Snap.de toolbar kann nicht deinstalliert werden

spigi01 · 16.07.2013, 09:29

Hallo geschätztes Trojaner- Board Team

Meine Tochter hat sich vor ein paar Tagen die Snap.de Toolbar auf ihrem Uni- Laptop eingefangen

Das Gerät ist mit Windows7 geladen.
Die Tollbar konnte ich löschen, aber das Programm Snap.de kann ich nicht deinstallieren.
Desshalb gelange ich mit der Bitte mich zu unterstützen an euch.
Die Anleitung des Boards habe ich durchgearbeitet, defogger, OTL und GMER ausgeführt.
Anbei die Logs als Anhang.

Besten Dank für eure Unterstützung

smeenk · 16.07.2013, 10:03

Ich bin smeenk und ich werde versuchen dir zu helfen

Bitte lade dir zoek.exe von hier: http://hijackthis.nl/smeenk/

Bitte deaktiviere während des Scans alle Virenscanner, da sie das Ergebnis beeinflussen
Starte Zoek.exe mit einem Doppelklick.
Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und könnte andere Computer beschädigen.

Kopiere den Text der folgenden Box in das Skriptfenster von Zoek:

Code:

ATTFilter

firefoxlook;
{EC7E7E44-5DFE-427A-9842-3DE4FF974828};c
{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9};c
{8A96AF9E-4074-43b7-BEA3-87217BDA7102};c
{41C4AA37-1DDD-4345-B8DC-734E4B38414D};c
{1e48c56f-08cd-43aa-a6ef-c1ec891551ab};c
{C1AF5FA5-852C-4C90-812E-A7F75E011D87};c
{D4027C7F-154A-4066-A1AD-4243D8127440};c
{21FA44EF-376D-4D53-9B0F-8A89D3229068};c
C:\ProgramData\BrowserDefender;fs
C:\Users\Fabiène\AppData\Local\AskToolbar;fs
C:\Users\Fabiène\AppData\Local\Smartbar;fs
C:\Users\Fabiène\AppData\Roaming\BabSolution;fs
C:\Users\Fabiène\AppData\Roaming\Babylon;fs
C:\ProgramData\Babylon;fs
C:\Users\Fabiène\AppData\Roaming\OpenCandy;fs
C:\windows\SysWow64\searchplugins;fs
C:\windows\SysWow64\Extensions;fs
C:\Users\Fabiène\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender;fs
C:\Program Files (x86)\Windows jZip Toolbar;fs
C:\Program Files (x86)\Delta;fs
emptytemp;
{6A1806CD-94D4-4689-BA73-E35EA1EA9990}-iedefaults;
shortcutfix;
filesrcm;
uninstall-list;
chromelook;
startupall;
emptyclsid;

Nun klicke auf "Run script" und sei geduldig bis das Skript durchläuft.
Wenn das Tool fertig ist wird sich Notepad mit dem Logfile öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:
Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken)

spigi01 · 16.07.2013, 11:24

Hy smeenk

Vielen Dank, dass du dich unserem Problem annimmst.
Nachstehend das Log-file von zoek.exe

Code:

ATTFilter

Zoek.exe Version 4.0.0.4 Updated 14-July-2013
Tool run by FabiŠne on 16.07.2013 at 11:59:59.53.
Microsoft Windows 7 Professional  6.1.7600  x64
Running in: Normal Mode Internet Access Detected

==== Older Logs ======================

C:\zoek-results16.07.2013-1154.log	8889 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{41C4AA37-1DDD-4345-B8DC-734E4B38414D} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1e48c56f-08cd-43aa-a6ef-c1ec891551ab} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{41C4AA37-1DDD-4345-B8DC-734E4B38414D} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D2CE3E00-F94A-4740-988E-03DC2F38C34F} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully

==== Deleting Files \ Folders ======================

"C:\Users\Fabiène\AppData\Local\AskToolbar" not found 
"C:\Users\Fabiène\AppData\Local\Smartbar" not found 
"C:\Users\Fabiène\AppData\Roaming\BabSolution" not found 
"C:\Users\Fabiène\AppData\Roaming\Babylon" not found 
"C:\ProgramData\Babylon" not found 
"C:\Users\Fabiène\AppData\Roaming\OpenCandy" not found 
"C:\windows\SysWow64\searchplugins" not found 
"C:\windows\SysWow64\Extensions" not found 
"C:\Users\Fabiène\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender" not found 
"C:\Program Files (x86)\Windows jZip Toolbar" not found 
"C:\Program Files (x86)\Delta" not found 
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\bl" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.dll" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.settings" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\dm" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\bprotector.js" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\00" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\01" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\02" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\03" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\10" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\11" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\12" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\13" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\20" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\21" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\22" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\23" not deleted
"C:\ProgramData\BrowserDefender" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension" not deleted
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings" not deleted

==== Files Recently Created / Modified ======================

====== C:\windows ====
====== C:\Users\FABINE~1\AppData\Local\Temp ====
====== C:\windows\SysWOW64 =====
====== C:\windows\SysWOW64\drivers =====
====== C:\windows\Sysnative =====
====== C:\windows\Sysnative\drivers =====
====== C:\windows\Tasks ======
2013-07-12 08:25:42	0D845630CF686F5FCE6348C879027C29	3436	----a-w-	C:\windows\Sysnative\Tasks\BrowserDefendert
2013-07-12 08:25:33	730820A998F2DFCFF71F00C08C61F3B7	3402	----a-w-	C:\windows\Sysnative\Tasks\EPUpdater
====== C:\windows\Temp ======
======= C:\Program Files =====
======= C:\Program Files (x86) =====
======= C: =====
====== C:\Users\FabiŠne\AppData\Roaming ======
====== C:\Users\FabiŠne ======
2013-07-12 08:25:39	--------	d-----w-	C:\ProgramData\BrowserDefender

====== C: exe-files ==
2013-07-16 09:57:17	D95AB4EDFAED36330095E9A1470B2880	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1359661392-1277086489-3976402912-1003\$IA6MT9G.exe
2013-07-16 09:45:48	D6073ACBF3E25B983AFFCEE155469F60	1274523	----a-w-	C:\$Recycle.Bin\S-1-5-21-1359661392-1277086489-3976402912-1003\$RA6MT9G.exe
2013-07-16 07:49:37	60BF4AE8CC40B0E3E28613657ED2EED8	377856	----a-w-	C:\Users\Fabiène\Desktop\gmer_2.1.19163.exe
2013-07-16 07:31:30	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Fabiène\Desktop\OTL.exe
2013-07-16 07:28:07	9146F21288AB749C4C729343F5F285A1	50477	----a-w-	C:\Users\Fabiène\Desktop\Defogger.exe
2013-07-16 07:18:46	A6F8D4FBC12177A75AB4C06D059229B6	784664	----a-w-	C:\Users\Fabiène\AppData\Local\Google\Update\1.3.21.153\GoogleUpdateSetup.exe
2013-07-16 07:18:46	6466C051022547489D3409205128881B	59784	----atw-	C:\Users\Fabiène\AppData\Local\Google\Update\1.3.21.153\GoogleUpdateBroker.exe
2013-07-16 07:18:46	1CA3976D1B1FE826ADF339F90AC25C60	59784	----atw-	C:\Users\Fabiène\AppData\Local\Google\Update\1.3.21.153\GoogleUpdateOnDemand.exe
2013-07-16 07:18:41	D9A08472D8D0218A0AE2C9D9F63EA531	290696	----atw-	C:\Users\Fabiène\AppData\Local\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
2013-07-16 07:18:41	8726802EA4FBFFA3FD54FD2449BF51D4	217992	----atw-	C:\Users\Fabiène\AppData\Local\Google\Update\1.3.21.153\GoogleCrashHandler.exe
2013-07-16 07:18:41	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Users\Fabiène\AppData\Local\Google\Update\1.3.21.153\GoogleUpdate.exe
2013-07-16 07:18:40	A6F8D4FBC12177A75AB4C06D059229B6	784664	----a-w-	C:\Users\Fabiène\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.153\GoogleUpdateSetup.exe
2013-07-12 08:34:43	E3F41B79939E0913449F3B8C86483D82	588296	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\ytgroovlc.exe
2013-07-12 08:34:43	B786DD5822A06F8BDD6A02B0590B96B4	493576	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\SettingsHelper.exe
2013-07-12 08:34:43	5B50C299AB402CAD9F348D8605A17E51	695304	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\PrerequisiteCheck.exe
2013-07-12 08:34:43	313269D551538D2ABDAF86FA35147F96	272392	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\insthpr.exe
2013-07-12 08:34:43	264909F77E7D13F8F731D7446838B6C5	285192	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\ffmpeg.exe
2013-07-12 08:34:41	F2C1FE3DD4E14EC1328B769F7E16ADF1	241160	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\dvsservice.exe
2013-07-12 08:34:41	DA5B402E81974BFC7AB4E0176B0FADF8	1055752	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe
2013-07-12 08:34:41	54C8BD47F68EE42A90B9D89657111F2A	1457152	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\SubscriptionOffer.exe
2013-07-12 08:34:39	FD1BBF12CEE59CD6B5A3E5E37105CD2C	317440	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe
2013-07-12 08:34:39	E878BD0CD5A5A28C5524B0982176DE13	1157144	----a-w-	C:\Program Files (x86)\DVDVideoSoft\unins000.exe
2013-07-12 08:32:52	4CD3EE1DECC298EC17F430AD5DE6D870	25326392	----a-w-	C:\Users\Fabiène\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\933Y9916\FreeYouTubeToMP3Converter.exe
2013-07-12 08:32:21	6466C051022547489D3409205128881B	59784	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdateBroker.exe
2013-07-12 08:32:21	1CA3976D1B1FE826ADF339F90AC25C60	59784	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdateOnDemand.exe
2013-07-12 08:32:20	A6F8D4FBC12177A75AB4C06D059229B6	784664	----a-w-	C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdateSetup.exe
2013-07-12 08:32:15	D9A08472D8D0218A0AE2C9D9F63EA531	290696	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
2013-07-12 08:32:15	8726802EA4FBFFA3FD54FD2449BF51D4	217992	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
2013-07-12 08:32:15	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdate.exe
2013-07-12 08:32:14	A6F8D4FBC12177A75AB4C06D059229B6	784664	----a-w-	C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.153\GoogleUpdateSetup.exe
2013-07-12 08:25:42	013A330F16B1CECBDE5CB6F921689523	2827728	----a-w-	C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe
2013-07-12 08:25:41	013A330F16B1CECBDE5CB6F921689523	2827728	----a-w-	C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe
2013-07-12 08:25:32	B0F6507F8666E89DD9F192313D88EB98	389632	----a-w-	C:\Users\Fabiène\AppData\Roaming\BabSolution\Shared\GUninstaller.exe
2013-07-12 08:25:32	71D490C463014E4FB88B8CBA700B111E	4608	----a-w-	C:\Users\Fabiène\AppData\Roaming\BabSolution\Shared\BabMaint.exe
2013-07-12 08:22:10	A70249E0A3434458821C2BD45A6E6CC5	24116824	----a-w-	C:\Users\Fabiène\Downloads\FreeVideoToMP3Converter.exe
=== C: other files ==
2013-07-16 08:21:27	53ABD100B97778285CA380F1C48FC4CC	37716	----a-w-	C:\Users\Fabiène\Desktop\Desktop.zip
2013-07-12 09:21:43	82F5C942549405F61A8808D0EA0FA9E2	25575	----a-w-	C:\Users\Fabiène\AppData\Local\Temp\_MEI33722\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx
2013-07-12 08:25:35	591A05C4D202D8EB94FD5B60F8E0D34B	390077	----a-w-	C:\Users\Fabiène\AppData\Roaming\BabSolution\CR\Delta.crx

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"
"ISUSPM"="C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"MobileDocuments"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe"
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"Google Update"="C:\Users\FabiŠne\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Browser Infrastructure Helper"="C:\Users\FabiŠne\AppData\Local\Smartbar\Application\SnapDo.exe startup"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"File Sanitizer"="c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe"
"PDFHook"="C:\Program Files (x86)\Nuance\PDF Professional 6\pdfpro6hook.exe"
"PDF6 Registry Controller"="C:\Program Files (x86)\Nuance\PDF Professional 6\RegistryController.exe"
"Nuance PDF Reader-reminder"="C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe -r C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
"NortonOnlineBackup"="C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe"
"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"HPUsageTracking"="C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe C:\Program Files (x86)\HP\HP UT\"
"DATAMNGR"="C:\PROGRA~2\WIF0E7~1\Datamngr\DATAMN~1.EXE"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"QLBController"="C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start"
"Cisco AnyConnect Secure Mobility Agent for Windows"="C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe -minimized"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"ApnUpdater"="C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
"avgnt"="C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe /min"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"HP Connection Manager.exe"=""C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP Connection Manager.exe""

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"
"ISUSPM"="C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"MobileDocuments"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe"
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"Google Update"="C:\Users\FabiŠne\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Browser Infrastructure Helper"="C:\Users\FabiŠne\AppData\Local\Smartbar\Application\SnapDo.exe startup"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe"
"IgfxTray"="C:\windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\windows\system32\hkcmd.exe"
"Persistence"="C:\windows\system32\igfxpers.exe"
"HP Color LaserJet CM1312 MFP Series Fax"="C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe HP Color LaserJet CM1312 MFP Series Fax"
"HPWirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden"
"HPPowerAssistant"="C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Startup Folders ======================

