604 Wecsvc - ok 20:38:11.0601 0604 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 20:38:11.0679 0604 wercplsupport - ok 20:38:11.0694 0604 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 20:38:11.0772 0604 WerSvc - ok 20:38:11.0803 0604 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 20:38:11.0866 0604 WfpLwf - ok 20:38:11.0897 0604 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 20:38:11.0913 0604 WIMMount - ok 20:38:11.0928 0604 WinDefend - ok 20:38:11.0944 0604 WinHttpAutoProxySvc - ok 20:38:11.0991 0604 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 20:38:12.0069 0604 Winmgmt - ok 20:38:12.0131 0604 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 20:38:12.0256 0604 WinRM - ok 20:38:12.0303 0604 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 20:38:12.0334 0604 WinUsb - ok 20:38:12.0381 0604 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 20:38:12.0427 0604 Wlansvc - ok 20:38:12.0505 0604 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 20:38:12.0521 0604 wlcrasvc - ok 20:38:12.0599 0604 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 20:38:12.0693 0604 wlidsvc - ok 20:38:12.0708 0604 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 20:38:12.0739 0604 WmiAcpi - ok 20:38:12.0771 0604 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 20:38:12.0802 0604 wmiApSrv - ok 20:38:12.0817 0604 WMPNetworkSvc - ok 20:38:12.0849 0604 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 20:38:12.0880 0604 WPCSvc - ok 20:38:12.0895 0604 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 20:38:12.0927 0604 WPDBusEnum - ok 20:38:12.0973 0604 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 20:38:13.0051 0604 ws2ifsl - ok 20:38:13.0083 0604 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 20:38:13.0129 0604 wscsvc - ok 20:38:13.0129 0604 WSearch - ok 20:38:13.0223 0604 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 20:38:13.0348 0604 wuauserv - ok 20:38:13.0395 0604 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 20:38:13.0410 0604 WudfPf - ok 20:38:13.0441 0604 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 20:38:13.0473 0604 WUDFRd - ok 20:38:13.0504 0604 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 20:38:13.0535 0604 wudfsvc - ok 20:38:13.0566 0604 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll 20:38:13.0597 0604 WwanSvc - ok 20:38:13.0613 0604 ================ Scan global =============================== 20:38:13.0644 0604 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 20:38:13.0675 0604 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 20:38:13.0707 0604 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 20:38:13.0738 0604 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 20:38:13.0769 0604 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 20:38:13.0769 0604 [Global] - ok 20:38:13.0785 0604 ================ Scan MBR ================================== 20:38:13.0800 0604 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 20:38:14.0674 0604 \Device\Harddisk0\DR0 - ok 20:38:14.0689 0604 ================ Scan VBR ================================== 20:38:14.0689 0604 [ 458FA561BD523EFFFE5A83F97522E3A8 ] \Device\Harddisk0\DR0\Partition1 20:38:14.0689 0604 \Device\Harddisk0\DR0\Partition1 - ok 20:38:14.0721 0604 [ 9E3E533D7880F6B4A1A32676E1E1B4C3 ] \Device\Harddisk0\DR0\Partition2 20:38:14.0721 0604 \Device\Harddisk0\DR0\Partition2 - ok 20:38:14.0721 0604 ============================================================ 20:38:14.0721 0604 Scan finished 20:38:14.0721 0604 ============================================================ 20:38:14.0736 5472 Detected object count: 0 20:38:14.0736 5472 Actual detected object count: 0 21:03:50.0285 1056 Deinitialize success Ging leider nicht am Stück (deswegen hatte ich es als Zip gemacht). |
|
09.06.2013, 21:39
| #10 |
| /// Malware-holic | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist Hi, Scan mit Combofix
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
10.06.2013, 17:30
| #11 |
| | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist Hi, ich mach das jetzt mit dem ComboFix. Poste es dann auch gerne als CODE-Tags, wenn du mir sagst, wie das geht. =) (Bytheway seit gestern abend hatte ich keine ungewöhlichen Aktionen mehr auf den Laptop. Sprich seit ca. 18 Uhr. Ich weiß nicht ob es wichtig ist, aber vorher hatte ich Gogglecrom deinstalliert (und bei dem kann ich mich auch nicht dran erinnern, ihn jemals installiert zu haben). Code:
ATTFilter ComboFix 13-06-08.02 - Katja 10.06.2013 18:33:51.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.3767.2250 [GMT 2:00]
ausgeführt von:: c:\users\Katja\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Katja\AppData\Local\.#
