Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: PUP.Optional.Installex

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 06.08.2013, 19:17   #1
totanka_de
 
PUP.Optional.Installex - Standard

PUP.Optional.Installex



Hallo,
Nachdem mein Notebook (Asus7736ZG mit Win7) ziemlich laaaaangsam startete, habe ich Malwarebytes rüberlaufen lassen - so richtig fündig ist er nicht geworden - ABER er fand PUP.Optional.Installex. Das würde ich gerne loswerden - wie? Ich habe erst einmal nichts gemacht, also keine Quarantäne, kein Entfernen oder sonst was.
Mein normaler Virenscanner ist GDataTotalProtection - der hat aber nichts ausgeworfen... Notebook startet inzwischen wieder völlig normal.
Danke vorab und Grüße, Volker


MWB-Logfile ist:

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.08.04.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
Volker :: VOLKER-PC [Administrator]

04.08.2013 21:27:02
MBAM-log-2013-08-05 (01-30-20).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 412515
Laufzeit: 2 Stunde(n), 22 Minute(n), 46 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 1
C:\Users\Volker_2\AppData\Local\Temp\rGSqhkKf.exe.part (PUP.Optional.Installex) -> Keine Aktion durchgeführt.

(Ende)

Alt 06.08.2013, 19:19   #2
markusg
/// Malware-holic
 
PUP.Optional.Installex - Standard

PUP.Optional.Installex



Hi,
es wird gleich eine Anleitung zu FRST folgen, es ist eine zusätzliche Aufgabe in der FRST.txt zu erledigen.
Empfehlungen fürs Deinstallieren
Bitte kopiere die Liste der installierten Programme aus der additions.txt hier in deinen Thread. Notiere mir bitte
hinter jede Zeile, ob folgendes Kategorie zutrifft: Unbekannt, Nötig, Unnötig

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 11.08.2013, 23:40   #3
totanka_de
 
PUP.Optional.Installex - Standard

PUP.Optional.Installex



Hallo,

sorry für die Pause - ich hab ziemlich viel um die Ohren und komme zur Zeit selten an den PC...

Ich habe FRST ausgeführt, beide Log-Dateien sind angefügt. Dazu eine Liste der Programme, die Addition.txt ausgeworfen hat, als gezipte Word-Datei. Ich habe der Einfachheit farblich markiert:

- grün = kenne ich alles o.k.
- gelb = kenne ich, wären aber entbehrlich/ ggf. unnötig
- rosarot = unnötig
- grau = keine/ wenig Ahnung, das sind Treibersachen und Programmiersprachen u.a.

So richtig ein Programm, was völlig unerklärlich da wäre, kann ich mit laienhaftem Blick nicht erkennen...? Danke und Grüße
__________________
Angehängte Dateien
Dateityp: txt FRST.txt (20,5 KB, 142x aufgerufen)
Dateityp: txt Addition.txt (15,0 KB, 140x aufgerufen)

Alt 12.08.2013, 15:33   #4
markusg
/// Malware-holic
 
PUP.Optional.Installex - Standard

PUP.Optional.Installex



bitte nicht farblich sondern beschriften
und logs wenn möglich nicht anhängen sondern reinkopieren.
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 12.08.2013, 21:56   #5
totanka_de
 
PUP.Optional.Installex - Standard

PUP.Optional.Installex



Sorry, dann hier noch einmal reinkopiert und die Additions.txt mit Programme beschriftet, Danke und Grüß