2010-09-06 08:44:56	836	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
2010-11-04 11:16:50	2099	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\windows\tasks\Adobe Flash Player Updater.job --a------ C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [12.06.2013 02:49]
C:\windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01.11.2010 23:01]
C:\windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01.11.2010 23:01]
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1359661392-1277086489-3976402912-1003Core.job --a------ C:\Users\Fabine\AppData\Local\Google\Update\GoogleUpdate.exe []
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1359661392-1277086489-3976402912-1003UA.job --a------ C:\Users\Fabine\AppData\Local\Google\Update\GoogleUpdate.exe []
C:\windows\tasks\HPCeeScheduleForFabiène.job  [Undetermined Task]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eooncjejnppfjjklapaamhcdmjbilmde - C:\Users\FabiŠne\AppData\Roaming\BabSolution\CR\Delta.crx[12.05.2013 12:17]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.avira.com/de/upgrade-avira-free-antivirus?x-a-version=free&x-origin=product&x-product=free_product"
"bProtector Start Page"="hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=1E4E00A0C6000000&affID=121563&tsp=4941"
"Search Page"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate={installDate}"
"Search Bar"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate={installDate}"
"Use Search Asst"="yes"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate={installDate}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate={installDate}"
"SearchAssistant"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate={installDate}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{24B010C2-D81E-4A73-9BD9-E0EBFEA7C75A}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"bProtector Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Use Search Asst"="no"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} Delta Search Url="hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=1E4E00A0C6000000&affID=121563&tsp=4941"
{24B010C2-D81E-4A73-9BD9-E0EBFEA7C75A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADRA_de"

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Adobe Reader 9.lnk - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe 
C:\Users\Public\Desktop\ArcSoft Camera Suite.lnk - C:\Program Files (x86)\Arcsoft\Camera Suite\TMExtreme.exe 
C:\Users\Public\Desktop\Avira Control Center.lnk - C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe 
C:\Users\Public\Desktop\Browserwahl.lnk - C:\Windows\System32\browserchoice.exe /launch
C:\Users\Public\Desktop\Corel Home Office.lnk - C:\Program Files (x86)\Corel\Corel Home Office\CorelLaunchIt.exe 
C:\Users\Public\Desktop\FirstClass.lnk - C:\Program Files (x86)\FirstClass\fcc32.exe 
C:\Users\Public\Desktop\HP Connection Manager.lnk - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP Connection Manager.exe 
C:\Users\Public\Desktop\HP QuickSync.lnk - C:\Program Files (x86)\Hewlett-Packard\HP QuickSync\HPQuickSync.exe 
C:\Users\Public\Desktop\HP Support Assistant.lnk - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe 
C:\Users\Public\Desktop\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe 
C:\Users\Public\Desktop\Microsoft Office - 60 Day Trial.lnk - C:\Program Files (x86)\Microsoft Office Suite Activation Assistant\OAA.exe 
C:\Users\Public\Desktop\Private Tax 2010.lnk - C:\Program Files (x86)\Private Tax 2010\PrivateTax2010NP.exe 
C:\Users\Public\Desktop\Private Tax 2011.lnk - C:\Program Files (x86)\Private Tax 2011\Private Tax 2011.exe 
C:\Users\Public\Desktop\Private Tax 2012.lnk - C:\Program Files (x86)\Private Tax 2012\Private Tax 2012.exe 
C:\Users\Public\Desktop\QuickTime Player.lnk - C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe 
C:\Users\Public\Desktop\Skype.lnk - C:\windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe 
C:\Users\Public\Desktop\WinZip.lnk - C:\Program Files (x86)\WinZip\WINZIP32.EXE 

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Drive.lnk - C:\Program Files (x86)\Google\Drive\googledrivesync.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\Silverlight.Configuration.exe 

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

==== Uninstall List x64 ======================

64 Bit HP CIO Components Installer [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0611B3CC-B5DB-4B93-ACE4-97B8F938E6B7}]
Adobe Flash Player 11 ActiveX [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player ActiveX]
Adobe Reader 9.4.0 - Deutsch [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1031-7B44-A94000000001}]
Apple Application Support [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}]
Apple Mobile Device Support [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2F72F540-1F60-4266-9506-952B21D6640D}]
Apple Software Update [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}]
ArcSoft Camera Suite [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A117C1DE-00F1-4634-A9A9-6E6FC70FBD4B}]
ArcSoft Camera Suite [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ArcSoft Camera Suite]
ArcSoft Webcam Sharing Manager [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{190A7D93-3823-439C-91B9-ADCE3EC2A6A2}]
Ask Toolbar [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}]
Avira Free Antivirus [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Avira AntiVir Desktop]
Avira SearchFree Toolbar plus Web Protection Updater [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}]
Bing Bar [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B4089055-D468-45A4-A6BA-5A138DD715FC}]
Bonjour  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}]
Broadcom 2070 Bluetooth 3.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}]
Broadcom 802.11 Wireless LAN Adapter [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Broadcom 802.11 Wireless LAN Adapter]
BrowserDefender  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}]
BufferChm  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{687FEF8A-8597-40b4-832C-297EA3F35817}]
Cisco AnyConnect Secure Mobility Client  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Cisco AnyConnect Secure Mobility Client]
Cisco AnyConnect Secure Mobility Client [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E69BD802-57A2-428F-9CA6-9C006E5F8DFA}]
Corel Home Office - CS Templates [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1A1E33D2-9824-454A-B8CB-50072118635A}]
Corel Home Office - CT Templates [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{26D19512-874B-4EDA-B7F1-779850B2AD5A}]
Corel Home Office - IPM [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0B2187A6-8ACC-4012-9817-9221211EF407}]
Corel Home Office - JP Templates [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1D11E96F-0405-4B99-8356-5750B1D9FAE9}]
Corel Home Office - KR Templates [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5746E4F9-77C6-47E8-A737-A5975A57B4AA}]
Corel Home Office - Launcher [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E74EA3B1-7192-489D-9A57-0AE918FEC001}]
Corel Home Office - Templates RU [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F45048A1-12C4-4B08-A3EB-32D88033368A}]
Corel Home Office - Templates1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5017D60D-C0A5-4CC8-8D2F-0BDA1ADF39D0}]
Corel Home Office [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\_{36C95AD3-D330-4BAA-884A-9F3EFD15A5EA}]
Corel Home Office [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{36C95AD3-D330-4BAA-884A-9F3EFD15A5EA}]
Corel Home Office [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CCFC5B6F-CF69-45A7-AD62-119B7E65ADE7}]
CustomerResearchQFolder  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}]
Delta Chrome Toolbar [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar]
Delta toolbar   [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\delta]
Device Access Manager for HP ProtectTools [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{55B52830-024A-443E-AF61-61E1E71AFA1B}]
DeviceDiscovery  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{52A69E11-7CEB-4a7d-9607-68BA4F39A89B}]
DeviceManagementQFolder  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AB5D51AE-EBC3-438D-872C-705C7C2084B0}]
Drive Encryption for HP ProtectTools [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{34E6F14D-68F9-486D-87BA-6AA8431F3F44}]
Drive Encryption for HP ProtectTools [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Drive Encryption]
Dropbox  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dropbox]
Energy Star Digital Logo [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}]
Face Recognition for HP ProtectTools [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E793990C-90BE-4B69-AC29-BF5E8FD4ED54}]
File Sanitizer For HP ProtectTools [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}]
FirstClass Client [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6EBED885-73D9-4750-B96E-FD654500E59F}]
Free Audio CD Burner version 1.4.7 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Free Audio CD Burner_is1]
Free Studio version 5.1.5 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Free Studio_is1]
Free YouTube to MP3 Converter version 3.12.7.711 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Free YouTube to MP3 Converter_is1]
Google Drive [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{989FB5FD-9B00-4B32-8663-849CB1370DD1}]
Google Talk Plugin [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6D2A900D-EB39-3386-8D9F-3B8F069C57A5}]
Google Toolbar for Internet Explorer [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}]
Google Toolbar for Internet Explorer [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}]
Google Update Helper [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
Hewlett-Packard ACLM.NET v1.2.1.1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6F340107-F9AA-47C6-B54C-C3A19F11553F}]
HP 3D DriveGuard [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8F258628-2E18-4C2E-8127-EF4EFAF5F75C}]
HP Advisor [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}]
HP Color LaserJet CM1312 MFP Series 5.1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8EEDB90E-6ABC-42bb-AD4C-39DEE05E3EEA}]
HP Connection Manager [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{DE637160-7A1C-4F73-B1AB-4300AE2C2DDE}]
HP Customer Experience Enhancements [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{07FA4960-B038-49EB-891B-9F95930AA544}]
HP Customer Participation Program 10.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HPExtendedCapabilities]
HP Documentation [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{96260076-8327-41C1-8E7F-BF6D45AA735A}]
HP ESU for Microsoft Windows 7 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A6365256-0FBA-4DCD-88CE-D92A4DC9328E}]
HP HotKey Support [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{91265FED-244B-4DAF-A8E5-EA386209169C}]
HP Imaging Device Functions 10.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HP Imaging Device Functions]
HP Power Assistant [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{682FBA83-2CCA-4CFA-A08A-6767DAB2FC9C}]
HP Power Data [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{339F5747-BED1-44AF-8583-8BBA2B342703}]
HP Product Detection [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}]
HP ProtectTools Security Manager [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{75126DE9-C8EC-46B2-949F-EFA770AAFD9B}]
HP ProtectTools Security Manager [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HPProtectTools]
HP QuickLook [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E6BEE2A9-04CF-42FF-B95B-BB70FAD2DC3E}]
HP QuickSync [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9DAED690-F643-410D-9FAD-0AE43FF402D8}]
HP QuickWeb [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7861911B-4270-498A-8F7A-FCF0570F48A8}]
HP QuickWeb [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7861911B-4270-498A-8F7A-FCF0570F48E3}]
HP Setup [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{96AC1B0B-02D1-4FAA-9C1E-C92ECA74921A}]
HP SoftPaq Download Manager [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E1CD7FC4-98F6-4A14-A8C8-A01D6F6F8FC3}]
HP Software Framework [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{483539DB-FA71-4C45-8438-55D3DCFDECC8}]
HP Software Setup [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C689F3AD-85D9-47CA-AC42-29DDC53F428E}]
HP Support Assistant [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}]
HP Webcam Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}]
HP Wireless Assistant [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9EA86AD9-FB32-4B9E-BD56-3068F9B8031F}]
hppCLJCM1312  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{07B85EEC-05BD-4E6A-AAEB-502FB2473DFA}]
hppFaxDrvCM1312  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7985C7FA-B151-4BA7-B19E-1577A7B527F1}]
hppFaxUtilityCM1312  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0626C86E-5A8F-4A6D-8C0A-5FF38BD2DA3A}]
hppFonts  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{995F2783-8311-49BF-833E-DB659774B4F6}]
hppManualsCM1312  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{ED498DD7-FBC1-4C67-8D9B-C9218FBC818D}]
hppQFolderCM1312  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{583EDB12-4CEA-48B5-A7BA-88069DD47BA2}]
hppScanToCM1312  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B59ACF5E-0FF7-44D2-B57D-E516F334AC2E}]
hppSendFaxCM1312  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{484A13AB-A4C1-41FD-87E0-EBE2DA01250E}]
hppusgCM1312  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{325D1D94-4F34-46A7-A489-737C801B931D}]
iCloud  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{704C0303-D20C-45AF-BD2B-556EAF31BE09}]
IDT Audio [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}]
Intel(R) Graphics Media Accelerator Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}]
Intel(R) Management Engine Components [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}]
Intel© Matrix Storage Manager [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}]
iTunes  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7FCDABCC-1A1E-4D61-909D-BA9495172774}]
Java Auto Updater [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10}]
Java(TM) 6 Update 27 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83216027FF}]
jZip  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\jZip]
MarketResearch  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}]
Microsoft .NET Framework 4 Client Profile [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}]
Microsoft .NET Framework 4 Client Profile DEU Language Pack [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0E3DAF3D-FF69-345A-A99E-1FED304CA083}]
Microsoft Choice Guard [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}]
Microsoft Office Professional Plus 2010 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Office14.PROPLUSR]
Microsoft Office Suite Activation Assistant [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}]
Microsoft Project Professional 2010 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Office14.PRJPROR]
Microsoft Silverlight [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}]
Microsoft Sync Framework Runtime Native v1.0 (x86) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}]
Microsoft Sync Framework Services Native v1.0 (x86) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}]
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}]
Microsoft Visual C++ 2005 Redistributable (x64) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{071c9b48-7c32-4621-a0ac-3f809523288f}]
Microsoft Visual C++ 2005 Redistributable (x64) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}]
Microsoft Visual C++ 2005 Redistributable (x64) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}]
Microsoft Visual C++ 2005 Redistributable [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}]
Microsoft Visual C++ 2005 Redistributable [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}]
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}]
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}]
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8220EEFE-38CD-377E-8595-13398D740ACE}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9A25302D-30C0-39D9-BD6F-21E6EC160475}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9BE518E6-ECC6-35A9-88E4-87755C07200F}]
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}]
MSVCRT  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}]
MSXML 4.0 SP2 (KB954430) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}]
MSXML 4.0 SP2 (KB973688) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}]
Norton Online Backup [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}]
Nuance PDF Professional 6 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DFF39912-EE94-46F8-8DBD-216F6D60453D}]
Nuance PDF Reader [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B480904D-F73F-4673-B034-8A5F492C9184}]
PDF Complete Special Edition [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PDF Complete]
Privacy Manager for HP ProtectTools [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{32394B71-1E8E-4233-8958-B84F4CDC8F4D}]
Private Tax 2010 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Private Tax 2010]
Private Tax 2011 1.3 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\4095-7861-2728-4611]
Private Tax 2012 2.4 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\6753-7911-9438-6061]
Qualcomm Gobi 2000 Package for HP [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5A771AE0-513F-4EC5-AB09-A7D3D22A2E20}]
QuickTime  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}]
Realtek Ethernet Controller All-In-One Windows Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}]
Realtek USB 2.0 Card Reader [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{96AE7E41-E34E-47D0-AC07-1091A8127911}]
Roxio Activation Module [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EC877639-07AB-495C-BFD1-D63AF9140810}]
Roxio Creator Audio [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}]
Roxio Creator Business [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{537BF16E-7412-448C-95D8-846E85A1D817}]
Roxio Creator Business v10 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{ED439A64-F018-4DD4-8BA5-328D85AB09AB}]
Roxio Creator Copy [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}]
Roxio Creator Data [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{08E81ABD-79F7-49C2-881F-FD6CB0975693}]
Roxio Creator Tools [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}]
Roxio Express Labeler 3 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}]
Scansoft PDF Professional [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{068724F8-D8BE-4B43-8DDD-B9FE9E49FD76}]
SDK  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}]
Skype Click to Call [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B6CF2967-C81E-40C0-9815-C05774FEF120}]
SkypeT 6.1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}]
Snap.Do  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A2FEAED3-17DB-4D60-867B-8FA5B7105F2C}]
Synaptics Pointing Device Driver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SynTPDeinstKey]
Theft Recovery [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{33C9F24B-1D92-4632-A915-81E3BB1D5D6B}]
Theft Recovery [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{33C9F24B-1D92-4632-A915-81E3BB1D5D6B}]
Tour Your PC [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6725EABF-A984-4D87-8A09-694F8547E5C8}]
TrayApp  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5ACE69F0-A3E8-44eb-88C1-0A841E700180}]
UCINET 6 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BDCB1E95-D35A-4ADC-8FF1-777A066BE92B}]
UCINET 6 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\UCINET 6]
Uninstall 1.0.0.1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Uninstall_is1]
Validity Fingerprint Driver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DD966CEF-5EA9-4BA2-B210-490FEBC27EA7}]
WebReg  [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CCB9B81A-167F-4832-B305-D2A0430840B3}]
Windows 7 Default Setting [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5BF8E079-D6E2-4323-B794-75152371122A}]
Windows jZip Toolbar [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\jZip 102 MediaBar]
Windows Live-Uploadtool [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{205C6BDD-7B73-42DE-8505-9A093F35A238}]
Windows Live Anmelde-Assistent [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{52B97218-98CB-4B8B-9283-D213C85E1AA4}]
Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}]
Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinLiveSuite_Wave3]
WinZip 14.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CD95F661-A5C4-44F5-A6AA-ECDD91C240BC}]