c:\users\Katja\AppData\Local\.#\MBX@1448@20D2740.###
c:\users\Katja\AppData\Local\.#\MBX@1448@20D2770.###
c:\users\Katja\AppData\Local\.#\MBX@1B4C@372740.###
c:\users\Katja\AppData\Local\.#\MBX@1B4C@372770.###
c:\users\Katja\AppData\Local\.#\MBX@1C40@242740.###
c:\users\Katja\AppData\Local\.#\MBX@1C40@242770.###
c:\users\Katja\AppData\Local\.#\MBX@3014@8E2740.###
c:\users\Katja\AppData\Local\.#\MBX@3014@8E2770.###
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-05-10 bis 2013-06-10 ))))))))))))))))))))))))))))))
.
.
2013-06-10 16:41 . 2013-06-10 16:41 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-06-09 17:03 . 2013-06-09 17:03 -------- d-----w- C:\_OTL
2013-06-09 14:38 . 2013-06-09 14:38 -------- d-----w- c:\windows\Neuer Ordner
2013-06-08 20:49 . 2013-06-09 12:09 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-06-08 20:48 . 2013-06-10 16:25 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
2013-06-08 09:05 . 2013-05-03 14:15 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-06-07 19:33 . 2013-06-07 19:33 -------- d-----w- c:\users\Katja\AppData\Roaming\Malwarebytes
2013-06-07 19:33 . 2013-06-07 19:33 -------- d-----w- c:\programdata\Malwarebytes
2013-06-07 19:32 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-06-07 19:32 . 2013-06-07 19:33 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-06-07 19:31 . 2013-06-07 19:31 -------- d-----w- c:\users\Katja\AppData\Local\Programs
2013-06-02 18:57 . 2013-06-09 17:03 -------- d-----w- c:\users\Katja\AppData\Roaming\noc
2013-05-15 11:16 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-16 19:08 . 2010-06-24 18:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-14 18:46 . 2012-08-30 12:24 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-14 18:46 . 2012-03-12 16:18 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-07 17:48 . 2013-05-07 17:48 83160 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-04-13 05:49 . 2013-05-15 11:16 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 11:16 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 11:16 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 11:16 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 11:16 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 11:16 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-23 18:11 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-07 08:38 . 2013-04-07 08:38 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-04-07 08:38 . 2013-04-07 08:38 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-04-07 08:38 . 2013-04-07 08:38 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-04-07 08:38 . 2013-04-07 08:38 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-04-07 08:38 . 2013-04-07 08:38 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-04-07 08:38 . 2013-04-07 08:38 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-04-07 08:38 . 2013-04-07 08:38 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-04-07 08:38 . 2013-04-07 08:38 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-04-07 08:38 . 2013-04-07 08:38 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-04-07 08:38 . 2013-04-07 08:38 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-04-07 08:38 . 2013-04-07 08:38 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-04-07 08:38 . 2013-04-07 08:38 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-04-07 08:38 . 2013-04-07 08:38 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-04-07 08:38 . 2013-04-07 08:38 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-04-07 08:38 . 2013-04-07 08:38 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-04-07 08:38 . 2013-04-07 08:38 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-04-07 08:38 . 2013-04-07 08:38 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-04-07 08:38 . 2013-04-07 08:38 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-04-07 08:38 . 2013-04-07 08:38 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-04-07 08:38 . 2013-04-07 08:38 81408 ----a-w- c:\windows\system32\icardie.dll
2013-04-07 08:38 . 2013-04-07 08:38 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-04-07 08:38 . 2013-04-07 08:38 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-04-07 08:38 . 2013-04-07 08:38 441856 ----a-w- c:\windows\system32\html.iec
2013-04-07 08:38 . 2013-04-07 08:38 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-04-07 08:38 . 2013-04-07 08:38 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-04-07 08:38 . 2013-04-07 08:38 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-04-07 08:38 . 2013-04-07 08:38 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-04-07 08:38 . 2013-04-07 08:38 235008 ----a-w- c:\windows\system32\url.dll