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-08-2013 02
Ran by Volker (administrator) on 11-08-2013 22:34:43
Running from D:\Download
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlX64.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(G Data Software) C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe
(Acer) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AvkBap64.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Windows\PLFSetI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(SlySoft, Inc.) C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(Acer Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe
() C:\Program Files (x86)\SlySoft\AnyDVD\ADvdDiscHlp64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-09-11] (Egis Technology Inc.)
HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [16395880 2009-10-03] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-06] (Realtek Semiconductor)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2009-11-20] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1842472 2009-09-18] (Synaptics Incorporated)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [823840 2009-09-30] (Acer Incorporated)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\program files (x86)\g data\totalprotection\avkkid\avkcks.exe
HKCU\...\Run: [AnyDVD] - C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe [7221336 2013-07-09] (SlySoft, Inc.)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [261888 2009-09-25] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [EgisTecLiveUpdate] - C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1094736 2009-11-02] (Dritek System Inc.)
HKLM-x32\...\Run: [ArcadeDeluxeAgent] - C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [419112 2009-10-06] (CyberLink Corp.)
HKLM-x32\...\Run: [PlayMovie] - C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [181480 2009-10-05] (Acer Corp.)
HKLM-x32\...\Run: [G Data AntiVirus Tray Application] - C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe [1035216 2013-01-09] (G Data Software AG)
HKLM-x32\...\Run: [GDFirewallTray] - C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe [1475096 2012-11-29] (G Data Software AG)
HKLM-x32\...\Run: [TSNxG4Tray] - "C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGTray.exe" /system [x]
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-08] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-08] ()
HKU\SissaTonaFlippiJakko\...\Policies\system: [LogonHoursAction] 2
HKU\SissaTonaFlippiJakko\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_7736&r=27360113g106l0428z175t54l1a000
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_7736&r=27360113g106l0428z175t54l1a000
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: G Data BankGuard - {BA3295CF-17ED-4F49-9E95-D999A0ADBFDC} - C:\Program Files (x86)\Common Files\G DATA\AVKProxy\BanksafeBHO.dll (G Data Software AG)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Handler: ipp - No CLSID Value - 
Handler: msdaipp - No CLSID Value - 
Handler-x32: ipp - No CLSID Value - 
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler-x32: msdaipp - No CLSID Value - 
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Volker\AppData\Roaming\Mozilla\Firefox\Profiles\whaje83j.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: G Data BankGuard - C:\Program Files (x86)\Mozilla Firefox\extensions\{906305f7-aafc-45e9-8bbd-941950a84dad}
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: No Name - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\

==================== Services (Whitelisted) =================

R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [1548312 2012-11-29] (G Data Software AG)
R2 AVKService; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe [469016 2012-11-29] (G Data Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlX64.exe [2012592 2012-11-29] (G Data Software AG)
R2 GDBackupSvc; C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe [1650128 2013-01-16] (G Data Software AG)
R3 GDFwSvc; C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe [2377736 2012-11-29] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [470008 2012-03-29] (G Data Software AG)
S3 GDTunerSvc; C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe [1219096 2012-11-30] (G Data Software AG)
S3 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [305448 2009-09-11] (Egis Technology Inc.)
R2 TSNxGService; C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe [257512 2013-01-10] (G Data Software)

==================== Drivers (Whitelisted) ====================

R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [142424 2013-05-19] (SlySoft, Inc.)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [54176 2013-01-19] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [126880 2013-01-19] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [62368 2013-01-19] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [65008 2013-01-19] (G Data Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [106648 2013-01-20] (G Data Software)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [106648 2013-01-20] (G Data Software)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [64416 2013-01-19] (G Data Software AG)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 TS4NT; C:\Windows\System32\Drivers\TS4nt.sys [98760 2013-01-19] (G Data Software)
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [x]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-08-06 22:17 - 2013-08-06 22:34 - 00000000 ____D C:\Users\Volker_2\.gimp-2.8
2013-08-06 22:17 - 2013-08-06 22:17 - 00000000 ____D C:\Users\Volker_2\AppData\Local\gegl-0.2
2013-08-06 21:54 - 2013-08-06 21:56 - 00000000 ____D C:\Program Files\GIMP 2
2013-07-15 13:30 - 2013-06-12 01:43 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-15 13:30 - 2013-06-12 01:43 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-15 13:30 - 2013-06-12 01:43 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-15 13:30 - 2013-06-12 01:43 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-15 13:30 - 2013-06-12 01:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-15 13:30 - 2013-06-12 01:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-15 13:30 - 2013-06-12 01:43 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-15 13:30 - 2013-06-12 01:42 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-15 13:30 - 2013-06-12 01:42 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-15 13:30 - 2013-06-12 01:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-15 13:30 - 2013-06-12 01:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-15 13:30 - 2013-06-12 01:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-15 13:30 - 2013-06-12 01:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-15 13:30 - 2013-06-12 01:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-15 13:30 - 2013-06-12 01:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-15 13:30 - 2013-06-12 01:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-15 13:30 - 2013-06-12 01:25 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-15 13:30 - 2013-06-12 01:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-15 13:30 - 2013-06-12 00:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-15 13:30 - 2013-06-12 00:50 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-15 13:30 - 2013-06-07 05:22 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-15 13:30 - 2013-06-07 04:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-12 15:08 - 2013-07-12 15:08 - 00000000 ____D C:\Users\Volker_2\Documents\AnyDVDHD