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\FABINE~1\AppData\Local\Temp successfully emptied

==== Deleting Files / Folders ======================

"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\bl"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.dll"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.settings"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\dm"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\bprotector.js"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\00"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\01"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\02"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\03"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\10"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\11"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\12"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\13"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\20"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\21"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\22"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\23"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\bl"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.dll"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.settings"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\dm"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\bprotector.js"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\00"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\01"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\02"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\03"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\10"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\11"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\12"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\13"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\20"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\21"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\22"  not found
"C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\23"  not found
"C:\ProgramData\BrowserDefender"  not found
"C:\ProgramData\BrowserDefender"  not found

==== EOF on 16.07.2013 at 12:16:02.02 ======================

smeenk · 16.07.2013, 11:48

Bitte deaktiviere während des Scans alle Virenscanner, da sie das Ergebnis beeinflussen
Starte Zoek.exe mit einem Doppelklick.
Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und könnte andere Computer beschädigen.

Kopiere den Text der folgenden Box in das Skriptfenster von Zoek:

Code:

ATTFilter

C:\windows\Sysnative\Tasks\BrowserDefendert;f
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run];r
"DATAMNGR"=-;r
"ApnUpdater"=-;r
Snap.Do;a
Delta Chrome Toolbar;a
autoclean;
eooncjejnppfjjklapaamhcdmjbilmde;chr
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar];r64
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\delta];r64
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}];r64
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A2FEAED3-17DB-4D60-867B-8FA5B7105F2C}];r64
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}];r64
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\jZip 102 MediaBar];r64
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r
"Browser Infrastructure Helper"=-;r
{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9};c
C:\Users\Fabiène\AppData\Roaming\BabSolution;fs
C:\windows\Sysnative\Tasks\EPUpdater;f

Nun klicke auf "Run script" und sei geduldig bis das Skript durchläuft.
Wenn das Tool fertig ist wird sich Notepad mit dem Logfile öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:
Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken)

spigi01 · 16.07.2013, 13:30

Während des zweiten zoek.exe Durchgangs hat sich der Compi ausgeschaltet. Und jetzt will er nicht mehr starten.... Bildschirm bleibt schwarz

Habe ihn unter 5 sekundigem Halten des Pwr Switches ausgeschaltet und nach einer längeren Zeit wieder probiert, ohne Erfolg.

Ein CD Laufwerk hat das Teil nicht und ich habe auch kein externes.

Nachdem ich die Stromversorgung und den Akku wegenommen habe und dann nochmals versucht habe zu starten hats dann doch noch geklappt.

log-file kommt

Code:

ATTFilter

Zoek.exe Version 4.0.0.4 Updated 14-July-2013
Tool run by FabiŠne on 16.07.2013 at 12:59:03.73.
Microsoft Windows 7 Professional  6.1.7600  x64
Running in: Normal Mode Internet Access Detected

==== Older Logs ======================

C:\zoek-results16.07.2013-1154.log	8889 bytes
C:\zoek-results16.07.2013-1216.log	53200 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31ad400d-1b06-4e33-a59a-90c2c140cba0} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{31ad400d-1b06-4e33-a59a-90c2c140cba0} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{31ad400d-1b06-4e33-a59a-90c2c140cba0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31ad400d-1b06-4e33-a59a-90c2c140cba0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31ad400d-1b06-4e33-a59a-90c2c140cba0} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BrowserDefendert deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BrowserDefendert deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 
"DATAMNGR"=- 
"ApnUpdater"=- 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"Browser Infrastructure Helper"=- 
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"bProtector Start Page"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"bProtectorDefaultScope"=-

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar] 
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\delta] 
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}] 
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A2FEAED3-17DB-4D60-867B-8FA5B7105F2C}] 
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}] 
[-HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\jZip 102 MediaBar] 

==== Deleting Files \ Folders ======================

"C:\windows\Sysnative\Tasks\BrowserDefendert" not found 
"C:\Users\Fabiène\AppData\Roaming\Zeon" not found 
"C:\Users\Fabiène\AppData\Roaming\hpqLog" not found 
"C:\Users\Fabiène\AppData\Roaming\BabSolution" not found 
"C:\Users\Fabiène\AppData\Roaming\DVDVideoSoftIEHelpers" not found 
"C:\Users\Fabiène\AppData\Roaming\BabSolution" not found 
"C:\Users\Fabiène\AppData\Roaming\Babylon" not found 
"C:\Users\Fabiène\AppData\Roaming\OpenCandy" not found 
"C:\Users\Fabiène\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender" not found 
"C:\Users\Fabiène\AppData\Local\jZip" not found 
"C:\Users\Fabiène\AppData\Local\AskToolbar" not found 
"C:\Users\Fabiène\AppData\Local\Smartbar" not found 
"C:\Users\Fabiène\AppData\LocalLow\AskToolbar" not found 
"C:\Users\Fabiène\AppData\LocalLow\Smartbar" not found 
"C:\Users\Fabiène\Desktop\Search.lnk" not found 
"C:\windows\Sysnative\Tasks\EPUpdater" deleted
"C:\windows\SysNative\Tasks\EPUpdater" deleted
"C:\Program Files (x86)\Ask.com\Updater\Updater.exe" deleted
"C:\Program Files (x86)\Common Files\DVDVideoSoft\TB" deleted
"C:\Program Files (x86)\Common Files\DVDVideoSoft\bin" deleted
"C:\Program Files (x86)\Ask.com" deleted
"C:\windows\SysWow64\searchplugins" deleted
"C:\windows\SysWow64\Extensions" deleted
"C:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}" deleted
"C:\Program Files (x86)\Ask.com\Updater" deleted

==== Registry Search Results for "Snap.Do" ======================


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7B0EE1CE-B2EF-49D6-AF4D-EBF8240EF2C2}]
"URLInfoAbout"="hxxp://snap.do"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7B0EE1CE-B2EF-49D6-AF4D-EBF8240EF2C2}]
"DisplayName"="Snap.Do"

[HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Installer\Products\EC1EE0B7FE2B6D94FAD4BE8F42E02F2C]
"ProductName"="Snap.Do"

[HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Uninstall\{b5cc7599-3fcc-4fa7-80b3-3d80bd1bdc5c}]
"DisplayName"="Snap.Do Engine"

==== Registry Search Results for "Delta Chrome Toolbar" ======================


[HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\BabSolution\Updater\Instances\Delta Chrome Toolbar]

[HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\BabSolution\Updater\Instances\Delta Chrome Toolbar]
"UninstKey"="Delta Chrome Toolbar"

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eooncjejnppfjjklapaamhcdmjbilmde - C:\Users\FabiŠne\AppData\Roaming\BabSolution\CR\Delta.crx[12.05.2013 12:17]

==== Chrome Fix ======================

C:\Users\FabiŠne\AppData\Roaming\BabSolution\CR\Delta.crx deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=hp&installDate=12/07/2013"
"Search Page"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate=12/07/2013"
"Search Bar"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate=12/07/2013"
"Use Search Asst"="yes"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
"Default"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate=12/07/2013"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate=12/07/2013"
"SearchAssistant"="hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=765d8154-d3c8-4711-8722-9adaa57e372b&searchtype=ds&q={searchTerms}&installDate=12/07/2013"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{006ee092-9658-4fd6-bd8e-a21a348e59f5}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="hxxp://www.google.com"
"Use Search Asst"="no"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully

==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Fabiène\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Fabiène\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\FABINE~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 16.07.2013 at 14:34:31.70 ======================

smeenk · 16.07.2013, 13:51

Zitat:

Während des zweiten zoek.exe Durchgangs hat sich der Compi ausgeschaltet. Und jetzt will er nicht mehr starten.... Bildschirm bleibt schwarz

Das muss wohl ein Schreckmoment gewesen sein

Im Log-Datei ist keine Ursache dafür zu sehen, hoffen wir es wiederholt sich nicht mehr.

Bitte deaktiviere während des Scans alle Virenscanner, da sie das Ergebnis beeinflussen
Starte Zoek.exe mit einem Doppelklick.
Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und könnte andere Computer beschädigen.

Kopiere den Text der folgenden Box in das Skriptfenster von Zoek:

Code:

ATTFilter

[-HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Installer\Products\EC1EE0B7FE2B6D94FAD4BE8F42E02F2C];r
[-HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Uninstall\{b5cc7599-3fcc-4fa7-80b3-3d80bd1bdc5c}];r
[-HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\BabSolution];r

Nun klicke auf "Run script" und sei geduldig bis das Skript durchläuft.
Wenn das Tool fertig ist wird sich Notepad mit dem Logfile öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:
Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken)

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

spigi01 · 16.07.2013, 14:01

Meine Tochter hat mir erzählt, dass sie das Problem mit den Starten schon einige male gehabt hat, schon seit sie das Sch...ding gekauft hat....

Also hier das erneute Zoek log-file, das Adwcleaner file kommt nach

Code:

ATTFilter

Zoek.exe Version 4.0.0.4 Updated 14-July-2013
Tool run by FabiŠne on 16.07.2013 at 14:54:48.86.
Microsoft Windows 7 Professional  6.1.7600  x64
Running in: Normal Mode Internet Access Detected

==== Older Logs ======================

C:\zoek-results16.07.2013-1154.log	8889 bytes
C:\zoek-results16.07.2013-1216.log	53200 bytes
C:\zoek-results16.07.2013-1434.log	11366 bytes

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Installer\Products\EC1EE0B7FE2B6D94FAD4BE8F42E02F2C] 
[-HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\Microsoft\Windows\CurrentVersion\Uninstall\{b5cc7599-3fcc-4fa7-80b3-3d80bd1bdc5c}] 
[-HKEY_USERS\S-1-5-21-1359661392-1277086489-3976402912-1003\Software\BabSolution] 

==== EOF on 16.07.2013 at 14:56:26.12 ======================

und hier das Adw file. Adw cleaner hat nur einmal einen neustart verlangt.