2013-04-07 08:38 . 2013-04-07 08:38 216064 ----a-w- c:\windows\system32\msls31.dll
2013-04-07 08:38 . 2013-04-07 08:38 197120 ----a-w- c:\windows\system32\msrating.dll
2013-04-07 08:38 . 2013-04-07 08:38 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-04-07 08:38 . 2013-04-07 08:38 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-04-07 08:38 . 2013-04-07 08:38 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-04-07 08:38 . 2013-04-07 08:38 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-04-07 08:38 . 2013-04-07 08:38 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-04-07 08:38 . 2013-04-07 08:38 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-04-07 08:38 . 2013-04-07 08:38 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-04-07 08:38 . 2013-04-07 08:38 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-04-07 08:38 . 2013-04-07 08:38 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-04-07 08:38 . 2013-04-07 08:38 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-04-07 08:38 . 2013-04-07 08:38 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-04-07 08:38 . 2013-04-07 08:38 149504 ----a-w- c:\windows\system32\occache.dll
2013-04-07 08:38 . 2013-04-07 08:38 144896 ----a-w- c:\windows\system32\wextract.exe
2013-04-07 08:38 . 2013-04-07 08:38 13824 ----a-w- c:\windows\system32\mshta.exe
2013-04-07 08:38 . 2013-04-07 08:38 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-04-07 08:38 . 2013-04-07 08:38 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-04-07 08:38 . 2013-04-07 08:38 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-04-07 08:38 . 2013-04-07 08:38 102912 ----a-w- c:\windows\system32\inseng.dll
2013-04-07 08:38 . 2013-04-07 08:38 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-25 20:39 . 2013-03-25 20:39 4546560 ----a-w- c:\windows\SysWow64\GPhotos.scr
2013-03-20 11:20 . 2013-03-20 11:20 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-03-20 11:20 . 2013-03-20 11:20 130016 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-03-20 11:20 . 2013-03-20 11:20 100712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-03-19 06:04 . 2013-04-10 13:09 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 13:09 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 13:09 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 13:09 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 13:09 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 13:09 112640 ----a-w- c:\windows\system32\smss.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}]
2012-03-18 16:31 413568 ----a-w- c:\program files (x86)\PriceGong\2.6.4\PriceGongIE.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2012-02-19 12:46 1337648 ----a-r- c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2012-02-19 1337648]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-04-13 284696]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-28 35696]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-06-28 265984]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-08-10 975952]
"SweetIM"="c:\program files (x86)\SweetIM\Messenger\SweetIM.exe" [2012-02-16 114992]
"Sweetpacks Communicator"="c:\program files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe" [2012-02-26 295728]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-27 59280]
"iTunesHelper"="c:\eigene dateien\iTunes\iTunesHelper.exe" [2012-09-09 421776]
"AgentMonitor"="c:\eigene programme\VTech\DownloadManager\System\AgentMonitor.exe" [2012-11-08 377800]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-05-07 345312]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2010-06-09 49208]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\DRIVERS\s0016bus.sys;c:\windows\SYSNATIVE\DRIVERS\s0016bus.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [x]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [x]
S2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys;c:\windows\SYSNATIVE\drivers\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 90516304
*Deregistered* - 90516304
.
Inhalt des "geplante Tasks" Ordners
.
2013-06-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-30 18:46]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-07-23 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-07-23 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-07-23 415256]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-06-22 10920552]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-01-05 860040]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 192.168.1.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-ETDWare - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-06-10 18:44:28
ComboFix-quarantined-files.txt 2013-06-10 16:44
.