==================== One Month Modified Files and Folders =======

2013-08-11 22:31 - 2013-08-11 22:31 - 00000000 ____D C:\FRST
2013-08-11 22:27 - 2009-07-14 06:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-11 22:27 - 2009-07-14 06:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-11 22:18 - 2013-01-19 23:11 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-11 22:18 - 2013-01-19 23:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-11 22:17 - 2013-01-19 23:31 - 00000000 ____D C:\Users\Volker\AppData\Local\Adobe
2013-08-11 22:13 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-11 22:13 - 2009-07-14 06:51 - 00100644 _____ C:\Windows\setupact.log
2013-08-11 20:09 - 2013-01-19 16:37 - 01896140 _____ C:\Windows\WindowsUpdate.log
2013-08-11 16:23 - 2013-01-19 22:39 - 01161365 _____ C:\Windows\SysWOW64\sig.bin
2013-08-11 16:23 - 2013-01-19 22:39 - 00057534 _____ C:\Windows\SysWOW64\nmp.map
2013-08-10 16:07 - 2013-01-20 01:24 - 00643866 _____ C:\Windows\system32\perfh007.dat
2013-08-10 16:07 - 2013-01-20 01:24 - 00126394 _____ C:\Windows\system32\perfc007.dat
2013-08-10 16:07 - 2009-07-14 07:13 - 01472002 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-09 23:13 - 2013-01-19 16:48 - 00079552 _____ C:\Users\Volker\AppData\Local\GDIPFONTCACHEV1.DAT
2013-08-09 23:12 - 2013-01-19 16:47 - 00001429 _____ C:\Users\Volker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-08-09 23:12 - 2013-01-19 16:47 - 00000000 ___RD C:\Users\Volker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-08-09 23:12 - 2013-01-19 16:47 - 00000000 ___RD C:\Users\Volker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-08-09 23:12 - 2013-01-19 16:47 - 00000000 ____D C:\Users\Volker
2013-08-06 22:34 - 2013-08-06 22:17 - 00000000 ____D C:\Users\Volker_2\.gimp-2.8
2013-08-06 22:17 - 2013-08-06 22:17 - 00000000 ____D C:\Users\Volker_2\AppData\Local\gegl-0.2
2013-08-06 22:17 - 2013-01-20 00:40 - 00000000 ____D C:\Users\Volker_2
2013-08-06 21:56 - 2013-08-06 21:54 - 00000000 ____D C:\Program Files\GIMP 2
2013-08-04 21:24 - 2013-06-16 22:27 - 00001374 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-08-04 21:24 - 2013-06-16 22:27 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-04 18:08 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-08-03 22:33 - 2013-02-17 12:45 - 00000143 _____ C:\Windows\NeroDigital.ini
2013-07-15 15:03 - 2009-07-14 06:45 - 00341440 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-15 15:02 - 2013-03-28 01:37 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-15 15:02 - 2013-03-28 01:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-15 15:02 - 2009-10-28 20:00 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-15 15:02 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-15 15:02 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-07-15 13:32 - 2013-01-19 21:28 - 78185248 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-07-12 15:08 - 2013-07-12 15:08 - 00000000 ____D C:\Users\Volker_2\Documents\AnyDVDHD
2013-07-12 09:49 - 2013-07-10 13:41 - 00000040 ___SH C:\ProgramData\.zreglib