Code:

ATTFilter

# AdwCleaner v2.305 - Datei am 16/07/2013 um 15:05:49 erstellt
# Aktualisiert am 11/07/2013 von Xplode
# Betriebssystem : Windows 7 Professional  (64 bits)
# Benutzer : Fabiène - FABIENE-HP
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Fabiène\Desktop\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Ordner Gelöscht : C:\Program Files (x86)\jZip
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jZip
Ordner Gelöscht : C:\Users\Fabiène\AppData\Local\AskToolbar
Ordner Gelöscht : C:\Users\Fabiène\AppData\Local\jZip
Ordner Gelöscht : C:\Users\Fabiène\AppData\Local\Smartbar
Ordner Gelöscht : C:\Users\Fabiène\AppData\LocalLow\AskToolbar
Ordner Gelöscht : C:\Users\Fabiène\AppData\LocalLow\jZip
Ordner Gelöscht : C:\Users\Fabiène\AppData\LocalLow\jziptoolbar
Ordner Gelöscht : C:\Users\Fabiène\AppData\LocalLow\Smartbar
Ordner Gelöscht : C:\Users\Fabiène\AppData\Roaming\BabSolution
Ordner Gelöscht : C:\Users\Fabiène\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Fabiène\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Fabiène\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender
Ordner Gelöscht : C:\Users\Fabiène\AppData\Roaming\OpenCandy

***** [Registrierungsdatenbank] *****

Daten Gelöscht : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\WIF0E7~1\Datamngr\x64\datamngr.dll
Daten Gelöscht : [x64] HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\WIF0E7~1\Datamngr\x64\IEBHO.dll
Schlüssel Gelöscht : HKCU\Software\APN
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\AskToolbar
Schlüssel Gelöscht : HKCU\Software\AskToolbar
Schlüssel Gelöscht : HKCU\Software\DataMngr
Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\jZip
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1E48C56F-08CD-43AA-A6EF-C1EC891551AB}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{41C4AA37-1DDD-4345-B8DC-734E4B38414D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gelöscht : HKCU\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\SmartbarBackup
Schlüssel Gelöscht : HKCU\Software\SmartbarLog
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\5a53da8cb73eb914
Schlüssel Gelöscht : HKLM\Software\APN
Schlüssel Gelöscht : HKLM\Software\AskToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltadskBnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaHlpr
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaHlpr.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.deltaESrvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.BandObjectAttribute
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.BHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.DockingPanel
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBarBandObject
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarDisplayState
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarMenuForm
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\Delta
Schlüssel Gelöscht : HKLM\Software\DeviceVM
Schlüssel Gelöscht : HKLM\Software\jZip
Schlüssel Gelöscht : HKLM\Software\jZipMediabarTb
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\5a53da8cb73eb914
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E48C56F-08CD-43AA-A6EF-C1EC891551AB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3614D305-2DBB-4991-9297-750DD60FFC73}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F994E0D9-8335-48F1-99C2-A712C21F8D5F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\jZip
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]

***** [Internet Browser] *****

-\\ Internet Explorer v9.0.8112.16476

[OK] Die Registrierungsdatenbank ist sauber.

*************************

AdwCleaner[S1].txt - [13287 octets] - [16/07/2013 15:05:49]

########## EOF - C:\AdwCleaner[S1].txt - [13348 octets] ##########

Uebrigens besten Dank, dass du dir an einem so schönen nachmittag die Zeit nimmst

smeenk · 16.07.2013, 14:35

Bemerkst Du Momentan noch einige Probleme?

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

spigi01 · 16.07.2013, 15:30

danke, vorerst mal keine bemerkbaren Probleme mehr.

Die Logs folgen

Mwb

Zitat:

Scan finished: No Maleware found!

smeenk · 16.07.2013, 15:44

Versuchen wir etwas anderes

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

spigi01 · 16.07.2013, 16:43

Security Check Log:

Code:

ATTFilter

  Results of screen317's Security Check version 0.99.69  
 Windows 7  x64 (UAC is enabled)  
 Out of date service pack!! 
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
Avira Desktop   
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 Java(TM) 6 Update 27  
 Java version out of Date! 
 Adobe Reader 9 Adobe Reader out of Date! 
````````Process Check: objlist.exe by Laurent````````  
 Avira Antivir avgnt.exe 
 Avira Antivir avguard.exe 
 Symantec Norton Online Backup NOBuAgent.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

smeenk · 16.07.2013, 17:00

Service Pack eins fuer Windows 7 fehlt: Learn how to install Windows 7 Service Pack 1 (SP1)

spigi01 · 16.07.2013, 17:03

Malewarebytes Log:

Code:

ATTFilter

 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.07.16.05

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Fabiène :: FABIENE-HP [Administrator]

Schutz: Aktiviert

16.07.2013 17:50:00
mbam-log-2013-07-16 (17-50-00).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 218299
Laufzeit: 5 Minute(n), 20 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

TDSSkiller Log:

Code:

ATTFilter

18:04:59.0909 4752  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:05:00.0205 4752  ============================================================
18:05:00.0205 4752  Current date / time: 2013/07/16 18:05:00.0205
18:05:00.0205 4752  SystemInfo:
18:05:00.0205 4752  
18:05:00.0205 4752  OS Version: 6.1.7600 ServicePack: 0.0
18:05:00.0205 4752  Product type: Workstation
18:05:00.0205 4752  ComputerName: FABIENE-HP
18:05:00.0205 4752  UserName: Fabiène
18:05:00.0205 4752  Windows directory: C:\windows
18:05:00.0205 4752  System windows directory: C:\windows
18:05:00.0205 4752  Running under WOW64
18:05:00.0205 4752  Processor architecture: Intel x64
18:05:00.0205 4752  Number of processors: 4
18:05:00.0205 4752  Page size: 0x1000
18:05:00.0205 4752  Boot type: Normal boot
18:05:00.0205 4752  ============================================================
18:05:00.0907 4752  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:05:00.0907 4752  ============================================================
18:05:00.0907 4752  \Device\Harddisk0\DR0:
18:05:00.0907 4752  MBR partitions:
18:05:00.0907 4752  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
18:05:00.0907 4752  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x380EE000
18:05:00.0907 4752  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38184800, BlocksNum 0x1E00000
18:05:00.0907 4752  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x39F84800, BlocksNum 0x3FD800
18:05:00.0907 4752  ============================================================
18:05:00.0939 4752  C: <-> \Device\Harddisk0\DR0\Partition2
18:05:00.0970 4752  F: <-> \Device\Harddisk0\DR0\Partition4
18:05:00.0970 4752  ============================================================
18:05:00.0970 4752  Initialize success
18:05:00.0970 4752  ============================================================
18:06:26.0380 5824  ============================================================
18:06:26.0380 5824  Scan started
18:06:26.0380 5824  Mode: Manual; SigCheck; TDLFS; 
18:06:26.0380 5824  ============================================================
18:06:27.0519 5824  ================ Scan system memory ========================
18:06:27.0519 5824  System memory - ok
18:06:27.0519 5824  ================ Scan services =============================
18:06:27.0706 5824  [ 69AA89A20DEE08BFA650AAB6CE37BD10 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
18:06:27.0878 5824  1394ohci - ok
18:06:27.0924 5824  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer   C:\windows\system32\DRIVERS\Accelerometer.sys
18:06:27.0956 5824  Accelerometer - ok
18:06:28.0034 5824  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
18:06:28.0049 5824  ACDaemon - ok
18:06:28.0096 5824  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\windows\system32\DRIVERS\ACPI.sys
18:06:28.0127 5824  ACPI - ok
18:06:28.0158 5824  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\windows\system32\DRIVERS\acpipmi.sys
18:06:28.0236 5824  AcpiPmi - ok
18:06:28.0299 5824  [ 0EC911D24F14C969E980E92E4371464D ] acsock          C:\windows\system32\DRIVERS\acsock64.sys
18:06:28.0330 5824  acsock - ok
18:06:28.0455 5824  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:06:28.0470 5824  AdobeFlashPlayerUpdateSvc - ok
18:06:28.0533 5824  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\DRIVERS\adp94xx.sys
18:06:28.0580 5824  adp94xx - ok
18:06:28.0626 5824  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\DRIVERS\adpahci.sys
18:06:28.0673 5824  adpahci - ok
18:06:28.0704 5824  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\DRIVERS\adpu320.sys
18:06:28.0736 5824  adpu320 - ok
18:06:28.0782 5824  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
18:06:28.0938 5824  AeLookupSvc - ok
18:06:29.0016 5824  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
18:06:29.0079 5824  AESTFilters - ok
18:06:29.0126 5824  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\windows\system32\drivers\afd.sys
18:06:29.0235 5824  AFD - ok
18:06:29.0297 5824  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\DRIVERS\agp440.sys
18:06:29.0328 5824  agp440 - ok
18:06:29.0375 5824  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
18:06:29.0453 5824  ALG - ok
18:06:29.0484 5824  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
18:06:29.0516 5824  aliide - ok
18:06:29.0562 5824  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
18:06:29.0578 5824  amdide - ok
18:06:29.0656 5824  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\DRIVERS\amdk8.sys
18:06:29.0703 5824  AmdK8 - ok
18:06:29.0703 5824  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\DRIVERS\amdppm.sys
18:06:29.0796 5824  AmdPPM - ok
18:06:29.0828 5824  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\windows\system32\drivers\amdsata.sys
18:06:29.0859 5824  amdsata - ok
18:06:29.0874 5824  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\DRIVERS\amdsbs.sys
18:06:29.0906 5824  amdsbs - ok
18:06:29.0921 5824  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\windows\system32\drivers\amdxata.sys
18:06:29.0937 5824  amdxata - ok
18:06:30.0030 5824  [ FE9932692FC61C2203EC9884D414F700 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
18:06:30.0046 5824  AntiVirSchedulerService - ok
18:06:30.0077 5824  [ B1F8B58F27971B7E316DD316687886EC ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
18:06:30.0077 5824  AntiVirService - ok
18:06:30.0124 5824  [ 53DDEA96AA407C3E2BCEF68A44E31A59 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
18:06:30.0171 5824  AntiVirWebService - ok
18:06:30.0202 5824  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\windows\system32\drivers\appid.sys
18:06:30.0296 5824  AppID - ok
18:06:30.0311 5824  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
18:06:30.0374 5824  AppIDSvc - ok
18:06:30.0389 5824  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\windows\System32\appinfo.dll
18:06:30.0452 5824  Appinfo - ok
18:06:30.0530 5824  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:06:30.0545 5824  Apple Mobile Device - ok
18:06:30.0592 5824  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\windows\System32\appmgmts.dll
18:06:30.0639 5824  AppMgmt - ok
18:06:30.0686 5824  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\DRIVERS\arc.sys
18:06:30.0717 5824  arc - ok
18:06:30.0732 5824  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\DRIVERS\arcsas.sys
18:06:30.0748 5824  arcsas - ok
18:06:30.0779 5824  [ CE2168C926927BA926301BAF172BC693 ] ARCVCAM         C:\windows\system32\DRIVERS\ArcSoftVCapture.sys
18:06:30.0795 5824  ARCVCAM - ok
18:06:30.0826 5824  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
18:06:30.0888 5824  AsyncMac - ok
18:06:30.0920 5824  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
18:06:30.0951 5824  atapi - ok
18:06:30.0998 5824  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
18:06:31.0107 5824  AudioEndpointBuilder - ok
18:06:31.0138 5824  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\windows\System32\Audiosrv.dll
18:06:31.0169 5824  AudioSrv - ok
18:06:31.0216 5824  [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt        C:\windows\system32\DRIVERS\avgntflt.sys
18:06:31.0247 5824  avgntflt - ok
18:06:31.0294 5824  [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb          C:\windows\system32\DRIVERS\avipbb.sys
18:06:31.0310 5824  avipbb - ok
18:06:31.0341 5824  [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr          C:\windows\system32\DRIVERS\avkmgr.sys
18:06:31.0372 5824  avkmgr - ok
18:06:31.0403 5824  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\windows\System32\AxInstSV.dll
18:06:31.0497 5824  AxInstSV - ok
18:06:31.0528 5824  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\DRIVERS\bxvbda.sys
18:06:31.0606 5824  b06bdrv - ok
18:06:31.0637 5824  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
18:06:31.0684 5824  b57nd60a - ok
18:06:31.0793 5824  [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
18:06:31.0824 5824  BBSvc - ok
18:06:31.0856 5824  [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
18:06:31.0871 5824  BBUpdate - ok
18:06:32.0012 5824  [ 6C95DD14CFD30B0617B91DC6A0B1A1FB ] BCM43XX         C:\windows\system32\DRIVERS\bcmwl664.sys
18:06:32.0152 5824  BCM43XX - ok
18:06:32.0199 5824  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
18:06:32.0261 5824  BDESVC - ok
18:06:32.0277 5824  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
18:06:32.0355 5824  Beep - ok
18:06:32.0386 5824  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\windows\System32\bfe.dll
18:06:32.0448 5824  BFE - ok
18:06:32.0480 5824  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\windows\System32\qmgr.dll
18:06:32.0620 5824  BITS - ok
18:06:32.0636 5824  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
18:06:32.0651 5824  blbdrive - ok
18:06:32.0698 5824  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:06:32.0729 5824  Bonjour Service - ok
18:06:32.0807 5824  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
18:06:32.0901 5824  bowser - ok
18:06:32.0916 5824  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\DRIVERS\BrFiltLo.sys
18:06:32.0963 5824  BrFiltLo - ok
18:06:32.0979 5824  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\DRIVERS\BrFiltUp.sys
18:06:33.0026 5824  BrFiltUp - ok
18:06:33.0041 5824  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\windows\System32\browser.dll
18:06:33.0135 5824  Browser - ok
18:06:33.0166 5824  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
18:06:33.0228 5824  Brserid - ok
18:06:33.0244 5824  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
18:06:33.0275 5824  BrSerWdm - ok
18:06:33.0306 5824  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
18:06:33.0338 5824  BrUsbMdm - ok
18:06:33.0353 5824  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
18:06:33.0400 5824  BrUsbSer - ok
18:06:33.0447 5824  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys
18:06:33.0509 5824  BthEnum - ok
18:06:33.0540 5824  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\DRIVERS\bthmodem.sys
18:06:33.0572 5824  BTHMODEM - ok
18:06:33.0618 5824  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys
18:06:33.0650 5824  BthPan - ok
18:06:33.0681 5824  [ E10D1912634974EA273A1588C75CCB76 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys
18:06:33.0743 5824  BTHPORT - ok
18:06:33.0774 5824  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
18:06:33.0837 5824  bthserv - ok
18:06:33.0852 5824  [ 19B784B6ECBB3ADBB2242700FEE90BEC ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys
18:06:33.0884 5824  BTHUSB - ok
18:06:33.0915 5824  [ 380B798D30C56EDE4AF58619D0E86CCB ] btwampfl        C:\windows\system32\drivers\btwampfl.sys
18:06:33.0930 5824  btwampfl - ok
18:06:33.0962 5824  [ BA5622F5544C6C445DFF1A05ACC8B19D ] btwaudio        C:\windows\system32\drivers\btwaudio.sys
18:06:33.0977 5824  btwaudio - ok
18:06:33.0993 5824  [ A11905D0F4BD34771F195217B6AA5AE0 ] btwavdt         C:\windows\system32\DRIVERS\btwavdt.sys
18:06:34.0024 5824  btwavdt - ok
18:06:34.0086 5824  [ 9F2A0A0A4E4F2607485F4DC6386A465E ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
18:06:34.0133 5824  btwdins - ok
18:06:34.0149 5824  [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap        C:\windows\system32\DRIVERS\btwl2cap.sys
18:06:34.0164 5824  btwl2cap - ok
18:06:34.0180 5824  [ BD776F32D64EC615BE4563DC2747224E ] btwrchid        C:\windows\system32\DRIVERS\btwrchid.sys
18:06:34.0196 5824  btwrchid - ok
18:06:34.0211 5824  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
18:06:34.0320 5824  cdfs - ok
18:06:34.0352 5824  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
18:06:34.0383 5824  cdrom - ok
18:06:34.0414 5824  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\windows\System32\certprop.dll
18:06:34.0508 5824  CertPropSvc - ok
18:06:34.0523 5824  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\DRIVERS\circlass.sys
18:06:34.0554 5824  circlass - ok
18:06:34.0570 5824  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
18:06:34.0601 5824  CLFS - ok
18:06:34.0664 5824  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:06:34.0679 5824  clr_optimization_v2.0.50727_32 - ok
18:06:34.0710 5824  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:06:34.0726 5824  clr_optimization_v2.0.50727_64 - ok
18:06:34.0773 5824  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:06:34.0788 5824  clr_optimization_v4.0.30319_32 - ok
18:06:34.0820 5824  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:06:34.0835 5824  clr_optimization_v4.0.30319_64 - ok
18:06:34.0866 5824  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
18:06:34.0898 5824  CmBatt - ok
18:06:34.0929 5824  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
18:06:34.0960 5824  cmdide - ok
18:06:34.0991 5824  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\windows\system32\Drivers\cng.sys
18:06:35.0038 5824  CNG - ok
18:06:35.0054 5824  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\DRIVERS\compbatt.sys
18:06:35.0069 5824  Compbatt - ok
18:06:35.0085 5824  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
18:06:35.0100 5824  CompositeBus - ok
18:06:35.0116 5824  COMSysApp - ok
18:06:35.0116 5824  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\DRIVERS\crcdisk.sys
18:06:35.0132 5824  crcdisk - ok
18:06:35.0163 5824  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\windows\system32\cryptsvc.dll
18:06:35.0225 5824  CryptSvc - ok
18:06:35.0256 5824  [ 4A6173C2279B498CD8F57CAE504564CB ] CSC             C:\windows\system32\drivers\csc.sys
18:06:35.0319 5824  CSC - ok
18:06:35.0334 5824  [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService      C:\windows\System32\cscsvc.dll
18:06:35.0412 5824  CscService - ok
18:06:35.0444 5824  [ A8BA4DA23AC20BDA23CA15234D42A3FA ] DAMDrv          C:\windows\system32\DRIVERS\DAMDrv64.sys
18:06:35.0459 5824  DAMDrv - ok
18:06:35.0490 5824  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\windows\system32\rpcss.dll
18:06:35.0584 5824  DcomLaunch - ok
18:06:35.0631 5824  [ E6E9610D76418357A7EC725989687CB4 ] DEBridge        c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
18:06:35.0678 5824  DEBridge ( UnsignedFile.Multi.Generic ) - warning
18:06:35.0678 5824  DEBridge - detected UnsignedFile.Multi.Generic (1)
18:06:35.0709 5824  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
18:06:35.0771 5824  defragsvc - ok
18:06:35.0787 5824  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
18:06:35.0849 5824  DfsC - ok
18:06:35.0880 5824  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\windows\system32\dhcpcore.dll
18:06:35.0990 5824  Dhcp - ok
18:06:36.0005 5824  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
18:06:36.0052 5824  discache - ok
18:06:36.0083 5824  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\DRIVERS\disk.sys
18:06:36.0099 5824  Disk - ok
18:06:36.0130 5824  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\windows\System32\dnsrslvr.dll
18:06:36.0161 5824  Dnscache - ok
18:06:36.0177 5824  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\windows\System32\dot3svc.dll
18:06:36.0255 5824  dot3svc - ok
18:06:36.0302 5824  [ E0E65ED0985A28FB18128D6099E985C4 ] DpHost          C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
18:06:36.0333 5824  DpHost - ok
18:06:36.0333 5824  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\windows\system32\dps.dll
18:06:36.0380 5824  DPS - ok
18:06:36.0395 5824  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
18:06:36.0426 5824  drmkaud - ok
18:06:36.0458 5824  [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
18:06:36.0520 5824  DXGKrnl - ok
18:06:36.0536 5824  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
18:06:36.0598 5824  EapHost - ok
18:06:36.0676 5824  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\DRIVERS\evbda.sys
18:06:36.0816 5824  ebdrv - ok
18:06:36.0832 5824  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\windows\System32\lsass.exe
18:06:36.0894 5824  EFS - ok