Vor Suchlauf: 13 Verzeichnis(se), 658.909.937.664 Bytes frei
Nach Suchlauf: 18 Verzeichnis(se), 658.375.200.768 Bytes frei
.
- - End Of File - - 3A077ACE01CE3D31AEDB234B6C271DDA
D41D8CD98F00B204E9800998ECF8427E
|
|
10.06.2013, 19:05
| #12 |
| /// Malware-holic | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist an chrome lags nicht, ich habe dafür gesorgt durch otl script. lade den CCleaner standard: CCleaner - Download - Filepony falls der CCleaner bereits instaliert, überspringen. öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen. hinter, jedes von dir benötigte programm, schreibe notwendig. hinter, jedes, von dir nicht benötigte, unnötig. hinter, dir unbekannte, unbekannt. liste posten.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
10.06.2013, 19:30
| #13 |
| | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist Ähm, das meiste auf meinen Lappi ist mir unbekannt, aber ich denke mal bzw. vermute, dass es schon Sachen sind die ich brauche und nur nicht weiß, wofür das ist. HP z.B. ist mein Drucker, aber welche Programme ich hierfür wirklich brauche weiß ich nicht. -.- Wie gesagt, ich bin ne PC-Blondine. Code:
ATTFilter HP Deskjet 1000 J110 series - Grundlegende Software für das Gerät Hewlett-Packard Co. 20.03.2013 77,2MB 22.50.231.0 unbekannt HP Deskjet 1000 J110 series Hilfe Hewlett Packard 20.03.2013 6,32MB 140.0.65.65 unbekannt HP Photo Creations HP Photo Creations Powered by RocketLife 20.03.2013 14,6MB 1.0.0.3781 unbekannt HP Update Hewlett-Packard 20.03.2013 2,97MB 5.002.006.003 ben unbekannt Identity Card Acer Incorporated 29.11.2011 1.00.3006 unbekannt Imikimi Plugin 27.07.2012 unbenötigt Install Absolute Data Protect Absolute Software 12.03.2012 642KB 1.0.0.39 unbekannt Intel(R) Control Center Intel Corporation 29.11.2011 1.2.1.1007 unbekannt Intel(R) Graphics Media Accelerator Driver Intel Corporation 29.11.2011 8.15.10.2182 unbekannt Intel(R) Management Engine Components Intel Corporation 29.11.2011 6.0.0.1179 unbekannt Intel(R) Rapid Storage Technology Intel Corporation 29.11.2011 9.6.2.1001 unbekannt iTunes Apple Inc. 17.11.2012 182MB 10.7.0.21 benötigt Java 7 Update 7 Oracle 12.10.2012 128MB 7.0.70 unbekannt Java(TM) 6 Update 22 Oracle 01.04.2012 97,0MB 6.0.220 unbekannt Java(TM) 7 Update 4 (64-bit) Oracle 11.05.2012 95,0MB 7.0.40 unbekannt Jigsaw Puzzle Lite 22.04.2012 benötigt KraiSoft Games Launcher 22.04.2012 benötigt Launch Manager Acer Inc. 29.11.2011 4.0.14 unbekannt Malwarebytes Anti-Malware Version 1.75.0.1300 Malwarebytes Corporation 07.06.2013 19,2MB 1.75.0.1300 benötigt Microsoft .NET Framework 4 Client Profile Microsoft Corporation 17.03.2012 38,8MB 4.0.30319 unbekannt Microsoft .NET Framework 4 Client Profile DEU Language Pack Microsoft Corporation 17.03.2012 2,93MB 4.0.30319 unbekannt Microsoft Office 2010 Microsoft Corporation 29.11.2011 6,31MB 14.0.4763.1000 unbekannt Microsoft Silverlight Microsoft Corporation 14.03.2013 50,6MB 5.1.20125.0 unbekannt Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 07.04.2011 1,69MB 3.1.0000 unbekannt Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 13.03.2012 300KB 8.0.61001 