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-08-02 10:34

==================== End Of Log ============================
         
--- --- ---

--- --- ---




FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-08-2013 02
Ran by Volker at 2013-08-11 22:35:47
Running from D:\Download
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
Acer Arcade Deluxe (x32 Version: 3.0.7006) nötig
Acer Backup Manager (x32 Version: 2.0.0.29) nötig
Acer Crystal Eye Webcam (x32 Version: 5.2.9.3) nötig
Acer ePower Management (x32 Version: 4.05.3004) nötig
Acer eRecovery Management (x32 Version: 4.05.3005) nötig
Acer GridVista (x32 Version: 3.01.0730) nötig
Acer Registration (x32 Version: 1.02.3006) nötig
Acer ScreenSaver (x32 Version: 1.7.0715)
Acer Updater (x32 Version: 1.01.3017) nötig
Acrobat.com (x32 Version: 1.6.65) unnötig
Adobe AIR (x32 Version: 1.5.0.7220) unnötig
Adobe Flash Player 10 ActiveX (x32 Version: 10.0.32.18) unnötig
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94) nötig
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03) nötig
Alice Greenfingers (x32) unnötig
Amazonia (x32) unnötig
AnyDVD (x32 Version: 7.2.2.0) nötig
Backup Manager Basic (x32 Version: 2.0.0.29) unnötig
Broadcom Gigabit NetLink Controller (Version: 12.26.02) nötig
Chicken Invaders 2 (x32) unnötig
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000) nötig
Dairy Dash (x32) unnötig
Dream Day First Home (x32) unnötig
EpsonNet Config V3 (x32 Version: 3.7.0) unnötig
eSobi v2 (x32 Version: 2.0.4.000274) unnötig
Farm Frenzy 2 (x32) unnötig
First Class Flurry (x32) unnötig
FLV Player 2.0 (build 25) (x32 Version: 2.0 (build 25)) nötig
Free M4a to MP3 Converter 7.2 (x32) nötig
Free YouTube Download version 3.2.0.128 (x32 Version: 3.2.0.128) nötig
Free YouTube to MP3 Converter version 3.11.37.1212 (x32 Version: 3.11.37.1212) nötig
G Data InternetSecurity 2013 (x32) nötig
G Data TotalProtection 2013 (x32 Version: 23.1.0.0) nötig
Granny In Paradise (x32) unnötig
Heroes of Hellas (x32) unnötig
Identity Card (x32 Version: 1.00.3002) nötig
ImgBurn (x32 Version: 2.5.7.0) nötig
Intel® Matrix Storage Manager nötig
IrfanView (remove only) (x32) nötig
Java 7 Update 13 (x32 Version: 7.0.130) nötig
Java Auto Updater (x32 Version: 2.1.9.0) nötig
JDownloader 2 (x32 Version: 2) nötig
Junk Mail filter update (x32 Version: 14.0.8089.726) unnötig
Launch Manager (x32 Version: 3.0.06) nötig
LSI HDA Modem (Version: 2.1.94) unbekannt
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300) nötig
Merriam Websters Spell Jam (x32) unnötig
Microsoft Application Error Reporting (Version: 12.0.6015.5000) unnötig
Microsoft Choice Guard (x32 Version: 2.0.48.0) unnötig
Microsoft Office 2000 Premium (x32 Version: 9.00.2816) nötig
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003) unnötig
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1) unnötig
Microsoft Office Suite Activation Assistant (x32 Version: 2.9) unnötig
Microsoft Silverlight (Version: 5.1.20513.0) nötig
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) unbekannt
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) unbekannt
Microsoft Works (x32 Version: 9.7.0621) unnötig
Mozilla Firefox 22.0 (x86 de) (x32 Version: 22.0) nötig
Mozilla Maintenance Service (x32 Version: 22.0) unnötig
MSVCRT (x32 Version: 14.0.1468.721) unbekannt
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) unbekannt
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) unbekannt
MyWinLocker (x32 Version: 3.1.76.0) unnötig
Nero Recode CE (x32) nötig
NTI Media Maker 8 (x32 Version: 8.0.12.6623) unnötig
NVIDIA Drivers (Version: 1.10) nötig
NVIDIA PhysX (x32 Version: 9.09.0203) unbekannt
P 2.8.6 (Version: 2.8.6) nötig
Patrizier II Gold (x32) nötig
Railroad Tycoon II - Platinum (x32) nötig
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5911) nötig
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7100.30093) nötig
Synaptics Pointing Device Driver (Version: 14.0.6.0) nötig
Welcome Center (x32 Version: 1.00.3008) unnötig
Windows Live Anmelde-Assistent (x32 Version: 5.000.818.5) unnötig
Windows Live Call (x32 Version: 14.0.8064.0206) unnötig
Windows Live Communications Platform (x32 Version: 14.0.8064.206) unnötig
Windows Live Essentials (x32 Version: 14.0.8089.0726) unnötig
Windows Live Essentials (x32 Version: 14.0.8089.726) unnötig
Windows Live Fotogalerie (x32 Version: 14.0.8081.709) unnötig
Windows Live Mail (x32 Version: 14.0.8089.0726) unnötig
Windows Live Messenger (x32 Version: 14.0.8089.0726) unnötig
Windows Live Movie Maker (x32 Version: 14.0.8091.0730) unnötig
Windows Live Sync (x32 Version: 14.0.8089.726) unnötig
Windows Live Writer (x32 Version: 14.0.8089.0726) unnötig
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029) unnötig
WinRAR 4.00 (64-Bit) (Version: 4.00.0) nötig
XMedia Recode Version 3.1.4.9 (x32 Version: 3.1.4.9) nötig