18:06:36.0957 5824  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\windows\ehome\ehRecvr.exe
18:06:37.0035 5824  ehRecvr - ok
18:06:37.0050 5824  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
18:06:37.0097 5824  ehSched - ok
18:06:37.0128 5824  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\DRIVERS\elxstor.sys
18:06:37.0175 5824  elxstor - ok
18:06:37.0206 5824  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\DRIVERS\errdev.sys
18:06:37.0222 5824  ErrDev - ok
18:06:37.0269 5824  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
18:06:37.0347 5824  EventSystem - ok
18:06:37.0378 5824  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
18:06:37.0425 5824  exfat - ok
18:06:37.0440 5824  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
18:06:37.0487 5824  fastfat - ok
18:06:37.0518 5824  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\windows\system32\fxssvc.exe
18:06:37.0612 5824  Fax - ok
18:06:37.0628 5824  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\DRIVERS\fdc.sys
18:06:37.0659 5824  fdc - ok
18:06:37.0674 5824  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
18:06:37.0737 5824  fdPHost - ok
18:06:37.0752 5824  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
18:06:37.0815 5824  FDResPub - ok
18:06:37.0815 5824  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
18:06:37.0846 5824  FileInfo - ok
18:06:37.0846 5824  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
18:06:37.0908 5824  Filetrace - ok
18:06:37.0986 5824  [ CC690D9D09F889EB97CD9C1DD051C9BC ] FLCDLOCK        c:\Windows\SysWOW64\flcdlock.exe
18:06:38.0002 5824  FLCDLOCK - ok
18:06:38.0018 5824  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\DRIVERS\flpydisk.sys
18:06:38.0049 5824  flpydisk - ok
18:06:38.0064 5824  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
18:06:38.0096 5824  FltMgr - ok
18:06:38.0142 5824  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\windows\system32\FntCache.dll
18:06:38.0252 5824  FontCache - ok
18:06:38.0330 5824  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:06:38.0361 5824  FontCache3.0.0.0 - ok
18:06:38.0376 5824  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
18:06:38.0392 5824  FsDepends - ok
18:06:38.0454 5824  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
18:06:38.0470 5824  Fs_Rec - ok
18:06:38.0517 5824  [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
18:06:38.0564 5824  fvevol - ok
18:06:38.0595 5824  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\DRIVERS\gagp30kx.sys
18:06:38.0610 5824  gagp30kx - ok
18:06:38.0657 5824  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
18:06:38.0673 5824  GEARAspiWDM - ok
18:06:38.0735 5824  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\windows\System32\gpsvc.dll
18:06:38.0813 5824  gpsvc - ok
18:06:38.0860 5824  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:06:38.0876 5824  gupdate - ok
18:06:38.0907 5824  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:06:38.0922 5824  gupdatem - ok
18:06:38.0954 5824  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:06:38.0969 5824  gusvc - ok
18:06:38.0985 5824  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
18:06:39.0047 5824  hcw85cir - ok
18:06:39.0063 5824  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
18:06:39.0125 5824  HdAudAddService - ok
18:06:39.0141 5824  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
18:06:39.0188 5824  HDAudBus - ok
18:06:39.0219 5824  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\windows\system32\DRIVERS\HECIx64.sys
18:06:39.0234 5824  HECIx64 - ok
18:06:39.0250 5824  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\DRIVERS\HidBatt.sys
18:06:39.0281 5824  HidBatt - ok
18:06:39.0312 5824  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\DRIVERS\hidbth.sys
18:06:39.0328 5824  HidBth - ok
18:06:39.0344 5824  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\DRIVERS\hidir.sys
18:06:39.0359 5824  HidIr - ok
18:06:39.0375 5824  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\system32\hidserv.dll
18:06:39.0422 5824  hidserv - ok
18:06:39.0453 5824  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
18:06:39.0515 5824  HidUsb - ok
18:06:39.0562 5824  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\windows\system32\kmsvc.dll
18:06:39.0640 5824  hkmsvc - ok
18:06:39.0656 5824  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\windows\system32\ListSvc.dll
18:06:39.0687 5824  HomeGroupListener - ok
18:06:39.0718 5824  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\windows\system32\provsvc.dll
18:06:39.0749 5824  HomeGroupProvider - ok
18:06:39.0812 5824  [ 44AD1D87919994161131D5FB16C5B551 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
18:06:39.0843 5824  HP Power Assistant Service - ok
18:06:39.0905 5824  [ 657E81DF0625198C97F91C09AE9611FC ] HP ProtectTools Service C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
18:06:39.0921 5824  HP ProtectTools Service ( UnsignedFile.Multi.Generic ) - warning
18:06:39.0921 5824  HP ProtectTools Service - detected UnsignedFile.Multi.Generic (1)
18:06:39.0999 5824  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
18:06:39.0999 5824  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning
18:06:39.0999 5824  HP Support Assistant Service - detected UnsignedFile.Multi.Generic (1)
18:06:40.0061 5824  [ C930128C8F8FF03D8F8C42B570920D56 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
18:06:40.0077 5824  HP Wireless Assistant Service - ok
18:06:40.0139 5824  [ 94C74D758E0F7B1D962DA452B4D28C91 ] HPDayStarterService c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
18:06:40.0155 5824  HPDayStarterService ( UnsignedFile.Multi.Generic ) - warning
18:06:40.0155 5824  HPDayStarterService - detected UnsignedFile.Multi.Generic (1)
18:06:40.0202 5824  [ B7382BEC806B7B00FC84B3E2061FF48E ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:06:40.0233 5824  HPDrvMntSvc.exe - ok
18:06:40.0248 5824  [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt        C:\windows\system32\DRIVERS\hpdskflt.sys
18:06:40.0264 5824  hpdskflt - ok
18:06:40.0295 5824  [ 5AFB3F9B74553BD933555E1C800D2CE1 ] HpFkCryptService c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
18:06:40.0326 5824  HpFkCryptService - ok
18:06:40.0358 5824  [ E123B122D5217F724B1D2641010C9D3C ] HPFSService     C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
18:06:40.0373 5824  HPFSService ( UnsignedFile.Multi.Generic ) - warning
18:06:40.0373 5824  HPFSService - detected UnsignedFile.Multi.Generic (1)
18:06:40.0451 5824  [ 7D10E0F2F603A3CE65F0B9750F7ABDB2 ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
18:06:40.0529 5824  hpHotkeyMonitor - ok
18:06:40.0623 5824  [ F50F7984FDD151EDD8A70A8DBD9E2A44 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
18:06:40.0638 5824  hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
18:06:40.0638 5824  hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
18:06:40.0654 5824  [ DF446BA625CC441617843E87798CE048 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
18:06:40.0670 5824  hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
18:06:40.0670 5824  hpqddsvc - detected UnsignedFile.Multi.Generic (1)
18:06:40.0685 5824  [ B98EE5D4535A685634B90F7E04DE0DF7 ] HpqKbFiltr      C:\windows\system32\DRIVERS\HpqKbFiltr.sys
18:06:40.0716 5824  HpqKbFiltr - ok
18:06:40.0779 5824  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
18:06:40.0841 5824  hpqwmiex - ok
18:06:40.0872 5824  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\windows\system32\DRIVERS\HpSAMD.sys
18:06:40.0888 5824  HpSAMD - ok
18:06:40.0935 5824  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv           C:\windows\system32\Hpservice.exe
18:06:40.0935 5824  hpsrv - ok
18:06:40.0982 5824  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\windows\system32\drivers\HTTP.sys
18:06:41.0106 5824  HTTP - ok
18:06:41.0106 5824  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
18:06:41.0122 5824  hwpolicy - ok
18:06:41.0153 5824  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
18:06:41.0169 5824  i8042prt - ok
18:06:41.0231 5824  [ 593EF9F904C8497F6D794DC6FCC59DCA ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
18:06:41.0262 5824  IAANTMON - ok
18:06:41.0278 5824  [ C50107C730C9A955F6FD7376733F2D68 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
18:06:41.0294 5824  iaStor - ok
18:06:41.0325 5824  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
18:06:41.0372 5824  iaStorV - ok
18:06:41.0403 5824  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:06:41.0465 5824  idsvc - ok
18:06:41.0668 5824  [ 2A22AB054F4630D2EF4BAB2853F6D5F6 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
18:06:42.0011 5824  igfx - ok
18:06:42.0058 5824  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\DRIVERS\iirsp.sys
18:06:42.0074 5824  iirsp - ok
18:06:42.0105 5824  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\windows\System32\ikeext.dll
18:06:42.0183 5824  IKEEXT - ok
18:06:42.0214 5824  [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd           C:\windows\system32\DRIVERS\Impcd.sys
18:06:42.0261 5824  Impcd - ok
18:06:42.0292 5824  [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
18:06:42.0323 5824  IntcDAud - ok
18:06:42.0339 5824  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
18:06:42.0370 5824  intelide - ok
18:06:42.0401 5824  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
18:06:42.0417 5824  intelppm - ok
18:06:42.0432 5824  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
18:06:42.0495 5824  IPBusEnum - ok
18:06:42.0526 5824  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
18:06:42.0573 5824  IpFilterDriver - ok
18:06:42.0604 5824  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
18:06:42.0666 5824  iphlpsvc - ok
18:06:42.0682 5824  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\windows\system32\DRIVERS\IPMIDrv.sys
18:06:42.0713 5824  IPMIDRV - ok
18:06:42.0729 5824  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
18:06:42.0776 5824  IPNAT - ok
18:06:42.0838 5824  [ 2872B90D57C8310194A78A9787406467 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
18:06:42.0885 5824  iPod Service - ok
18:06:42.0916 5824  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
18:06:42.0932 5824  IRENUM - ok
18:06:42.0947 5824  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\DRIVERS\isapnp.sys
18:06:42.0963 5824  isapnp - ok
18:06:42.0978 5824  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\windows\system32\DRIVERS\msiscsi.sys
18:06:43.0010 5824  iScsiPrt - ok
18:06:43.0025 5824  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
18:06:43.0041 5824  kbdclass - ok
18:06:43.0056 5824  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
18:06:43.0088 5824  kbdhid - ok
18:06:43.0103 5824  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\windows\system32\lsass.exe
18:06:43.0119 5824  KeyIso - ok
18:06:43.0150 5824  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
18:06:43.0166 5824  KSecDD - ok
18:06:43.0181 5824  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
18:06:43.0197 5824  KSecPkg - ok
18:06:43.0228 5824  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
18:06:43.0275 5824  ksthunk - ok
18:06:43.0306 5824  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
18:06:43.0368 5824  KtmRm - ok
18:06:43.0400 5824  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\windows\system32\srvsvc.dll
18:06:43.0462 5824  LanmanServer - ok
18:06:43.0493 5824  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
18:06:43.0540 5824  LanmanWorkstation - ok
18:06:43.0571 5824  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
18:06:43.0649 5824  lltdio - ok
18:06:43.0680 5824  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
18:06:43.0743 5824  lltdsvc - ok
18:06:43.0758 5824  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
18:06:43.0805 5824  lmhosts - ok
18:06:43.0852 5824  [ 271F79326CD571BD271D45C47148ED78 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:06:43.0883 5824  LMS - ok
18:06:43.0914 5824  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\DRIVERS\lsi_fc.sys
18:06:43.0930 5824  LSI_FC - ok
18:06:43.0946 5824  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\DRIVERS\lsi_sas.sys
18:06:43.0961 5824  LSI_SAS - ok
18:06:43.0977 5824  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\DRIVERS\lsi_sas2.sys
18:06:43.0992 5824  LSI_SAS2 - ok
18:06:44.0024 5824  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\DRIVERS\lsi_scsi.sys
18:06:44.0039 5824  LSI_SCSI - ok
18:06:44.0070 5824  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
18:06:44.0117 5824  luafv - ok
18:06:44.0148 5824  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\windows\system32\drivers\mbam.sys
18:06:44.0164 5824  MBAMProtector - ok
18:06:44.0226 5824  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:06:44.0242 5824  MBAMScheduler - ok
18:06:44.0273 5824  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:06:44.0304 5824  MBAMService - ok
18:06:44.0304 5824  mbamswissarmy - ok
18:06:44.0336 5824  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
18:06:44.0367 5824  Mcx2Svc - ok
18:06:44.0382 5824  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\DRIVERS\megasas.sys
18:06:44.0398 5824  megasas - ok
18:06:44.0414 5824  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\DRIVERS\MegaSR.sys
18:06:44.0429 5824  MegaSR - ok
18:06:44.0476 5824  Microsoft SharePoint Workspace Audit Service - ok
18:06:44.0507 5824  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
18:06:44.0554 5824  MMCSS - ok
18:06:44.0585 5824  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
18:06:44.0632 5824  Modem - ok
18:06:44.0663 5824  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
18:06:44.0694 5824  monitor - ok
18:06:44.0710 5824  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
18:06:44.0726 5824  mouclass - ok
18:06:44.0741 5824  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
18:06:44.0788 5824  mouhid - ok
18:06:44.0804 5824  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
18:06:44.0819 5824  mountmgr - ok
18:06:44.0850 5824  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\windows\system32\DRIVERS\mpio.sys
18:06:44.0866 5824  mpio - ok
18:06:44.0882 5824  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
18:06:44.0928 5824  mpsdrv - ok
18:06:44.0944 5824  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\windows\system32\mpssvc.dll
18:06:45.0022 5824  MpsSvc - ok
18:06:45.0038 5824  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
18:06:45.0069 5824  MRxDAV - ok
18:06:45.0084 5824  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
18:06:45.0147 5824  mrxsmb - ok
18:06:45.0178 5824  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
18:06:45.0225 5824  mrxsmb10 - ok
18:06:45.0240 5824  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
18:06:45.0272 5824  mrxsmb20 - ok
18:06:45.0287 5824  [ 2BA4FF3D5EB68587DD662A896F649C7D ] msahci          C:\windows\system32\drivers\msahci.sys
18:06:45.0318 5824  msahci - ok
18:06:45.0334 5824  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\windows\system32\DRIVERS\msdsm.sys
18:06:45.0350 5824  msdsm - ok
18:06:45.0365 5824  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
18:06:45.0396 5824  MSDTC - ok
18:06:45.0428 5824  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
18:06:45.0474 5824  Msfs - ok
18:06:45.0506 5824  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
18:06:45.0552 5824  mshidkmdf - ok
18:06:45.0568 5824  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\DRIVERS\msisadrv.sys
18:06:45.0584 5824  msisadrv - ok
18:06:45.0599 5824  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
18:06:45.0662 5824  MSiSCSI - ok
18:06:45.0662 5824  msiserver - ok
18:06:45.0693 5824  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
18:06:45.0740 5824  MSKSSRV - ok
18:06:45.0755 5824  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
18:06:45.0786 5824  MSPCLOCK - ok
18:06:45.0802 5824  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
18:06:45.0864 5824  MSPQM - ok
18:06:45.0880 5824  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
18:06:45.0896 5824  MsRPC - ok
18:06:45.0911 5824  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
18:06:45.0927 5824  mssmbios - ok
18:06:45.0942 5824  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
18:06:45.0989 5824  MSTEE - ok
18:06:46.0005 5824  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\DRIVERS\MTConfig.sys
18:06:46.0036 5824  MTConfig - ok
18:06:46.0036 5824  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
18:06:46.0052 5824  Mup - ok
18:06:46.0083 5824  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\windows\system32\qagentRT.dll
18:06:46.0145 5824  napagent - ok
18:06:46.0176 5824  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
18:06:46.0208 5824  NativeWifiP - ok
18:06:46.0239 5824  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\windows\system32\drivers\ndis.sys
18:06:46.0301 5824  NDIS - ok
18:06:46.0317 5824  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
18:06:46.0364 5824  NdisCap - ok
18:06:46.0379 5824  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