unbekannt Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 01.04.2012 784KB 9.0.30729.4148 unbekannt Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 02.04.2012 788KB 9.0.30729.6161 unbekannt Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 07.04.2011 596KB 9.0.30729 unbekannt Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 01.04.2012 228KB 9.0.30729.4148 unbekannt Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 13.03.2012 600KB 9.0.30729.6161 unbekannt Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 13.03.2012 12,2MB 10.0.40219 unbekannt MSXML 4.0 SP2 (KB954430) Microsoft Corporation 13.03.2012 1,27MB 4.20.9870.0 unbekannt MSXML 4.0 SP2 (KB973688) Microsoft Corporation 13.03.2012 1,33MB 4.20.9876.0 unbekannt Mystery Case Files: Huntsville ™ 22.07.2012 benötigt newsXpresso esobi Inc. 07.04.2011 7,34MB 1.0.0.40 unbekannt NTI Backup Now 5 NewTech Infosystems 07.04.2011 467MB 5.1.2.630 unbekannt NTI Media Maker 8 NewTech Infosystems 07.04.2011 773MB 8.0.12.6636 unbekannt OpenOffice.org 3.3 OpenOffice.org 01.04.2012 414MB 3.3.9567 benötigt Opera 12.15 Opera Software ASA 05.04.2013 12.15.1748 benötigt Picasa 3 Google, Inc. 27.03.2013 3.9 benötigt PriceGong 2.6.4 PriceGong 22.04.2012 2.6.4 unbekannt Realtek High Definition Audio Driver Realtek Semiconductor Corp. 29.11.2011 6.0.1.6141 unbekannt Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 07.04.2011 6.1.7600.30122 unbekannt Redrum ™ 22.07.2012 benötigt Satisfashion 22.07.2012 benötigt Skype Click to Call Skype Technologies S.A. 01.11.2012 33,9MB 6.3.11079 unbekannt Skype™ 6.1 Skype Technologies S.A. 27.02.2013 21,1MB 6.1.129 benötigt Studie zur Verbesserung von HP Deskjet 1000 J110 series Produkten Hewlett-Packard Co. 20.03.2013 7,00MB 22.50.231.0 unbekannt SweetIM for Messenger 3.6 SweetIM Technologies Ltd. 22.04.2012 4,76MB 3.6.0008 unbekannt SweetPacks Toolbar for Internet Explorer 4.5 SweetIM Technologies Ltd. 22.04.2012 4,27MB 4.5.0000 unbekannt Update Manager for SweetPacks 1.0 SweetIM Technologies Ltd. 22.04.2012 2,48MB 1.0.0005 unbekannt VTech Download Manager VTech 30.12.2012 benötigt Welcome Center Acer Incorporated 29.11.2011 1.02.3102 unbekannt Windows Live Essentials Microsoft Corporation 07.04.2011 15.4.3508.1109 unbekannt WinRAR 4.20 (32-Bit) win.rar GmbH 19.06.2012 4.20.0 benötigt |
|
10.06.2013, 21:54
| #14 |
| /// Malware-holic | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist deine liste fängt wirklich erst ab "h" an, denke nicht :-)
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
11.06.2013, 10:49
| #15 |
| | Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist Ach mist verdammter. Hast natürlich recht, da fehlen ein paar. ^^ Ist wohl beim kopieren abhanden gekommen. Und noch mal vielen Dank für die Hilfe. Kannst du eigentlich schon sagen was es war oder ist ? Ist mein Lappi jetzt schon "sauber" ? (Sprich kann ich ruhigen Gewissen solche Sachen machen wie Einkaufen und Online Banking?) Und für die Zukunft, was kann ich machen, damit mein Lappi sicher ist? Reicht Avira oder sollte ich Kaspersky kaufen ? Achja, und wenn ich schon mal jemanden mit Ahnung habe, welcher Internet-Browser