==================== Restore Points  =========================

06-08-2013 22:00:17 Geplanter Prüfpunkt
10-08-2013 13:48:07 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {00515A29-88DD-4165-9B75-CFF2118EC2F8} - System32\Tasks\McQcModifier-5c47-a7b0 => C:\ProgramData\McQcModifier-5c47-a7b0\McQcModifier-5c47-a7b0.cmd [2009-08-29] ()
Task: {91C3DCBF-EFB1-4B0F-A29E-0BA72D7E5978} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-10-01] (Acer)
Task: {F0A82695-2F56-4A20-A5AE-37815307EB37} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/11/2013 07:30:17 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Die abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/11/2013 07:30:17 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Die abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/11/2013 07:30:16 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Die abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/11/2013 07:30:16 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Die abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/11/2013 07:28:31 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Fehler in Manifest- oder Richtliniendatei "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" in Zeile  WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition: WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (08/11/2013 07:26:37 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (08/10/2013 04:48:43 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Die abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/10/2013 04:48:43 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Die abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/10/2013 04:48:43 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Die abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/10/2013 04:48:43 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Die abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".


System errors:
=============
Error: (08/11/2013 04:11:55 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1070

Error: (08/11/2013 04:11:50 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Funktionssuchanbieter-Host" wurde nicht richtig gestartet.

Error: (08/11/2013 03:56:21 PM) (Source: iaStor) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.

Error: (08/11/2013 03:48:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.

Error: (08/11/2013 03:45:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde nicht richtig gestartet.

Error: (08/11/2013 03:42:45 PM) (Source: DCOM) (User: )
Description: {7D1933CB-86F6-4A98-8628-01BE94C9A575}

Error: (08/11/2013 03:42:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (08/11/2013 03:42:00 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Software Protection erreicht.

Error: (08/11/2013 03:35:56 PM) (Source: DCOM) (User: )
Description: {7D1933CB-86F6-4A98-8628-01BE94C9A575}

Error: (08/11/2013 03:34:47 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================
Error: (08/11/2013 07:30:17 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe

Error: (08/11/2013 07:30:17 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe

Error: (08/11/2013 07:30:16 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksCal.exe

Error: (08/11/2013 07:30:16 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksdb.exe

Error: (08/11/2013 07:28:31 PM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8

Error: (08/11/2013 07:26:37 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (08/10/2013 04:48:43 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe

Error: (08/10/2013 04:48:43 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe

Error: (08/10/2013 04:48:43 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksCal.exe

Error: (08/10/2013 04:48:43 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksdb.exe


==================== Memory info =========================== 

Percentage of memory in use: 34%
Total physical RAM: 4090.93 MB
Available physical RAM: 2672.32 MB
Total Pagefile: 8180.04 MB
Available Pagefile: 6279.65 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:64.65 GB) (Free:15.77 GB) NTFS (Disk=0 Partition=3)
Drive d: (Volume) (Fixed) (Total:68.36 GB) (Free:12.54 GB) NTFS (Disk=0 Partition=4)
Drive e: (Volume) (Fixed) (Total:68.36 GB) (Free:7.21 GB) NTFS
Drive f: (Volume) (Fixed) (Total:84.9 GB) (Free:0.46 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298 GB) (Disk ID: 4DF24DF1)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=65 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=222 GB) - (Type=OF Extended)