18:06:46.0426 5824  NdisTapi - ok
18:06:46.0426 5824  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
18:06:46.0488 5824  Ndisuio - ok
18:06:46.0504 5824  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
18:06:46.0551 5824  NdisWan - ok
18:06:46.0551 5824  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
18:06:46.0613 5824  NDProxy - ok
18:06:46.0644 5824  [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
18:06:46.0676 5824  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:06:46.0676 5824  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:06:46.0707 5824  [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl         C:\windows\system32\DRIVERS\netaapl64.sys
18:06:46.0738 5824  Netaapl - ok
18:06:46.0769 5824  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
18:06:46.0816 5824  NetBIOS - ok
18:06:46.0832 5824  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
18:06:46.0894 5824  NetBT - ok
18:06:46.0910 5824  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\windows\system32\lsass.exe
18:06:46.0925 5824  Netlogon - ok
18:06:46.0956 5824  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
18:06:47.0019 5824  Netman - ok
18:06:47.0050 5824  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
18:06:47.0112 5824  netprofm - ok
18:06:47.0128 5824  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:06:47.0144 5824  NetTcpPortSharing - ok
18:06:47.0175 5824  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\DRIVERS\nfrd960.sys
18:06:47.0190 5824  nfrd960 - ok
18:06:47.0206 5824  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\windows\System32\nlasvc.dll
18:06:47.0253 5824  NlaSvc - ok
18:06:47.0284 5824  NOBU - ok
18:06:47.0315 5824  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
18:06:47.0378 5824  Npfs - ok
18:06:47.0409 5824  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
18:06:47.0456 5824  nsi - ok
18:06:47.0487 5824  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
18:06:47.0565 5824  nsiproxy - ok
18:06:47.0612 5824  [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
18:06:47.0752 5824  Ntfs - ok
18:06:47.0768 5824  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
18:06:47.0814 5824  Null - ok
18:06:47.0830 5824  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\windows\system32\drivers\nvraid.sys
18:06:47.0846 5824  nvraid - ok
18:06:47.0877 5824  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\windows\system32\drivers\nvstor.sys
18:06:47.0892 5824  nvstor - ok
18:06:47.0924 5824  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\DRIVERS\nv_agp.sys
18:06:47.0939 5824  nv_agp - ok
18:06:47.0955 5824  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
18:06:48.0002 5824  ohci1394 - ok
18:06:48.0080 5824  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:06:48.0095 5824  ose - ok
18:06:48.0267 5824  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:06:48.0438 5824  osppsvc - ok
18:06:48.0470 5824  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
18:06:48.0532 5824  p2pimsvc - ok
18:06:48.0548 5824  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
18:06:48.0594 5824  p2psvc - ok
18:06:48.0626 5824  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\DRIVERS\parport.sys
18:06:48.0641 5824  Parport - ok
18:06:48.0672 5824  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\windows\system32\drivers\partmgr.sys
18:06:48.0688 5824  partmgr - ok
18:06:48.0719 5824  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
18:06:48.0766 5824  PcaSvc - ok
18:06:48.0813 5824  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\windows\system32\DRIVERS\pci.sys
18:06:48.0844 5824  pci - ok
18:06:48.0875 5824  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\drivers\pciide.sys
18:06:48.0891 5824  pciide - ok
18:06:48.0922 5824  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\DRIVERS\pcmcia.sys
18:06:48.0938 5824  pcmcia - ok
18:06:48.0953 5824  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
18:06:48.0969 5824  pcw - ok
18:06:48.0984 5824  pdfcDispatcher - ok
18:06:49.0031 5824  [ D7B078B2447DE0295D42845619A99DF0 ] PDFProFiltSrv   C:\Program Files (x86)\Nuance\PDF Professional 6\PDFProFiltSrv.exe
18:06:49.0047 5824  PDFProFiltSrv - ok
18:06:49.0109 5824  [ BAF3216DDAA12E66EBBB31760E02BC14 ] PdiService      C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
18:06:49.0125 5824  PdiService - ok
18:06:49.0140 5824  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
18:06:49.0218 5824  PEAUTH - ok
18:06:49.0265 5824  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\windows\system32\peerdistsvc.dll
18:06:49.0390 5824  PeerDistSvc - ok
18:06:49.0468 5824  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
18:06:49.0499 5824  PerfHost - ok
18:06:49.0546 5824  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\windows\system32\pla.dll
18:06:49.0686 5824  pla - ok
18:06:49.0718 5824  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
18:06:49.0780 5824  PlugPlay - ok
18:06:49.0827 5824  [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
18:06:49.0842 5824  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:06:49.0842 5824  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:06:49.0858 5824  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
18:06:49.0889 5824  PNRPAutoReg - ok
18:06:49.0905 5824  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
18:06:49.0936 5824  PNRPsvc - ok
18:06:49.0952 5824  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
18:06:50.0030 5824  PolicyAgent - ok
18:06:50.0061 5824  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
18:06:50.0123 5824  Power - ok
18:06:50.0154 5824  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
18:06:50.0217 5824  PptpMiniport - ok
18:06:50.0232 5824  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\DRIVERS\processr.sys
18:06:50.0279 5824  Processor - ok
18:06:50.0295 5824  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\windows\system32\profsvc.dll
18:06:50.0342 5824  ProfSvc - ok
18:06:50.0357 5824  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\windows\system32\lsass.exe
18:06:50.0373 5824  ProtectedStorage - ok
18:06:50.0388 5824  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
18:06:50.0435 5824  Psched - ok
18:06:50.0466 5824  [ A6A7AD767BF5141665F5C675F671B3E1 ] PSI_SVC_2       c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
18:06:50.0482 5824  PSI_SVC_2 - ok
18:06:50.0498 5824  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\windows\system32\Drivers\PxHlpa64.sys
18:06:50.0529 5824  PxHlpa64 - ok
18:06:50.0560 5824  [ 052031A92809B438683FDCF5B574234D ] qcfilterhp2k    C:\windows\system32\DRIVERS\qcfilterhp2k.sys
18:06:50.0576 5824  qcfilterhp2k - ok
18:06:50.0607 5824  [ 9D8D8077A1B849AFEC221FDD33E9DADD ] qcombushp       C:\windows\system32\DRIVERS\qcombushp.sys
18:06:50.0622 5824  qcombushp - ok
18:06:50.0654 5824  [ B7FB4EAE56062A732EC962BF980512FA ] qcusbnethp2k    C:\windows\system32\DRIVERS\qcusbnethp2k.sys
18:06:50.0732 5824  qcusbnethp2k - ok
18:06:50.0778 5824  [ 4AD8CB1E096872EE7A7F6FBEAC91B54A ] qcusbserhp2k    C:\windows\system32\DRIVERS\qcusbserhp2k.sys
18:06:50.0825 5824  qcusbserhp2k - ok
18:06:50.0903 5824  [ 6E780837D7A737E3AB258465158ECAFB ] QDLService2kHP  C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kHP.exe
18:06:50.0997 5824  QDLService2kHP - ok
18:06:51.0044 5824  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\DRIVERS\ql2300.sys
18:06:51.0137 5824  ql2300 - ok
18:06:51.0168 5824  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\DRIVERS\ql40xx.sys
18:06:51.0200 5824  ql40xx - ok
18:06:51.0215 5824  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
18:06:51.0278 5824  QWAVE - ok
18:06:51.0309 5824  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
18:06:51.0340 5824  QWAVEdrv - ok
18:06:51.0356 5824  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
18:06:51.0402 5824  RasAcd - ok
18:06:51.0434 5824  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
18:06:51.0496 5824  RasAgileVpn - ok
18:06:51.0512 5824  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
18:06:51.0574 5824  RasAuto - ok
18:06:51.0590 5824  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
18:06:51.0636 5824  Rasl2tp - ok
18:06:51.0652 5824  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\windows\System32\rasmans.dll
18:06:51.0714 5824  RasMan - ok
18:06:51.0730 5824  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
18:06:51.0777 5824  RasPppoe - ok
18:06:51.0792 5824  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
18:06:51.0855 5824  RasSstp - ok
18:06:51.0870 5824  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
18:06:51.0917 5824  rdbss - ok
18:06:51.0933 5824  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\DRIVERS\rdpbus.sys
18:06:51.0980 5824  rdpbus - ok
18:06:51.0995 5824  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
18:06:52.0058 5824  RDPCDD - ok
18:06:52.0104 5824  [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR           C:\windows\system32\drivers\rdpdr.sys
18:06:52.0151 5824  RDPDR - ok
18:06:52.0182 5824  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
18:06:52.0229 5824  RDPENCDD - ok
18:06:52.0245 5824  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
18:06:52.0292 5824  RDPREFMP - ok
18:06:52.0307 5824  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
18:06:52.0370 5824  RDPWD - ok
18:06:52.0385 5824  [ 634B9A2181D98F15941236886164EC8B ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
18:06:52.0416 5824  rdyboost - ok
18:06:52.0448 5824  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
18:06:52.0510 5824  RemoteAccess - ok
18:06:52.0541 5824  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
18:06:52.0604 5824  RemoteRegistry - ok
18:06:52.0650 5824  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys
18:06:52.0666 5824  RFCOMM - ok
18:06:52.0682 5824  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
18:06:52.0728 5824  RpcEptMapper - ok
18:06:52.0744 5824  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
18:06:52.0775 5824  RpcLocator - ok
18:06:52.0791 5824  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\windows\system32\rpcss.dll
18:06:52.0838 5824  RpcSs - ok
18:06:52.0853 5824  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
18:06:52.0900 5824  rspndr - ok
18:06:52.0931 5824  [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
18:06:52.0947 5824  RSUSBSTOR - ok
18:06:52.0978 5824  [ 26E0D15FB1835F7ED638F157CCD2E04D ] RsvLock         C:\windows\system32\drivers\RsvLock.sys
18:06:52.0994 5824  RsvLock - ok
18:06:53.0009 5824  [ BA3E57C89E6F63808D3F2B11E1A2AD3C ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
18:06:53.0040 5824  RTL8167 - ok
18:06:53.0072 5824  [ 99249516F054B0E16D983CABDA0E354B ] rtsuvc          C:\windows\system32\DRIVERS\rtsuvc.sys
18:06:53.0103 5824  rtsuvc - ok
18:06:53.0103 5824  [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap           C:\windows\system32\DRIVERS\vms3cap.sys
18:06:53.0150 5824  s3cap - ok
18:06:53.0165 5824  [ 6EF8E5E3A079C97C70915CF740E89977 ] SafeBoot        C:\windows\system32\drivers\SafeBoot.sys
18:06:53.0165 5824  Suspicious file (NoAccess): C:\windows\system32\drivers\SafeBoot.sys. md5: 6EF8E5E3A079C97C70915CF740E89977
18:06:53.0165 5824  SafeBoot ( LockedFile.Multi.Generic ) - warning
18:06:53.0165 5824  SafeBoot - detected LockedFile.Multi.Generic (1)
18:06:53.0181 5824  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\windows\system32\lsass.exe
18:06:53.0196 5824  SamSs - ok
18:06:53.0228 5824  [ FD8714A36C4646DE22DDC7E36F6D09EF ] SbAlg           C:\windows\system32\drivers\SbAlg.sys
18:06:53.0243 5824  SbAlg - ok
18:06:53.0259 5824  [ 43027F1996F3AC6BD54B8A871996B7B3 ] SbFsLock        C:\windows\system32\drivers\SbFsLock.sys
18:06:53.0274 5824  SbFsLock - ok
18:06:53.0290 5824  [ 9F0439389FBD5B5F900966C5C66BCFAB ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
18:06:53.0321 5824  sbp2port - ok
18:06:53.0337 5824  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
18:06:53.0399 5824  SCardSvr - ok
18:06:53.0415 5824  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
18:06:53.0462 5824  scfilter - ok
18:06:53.0508 5824  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\windows\system32\schedsvc.dll
18:06:53.0602 5824  Schedule - ok
18:06:53.0618 5824  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\windows\System32\certprop.dll
18:06:53.0664 5824  SCPolicySvc - ok
18:06:53.0680 5824  [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus           C:\windows\system32\DRIVERS\sdbus.sys
18:06:53.0711 5824  sdbus - ok
18:06:53.0727 5824  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\windows\System32\SDRSVC.dll
18:06:53.0774 5824  SDRSVC - ok
18:06:53.0789 5824  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
18:06:53.0852 5824  secdrv - ok
18:06:53.0867 5824  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\windows\system32\seclogon.dll
18:06:53.0914 5824  seclogon - ok
18:06:53.0914 5824  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\System32\sens.dll
18:06:53.0976 5824  SENS - ok
18:06:53.0992 5824  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
18:06:54.0023 5824  SensrSvc - ok
18:06:54.0054 5824  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\DRIVERS\serenum.sys
18:06:54.0070 5824  Serenum - ok
18:06:54.0086 5824  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\DRIVERS\serial.sys
18:06:54.0132 5824  Serial - ok
18:06:54.0164 5824  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\DRIVERS\sermouse.sys
18:06:54.0179 5824  sermouse - ok
18:06:54.0195 5824  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\windows\system32\sessenv.dll
18:06:54.0242 5824  SessionEnv - ok
18:06:54.0257 5824  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\DRIVERS\sffdisk.sys
18:06:54.0273 5824  sffdisk - ok
18:06:54.0304 5824  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\DRIVERS\sffp_mmc.sys
18:06:54.0335 5824  sffp_mmc - ok
18:06:54.0351 5824  [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd         C:\windows\system32\DRIVERS\sffp_sd.sys
18:06:54.0366 5824  sffp_sd - ok
18:06:54.0366 5824  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\DRIVERS\sfloppy.sys
18:06:54.0398 5824  sfloppy - ok
18:06:54.0429 5824  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\windows\System32\ipnathlp.dll
18:06:54.0491 5824  SharedAccess - ok
18:06:54.0507 5824  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\windows\System32\shsvcs.dll
18:06:54.0554 5824  ShellHWDetection - ok
18:06:54.0569 5824  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\DRIVERS\SiSRaid2.sys
18:06:54.0585 5824  SiSRaid2 - ok
18:06:54.0600 5824  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\DRIVERS\sisraid4.sys
18:06:54.0616 5824  SiSRaid4 - ok
18:06:54.0663 5824  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
18:06:54.0678 5824  SkypeUpdate - ok
18:06:54.0725 5824  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
18:06:54.0788 5824  Smb - ok
18:06:54.0834 5824  [ 2E5F15CF86B2D1A4EA53B473129BEA14 ] SMManager       C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\SMManager.exe
18:06:54.0866 5824  SMManager - ok
18:06:54.0912 5824  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
18:06:54.0944 5824  SNMPTRAP - ok
18:06:54.0959 5824  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
18:06:54.0975 5824  spldr - ok
18:06:55.0006 5824  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\windows\System32\spoolsv.exe
18:06:55.0084 5824  Spooler - ok
18:06:55.0146 5824  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\windows\system32\sppsvc.exe
18:06:55.0334 5824  sppsvc - ok
18:06:55.0349 5824  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
18:06:55.0412 5824  sppuinotify - ok
18:06:55.0443 5824  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\windows\system32\DRIVERS\srv.sys
18:06:55.0490 5824  srv - ok
18:06:55.0505 5824  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
18:06:55.0552 5824  srv2 - ok
18:06:55.0568 5824  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
18:06:55.0599 5824  srvnet - ok
18:06:55.0614 5824  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
18:06:55.0677 5824  SSDPSRV - ok
18:06:55.0692 5824  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
18:06:55.0755 5824  SstpSvc - ok
18:06:55.0833 5824  [ F8807AAF697E1D20C9D7716A4941E574 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
18:06:55.0880 5824  STacSV - ok
18:06:55.0895 5824  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\DRIVERS\stexstor.sys
18:06:55.0911 5824  stexstor - ok
18:06:55.0942 5824  [ 96DF19A03D37F8568141612D31F0D035 ] STHDA           C:\windows\system32\DRIVERS\stwrt64.sys
18:06:55.0989 5824  STHDA - ok
18:06:56.0004 5824  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\windows\system32\DRIVERS\serscan.sys
18:06:56.0051 5824  StillCam - ok
18:06:56.0129 5824  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\windows\System32\wiaservc.dll
18:06:56.0207 5824  stisvc - ok
18:06:56.0238 5824  [ AD989072596AB313D7FA13BCF69573F7 ] stllssvr        c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