ist gut und sicher? Ich nutze Opera, weil mir mal gesagt wurde, da dort das Passwortspeichern sicher ist, weil die nicht auf den PC abgelegt sind, sondern bei Opera selbst. Und Passwortspeichern soll halt gut sein, weil man es dann nicht immer tippt und somit es nicht mitgelesen werden kann, wenn man nen Virus oder so drauf hat. Stimmt, das? Und hier noch der Rest (kann auch alles noch mal zusammen machen, wenn das besser ist und auch das benötigt, bei der ersten Teil ändern): Code:
ATTFilter Acer Backup Manager NewTech Infosystems 07.04.2011 309MB 2.0.1.68 unbekannt
Acer Crystal Eye Webcam CyberLink Corp. 29.11.2011 33,7MB 1.0.1510 unbekannt
Acer ePower Management Acer Incorporated 29.11.2011 5.00.3009
Acer eRecovery Management Acer Incorporated 07.04.2011 4.05.3016 unbekannt
Acer Registration Acer Incorporated 29.11.2011 1.03.3004 unbekannt
Acer ScreenSaver Acer Incorporated 29.11.2011 1.1.0827.2010 unbekannt
Acer Updater Acer Incorporated 07.04.2011 1.02.3005 unbekannt
Acer VCM Acer Incorporated 29.11.2011 4.05.3004 unbekannt
Acrobat.com Adobe Systems Incorporated 07.04.2011 1,60MB 1.6.65 unbekannt
Adobe AIR Adobe Systems Inc. 07.04.2011 1.5.0.7220 unbekannt
Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 14.05.2013 6,00MB 11.7.700.202 unbekannt
Adobe Flash Player 11 Plugin Adobe Systems Incorporated 14.05.2013 6,00MB 11.7.700.202 unbekannt
Adobe Reader 9.1 MUI Adobe Systems Incorporated 07.04.2011 650MB 9.1.0 unbekannt
Apple Application Support Apple Inc. 17.11.2012 65,0MB 2.2.2 unbekannt
Apple Mobile Device Support Apple Inc. 17.11.2012 23,7MB 6.0.0.59 unbekannt
Apple Software Update Apple Inc. 17.11.2012 2,38MB 2.1.3.127 unbekannt
Avira Free Antivirus Avira 07.05.2013 138MB 13.0.0.3640 notwenig
Azada 22.07.2012 notwenig
Big City Adventure: Sydney, Australia 22.07.2012 notwendig
Big Fish Games: Game Manager 21.07.2012 3.0.1.60 notwendig
Bing Bar Microsoft Corporation 25.04.2013 464KB 7.1.391.0 unbekannt
Bonjour Apple Inc. 17.11.2012 2,04MB 3.0.0.10 unbekannt
Broadcom Gigabit NetLink Controller Broadcom Corporation 07.04.2011 448KB 14.0.2.3 unbekannt
CCleaner Piriform 24.05.2013 4.02 notwenig
Christmasville 22.07.2012 notwenig
Cooking Academy 22.07.2012 notwenig
Cooking Quest 22.07.2012 notwenig
Corel WinDVD Corel Inc. 29.11.2011 289MB 10.0.5.837 unbekannt
Die Kunst des Mordens: Geheimakte FBI 22.07.2012 notwenig
Die Sims - Hokus Pokus 31.08.2012 notwenig
Dream Day First Home 21.07.2012 notwenig
ETDWare PS/2-x64 7.0.6.5_WHQL ELAN Microelectronics Corp. 29.11.2011 7.0.6.5 unbekannt
Gardenscapes 22.07.2012 notwendig
GIMP 2.6.12 The GIMP Team 01.04.2012 114MB 2.6.12 notwenig
|
|
| Themen zu Laptop öffnet Dateien und Programme obwohl Virenscaner anzeigen, dass Computer sauber ist |
| avira, bho, bingbar, bonjour, browser, computer, cursor, desktop, error, firefox, flash player, google, home, homepage, iexplore.exe, install.exe, logfile, msiexec.exe, phishing, picasa, plug-in, realtek, richtlinie, safer networking, security, server, software, svchost.exe, taskmanager, trojaner, updates, windows, wrapper, ändern |
Textbox. 
WARNUNG an die MITLESER: 
Linear-Darstellung