18:06:56.0254 5824  stllssvr - ok
18:06:56.0285 5824  [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt         C:\windows\system32\DRIVERS\vmstorfl.sys
18:06:56.0301 5824  storflt - ok
18:06:56.0332 5824  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\windows\system32\storsvc.dll
18:06:56.0379 5824  StorSvc - ok
18:06:56.0410 5824  [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc         C:\windows\system32\DRIVERS\storvsc.sys
18:06:56.0426 5824  storvsc - ok
18:06:56.0426 5824  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
18:06:56.0441 5824  swenum - ok
18:06:56.0472 5824  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
18:06:56.0535 5824  swprv - ok
18:06:56.0597 5824  [ D268D2A0DB2A2BBE963E688D0B039267 ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
18:06:56.0691 5824  SynTP - ok
18:06:56.0738 5824  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\windows\system32\sysmain.dll
18:06:56.0847 5824  SysMain - ok
18:06:56.0862 5824  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\windows\System32\TabSvc.dll
18:06:56.0878 5824  TabletInputService - ok
18:06:56.0894 5824  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\windows\System32\tapisrv.dll
18:06:56.0956 5824  TapiSrv - ok
18:06:56.0972 5824  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
18:06:57.0018 5824  TBS - ok
18:06:57.0081 5824  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip           C:\windows\system32\drivers\tcpip.sys
18:06:57.0237 5824  Tcpip - ok
18:06:57.0284 5824  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
18:06:57.0315 5824  TCPIP6 - ok
18:06:57.0330 5824  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
18:06:57.0393 5824  tcpipreg - ok
18:06:57.0408 5824  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
18:06:57.0455 5824  TDPIPE - ok
18:06:57.0486 5824  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
18:06:57.0518 5824  TDTCP - ok
18:06:57.0533 5824  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\windows\system32\DRIVERS\tdx.sys
18:06:57.0596 5824  tdx - ok
18:06:57.0627 5824  [ C448651339196C0E869A355171875522 ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
18:06:57.0642 5824  TermDD - ok
18:06:57.0658 5824  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\windows\System32\termsrv.dll
18:06:57.0767 5824  TermService - ok
18:06:57.0798 5824  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
18:06:57.0845 5824  Themes - ok
18:06:57.0861 5824  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
18:06:57.0908 5824  THREADORDER - ok
18:06:57.0939 5824  [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM             C:\windows\system32\drivers\tpm.sys
18:06:57.0970 5824  TPM - ok
18:06:57.0986 5824  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
18:06:58.0048 5824  TrkWks - ok
18:06:58.0095 5824  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
18:06:58.0126 5824  TrustedInstaller - ok
18:06:58.0142 5824  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
18:06:58.0204 5824  tssecsrv - ok
18:06:58.0235 5824  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
18:06:58.0282 5824  tunnel - ok
18:06:58.0298 5824  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\DRIVERS\uagp35.sys
18:06:58.0313 5824  uagp35 - ok
18:06:58.0344 5824  [ 9EEA84226ED2A028BC3FDFDDE03FE95C ] uArcCapture     C:\windows\system\uArcCapture.exe
18:06:58.0376 5824  uArcCapture - ok
18:06:58.0407 5824  [ 0E5E962B5649D544BE54E8C90761EA2B ] udfs            C:\windows\system32\DRIVERS\udfs.sys
18:06:58.0485 5824  udfs - ok
18:06:58.0516 5824  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
18:06:58.0532 5824  UI0Detect - ok
18:06:58.0547 5824  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\DRIVERS\uliagpkx.sys
18:06:58.0563 5824  uliagpkx - ok
18:06:58.0578 5824  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
18:06:58.0625 5824  umbus - ok
18:06:58.0625 5824  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\DRIVERS\umpass.sys
18:06:58.0656 5824  UmPass - ok
18:06:58.0688 5824  [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService    C:\windows\System32\umrdp.dll
18:06:58.0719 5824  UmRdpService - ok
18:06:58.0812 5824  [ 5713E039C0622F40347735CBA460B8FC ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
18:06:58.0937 5824  UNS - ok
18:06:58.0953 5824  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
18:06:59.0031 5824  upnphost - ok
18:06:59.0062 5824  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
18:06:59.0093 5824  USBAAPL64 - ok
18:06:59.0124 5824  [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
18:06:59.0171 5824  usbccgp - ok
18:06:59.0187 5824  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\DRIVERS\usbcir.sys
18:06:59.0234 5824  usbcir - ok
18:06:59.0249 5824  [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci         C:\windows\system32\drivers\usbehci.sys
18:06:59.0265 5824  usbehci - ok
18:06:59.0296 5824  [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
18:06:59.0327 5824  usbhub - ok
18:06:59.0358 5824  [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci         C:\windows\system32\drivers\usbohci.sys
18:06:59.0374 5824  usbohci - ok
18:06:59.0405 5824  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
18:06:59.0436 5824  usbprint - ok
18:06:59.0468 5824  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
18:06:59.0499 5824  usbscan - ok
18:06:59.0514 5824  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
18:06:59.0577 5824  USBSTOR - ok
18:06:59.0592 5824  [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
18:06:59.0624 5824  usbuhci - ok
18:06:59.0639 5824  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
18:06:59.0686 5824  usbvideo - ok
18:06:59.0702 5824  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
18:06:59.0764 5824  UxSms - ok
18:06:59.0764 5824  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\windows\system32\lsass.exe
18:06:59.0780 5824  VaultSvc - ok
18:06:59.0842 5824  [ BBE2B5036D2FF45458C747FB2513591D ] vcsFPService    C:\windows\system32\vcsFPService.exe
18:06:59.0951 5824  vcsFPService - ok
18:06:59.0982 5824  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\DRIVERS\vdrvroot.sys
18:06:59.0998 5824  vdrvroot - ok
18:07:00.0029 5824  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\windows\System32\vds.exe
18:07:00.0076 5824  vds - ok
18:07:00.0107 5824  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
18:07:00.0138 5824  vga - ok
18:07:00.0154 5824  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
18:07:00.0201 5824  VgaSave - ok
18:07:00.0232 5824  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\windows\system32\DRIVERS\vhdmp.sys
18:07:00.0263 5824  vhdmp - ok
18:07:00.0294 5824  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
18:07:00.0326 5824  viaide - ok
18:07:00.0341 5824  [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus           C:\windows\system32\DRIVERS\vmbus.sys
18:07:00.0372 5824  vmbus - ok
18:07:00.0372 5824  [ AE10C35761889E65A6F7176937C5592C ] VMBusHID        C:\windows\system32\DRIVERS\VMBusHID.sys
18:07:00.0404 5824  VMBusHID - ok
18:07:00.0419 5824  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\windows\system32\DRIVERS\volmgr.sys
18:07:00.0435 5824  volmgr - ok
18:07:00.0450 5824  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
18:07:00.0482 5824  volmgrx - ok
18:07:00.0513 5824  [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap         C:\windows\system32\drivers\volsnap.sys
18:07:00.0544 5824  volsnap - ok
18:07:00.0575 5824  [ ABD9B4A7E2D0AE51A3B8DF1AF3152D61 ] vpcbus          C:\windows\system32\DRIVERS\vpchbus.sys
18:07:00.0638 5824  vpcbus - ok
18:07:00.0669 5824  [ 8ACDA395841538CE9713A67FE8B2A3EB ] vpcnfltr        C:\windows\system32\DRIVERS\vpcnfltr.sys
18:07:00.0700 5824  vpcnfltr - ok
18:07:00.0731 5824  [ 31924E31BC315773E6D149B157DB46D5 ] vpcusb          C:\windows\system32\DRIVERS\vpcusb.sys
18:07:00.0747 5824  vpcusb - ok
18:07:00.0794 5824  [ A5D16559D80CFA1DCB98F46410BE5551 ] vpcvmm          C:\windows\system32\drivers\vpcvmm.sys
18:07:00.0809 5824  vpcvmm - ok
18:07:00.0856 5824  [ 67E65C5108818AD08CC45835D494A4FB ] vpnagent        C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
18:07:00.0887 5824  vpnagent - ok
18:07:00.0918 5824  [ 845DAE50510383B7F6ACA73CE2099048 ] vpnva           C:\windows\system32\DRIVERS\vpnva64.sys
18:07:00.0934 5824  vpnva - ok
18:07:00.0965 5824  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\DRIVERS\vsmraid.sys
18:07:00.0996 5824  vsmraid - ok
18:07:01.0028 5824  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\windows\system32\vssvc.exe
18:07:01.0121 5824  VSS - ok
18:07:01.0152 5824  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
18:07:01.0199 5824  vwifibus - ok
18:07:01.0215 5824  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
18:07:01.0246 5824  vwififlt - ok
18:07:01.0277 5824  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
18:07:01.0293 5824  vwifimp - ok
18:07:01.0308 5824  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
18:07:01.0371 5824  W32Time - ok
18:07:01.0371 5824  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\DRIVERS\wacompen.sys
18:07:01.0402 5824  WacomPen - ok
18:07:01.0418 5824  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
18:07:01.0480 5824  WANARP - ok
18:07:01.0480 5824  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
18:07:01.0511 5824  Wanarpv6 - ok
18:07:01.0589 5824  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
18:07:01.0714 5824  WatAdminSvc - ok
18:07:01.0761 5824  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\windows\system32\wbengine.exe
18:07:01.0839 5824  wbengine - ok
18:07:01.0854 5824  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
18:07:01.0886 5824  WbioSrvc - ok
18:07:01.0901 5824  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\windows\System32\wcncsvc.dll
18:07:01.0964 5824  wcncsvc - ok
18:07:01.0964 5824  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
18:07:02.0010 5824  WcsPlugInService - ok
18:07:02.0042 5824  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\DRIVERS\wd.sys
18:07:02.0057 5824  Wd - ok
18:07:02.0088 5824  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
18:07:02.0151 5824  Wdf01000 - ok
18:07:02.0166 5824  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
18:07:02.0198 5824  WdiServiceHost - ok
18:07:02.0198 5824  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
18:07:02.0213 5824  WdiSystemHost - ok
18:07:02.0244 5824  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\windows\System32\webclnt.dll
18:07:02.0291 5824  WebClient - ok
18:07:02.0307 5824  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
18:07:02.0369 5824  Wecsvc - ok
18:07:02.0385 5824  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
18:07:02.0432 5824  wercplsupport - ok
18:07:02.0463 5824  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
18:07:02.0510 5824  WerSvc - ok
18:07:02.0525 5824  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
18:07:02.0572 5824  WfpLwf - ok
18:07:02.0588 5824  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
18:07:02.0603 5824  WIMMount - ok
18:07:02.0619 5824  WinDefend - ok
18:07:02.0619 5824  WinHttpAutoProxySvc - ok
18:07:02.0666 5824  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
18:07:02.0759 5824  Winmgmt - ok
18:07:02.0806 5824  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\windows\system32\WsmSvc.dll
18:07:02.0915 5824  WinRM - ok
18:07:02.0946 5824  [ 4D52C872018AF7E18D078978DCC3F6F2 ] WinUSB          C:\windows\system32\DRIVERS\WinUSB.sys
18:07:02.0993 5824  WinUSB - ok
18:07:03.0024 5824  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
18:07:03.0102 5824  Wlansvc - ok
18:07:03.0118 5824  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
18:07:03.0149 5824  WmiAcpi - ok
18:07:03.0165 5824  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
18:07:03.0212 5824  wmiApSrv - ok
18:07:03.0243 5824  WMPNetworkSvc - ok
18:07:03.0258 5824  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
18:07:03.0290 5824  WPCSvc - ok
18:07:03.0290 5824  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
18:07:03.0352 5824  WPDBusEnum - ok
18:07:03.0352 5824  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
18:07:03.0414 5824  ws2ifsl - ok
18:07:03.0446 5824  [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc          C:\windows\System32\wscsvc.dll
18:07:03.0477 5824  wscsvc - ok
18:07:03.0508 5824  [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice  C:\windows\system32\DRIVERS\WSDPrint.sys
18:07:03.0539 5824  WSDPrintDevice - ok
18:07:03.0539 5824  WSearch - ok
18:07:03.0617 5824  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
18:07:03.0758 5824  wuauserv - ok
18:07:03.0773 5824  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
18:07:03.0820 5824  WudfPf - ok
18:07:03.0851 5824  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
18:07:03.0898 5824  WUDFRd - ok
18:07:03.0929 5824  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
18:07:03.0960 5824  wudfsvc - ok
18:07:03.0992 5824  [ BDDC282B619424088752BDDB2501572F ] WwanSvc         C:\windows\System32\wwansvc.dll
18:07:04.0038 5824  WwanSvc - ok
18:07:04.0101 5824  ================ Scan global ===============================
18:07:04.0132 5824  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
18:07:04.0163 5824  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\windows\system32\winsrv.dll
18:07:04.0194 5824  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\windows\system32\winsrv.dll
18:07:04.0210 5824  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
18:07:04.0241 5824  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
18:07:04.0241 5824  [Global] - ok
18:07:04.0241 5824  ================ Scan MBR ==================================
18:07:04.0257 5824  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
18:07:04.0584 5824  \Device\Harddisk0\DR0 - ok
18:07:04.0584 5824  ================ Scan VBR ==================================
18:07:04.0584 5824  [ 2C5D4072AF545380DF6F90124727A08D ] \Device\Harddisk0\DR0\Partition1
18:07:04.0600 5824  \Device\Harddisk0\DR0\Partition1 - ok
18:07:04.0631 5824  [ 6F74677B500B62DE01F4AD91663E581E ] \Device\Harddisk0\DR0\Partition2
18:07:04.0631 5824  \Device\Harddisk0\DR0\Partition2 - ok
18:07:04.0662 5824  [ 29C1ECDBABBF96343EB8EF4846782EE8 ] \Device\Harddisk0\DR0\Partition3
18:07:04.0662 5824  \Device\Harddisk0\DR0\Partition3 - ok
18:07:04.0678 5824  [ 3927A85FA453DCD33FF71B3B00E71B9A ] \Device\Harddisk0\DR0\Partition4
18:07:04.0678 5824  \Device\Harddisk0\DR0\Partition4 - ok
18:07:04.0678 5824  ============================================================
18:07:04.0678 5824  Scan finished
18:07:04.0678 5824  ============================================================
18:07:04.0694 5840  Detected object count: 10
18:07:04.0694 5840  Actual detected object count: 10
18:08:32.0271 5840  DEBridge ( UnsignedFile.Multi.Generic ) - skipped by user
18:08:32.0271 5840  DEBridge ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:08:32.0271 5840  HP ProtectTools Service ( UnsignedFile.Multi.Generic ) - skipped by user
18:08:32.0271 5840  HP ProtectTools Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:08:32.0271 5840  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user
18:08:32.0271 5840  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:08:32.0271 5840  HPDayStarterService ( UnsignedFile.Multi.Generic ) - skipped by user
18:08:32.0271 5840  HPDayStarterService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:08:32.0271 5840  HPFSService ( UnsignedFile.Multi.Generic ) - skipped by user
18:08:32.0271 5840  HPFSService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:08:32.0287 5840  hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
18:08:32.0287 5840  hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:08:32.0287 5840  hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
18:08:32.0287 5840  hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:08:32.0287 5840  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:08:32.0287 5840  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:08:32.0287 5840  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:08:32.0287 5840  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:08:32.0287 5840  SafeBoot ( LockedFile.Multi.Generic ) - skipped by user
18:08:32.0287 5840  SafeBoot ( LockedFile.Multi.Generic ) - User select action: Skip

smeenk · 16.07.2013, 17:21

Die Logs sehen sauber aus

Zitat:

Zitat von smeenk

Service Pack eins fuer Windows 7 fehlt: Learn how to install Windows 7 Service Pack 1 (SP1)

Vielleicht übersehen?

spigi01 · 16.07.2013, 19:05

Vielen Dank Smeek für die super Unterstützung.

Werde mich sobald wie möglich um SP1 kümern.

Gruss und schönen Abend noch

16.07.2013, 17:00	#12
smeenk /// Malwareteam / Visitor	Snap.de toolbar kann nicht deinstalliert werden Service Pack eins fuer Windows 7 fehlt: Learn how to install Windows 7 Service Pack 1 (SP1)

Snap.de toolbar kann nicht deinstalliert werden

Plagegeister aller Art und deren Bekämpfung: Snap.de toolbar kann nicht deinstalliert werden