==================== End Of Log ============================
         
--- --- ---


Alt 12.08.2013, 22:05   #6
markusg
/// Malware-holic
 
PUP.Optional.Installex - Standard

PUP.Optional.Installex



Hi,
es sind 2 Logs zu erstellen, möglichst gleichzeitig posten.
1. deinstaliere:
Acrobat.com
Adobe AIR
Adobe Flash Player alle
Adobe - Adobe Flash Player installieren
neueste version laden, instalieren.
bitte auch mal den adobe reader wie folgt konfigurieren:
adobe reader öffnen, bearbeiten, voreinstellungen.
allgemein:
nur zertifizierte zusatz module verwenden, anhaken.
Sicherheit (erweitert)
Erweiterte Sicherheit anhaken
und alle Dateien auswählen.
internet:
hier sollte alles deaktiviert werden, es ist sehr unsicher pdfs automatisch zu öffnen, zu downloaden etc.
es ist immer besser diese direkt abzuspeichern da man nur so die kontrolle hat was auf dem pc vor geht.
bei javascript den haken bei java script verwenden raus nehmen
bei updater, automatisch instalieren wählen.
übernehmen /ok

deinstaliere:

Alice
Amazonia
Backup
Chicken
Dairy
Dream
EpsonNet
eSobi
Farm
First Class
G Data : bitte
Antivirus Download, Antivirus-Software, Bankguard, Mobile Security - G Data Software AG
aufsuchen, und die Version 2014 instalieren, Upgrades sind in der REgel kostenlos

deinstaliere:
Granny
Heroes
Java 7
downloade Java jre:
Java-Downloads für alle Betriebssysteme
klicke:
Download der Java-Software für Windows Offline
laden, und instalieren
deinstaliere:
Merriam

Neustarten bitte.
2.
Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.


3.
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
--> PUP.Optional.Installex

Alt 01.09.2013, 22:54   #7
totanka_de
 
PUP.Optional.Installex - Standard

PUP.Optional.Installex



Hallo, da bin ich "mal wieder" - endlich hatte ich mal Ruhe, die Scans richtig durchzugehen. Entschuldigung, falls das zu lange gedauert hat oder wenn ich deshalb einen neues Thema aufmachen soll. Das mit den code-Tags habe ich vielleicht nicht richtig kapiert, ich versuchs mal. Herzliche Grüße

Das sind die LogFiles:

Combofix
Combofix Logfile:
Code:
ATTFilter
ComboFix 13-09-01.02 - Volker 01.09.2013  23:19:44.2.2 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.4091.2543 [GMT 2:00]
ausgeführt von:: c:\users\Volker_2\Desktop\ComboFix.exe
AV: G Data TotalProtection 2014 *Disabled/Updated* {39B780B4-63C2-05B0-3B40-8F7A21E4F496}
FW: G Data Personal Firewall *Disabled* {018C0191-29AD-04E8-101F-264FDF37B3ED}
SP: G Data TotalProtection 2014 *Disabled/Updated* {82D66150-45F8-0A3E-01F0-B4085A63BE2B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Common Files\Acer GameZone online.ico
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-08-01 bis 2013-09-01  ))))))))))))))))))))))))))))))
.
.
2013-09-01 21:27 . 2013-09-01 21:27	--------	d-----w-	c:\users\Volker\AppData\Local\temp
2013-09-01 21:27 . 2013-09-01 21:27	--------	d-----w-	c:\users\SissaTonaFlippiJakko\AppData\Local\temp
2013-09-01 21:27 . 2013-09-01 21:27	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-09-01 10:33 . 2013-09-01 10:43	--------	d-----w-	c:\programdata\DVD Shrink
2013-09-01 10:33 . 2013-09-01 10:33	--------	d-----w-	c:\program files (x86)\DVD Shrink DE
2013-09-01 09:53 . 2005-07-29 14:12	2977792	------w-	c:\windows\UNRecode.exe
2013-08-29 23:47 . 2013-08-06 08:58	9515512	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{78A002FB-9883-4D1E-95E6-193F9D262043}\mpengine.dll
2013-08-24 14:49 . 2013-08-24 14:49	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-08-24 14:49 . 2013-08-24 14:49	692104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-08-24 14:16 . 2013-08-24 14:15	312232	----a-w-	c:\windows\system32\javaws.exe
2013-08-24 14:15 . 2013-08-24 14:15	108968	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2013-08-24 14:15 . 2013-08-24 14:15	189352	----a-w-	c:\windows\system32\javaw.exe
2013-08-24 14:15 . 2013-08-24 14:15	188840	----a-w-	c:\windows\system32\java.exe
2013-08-24 14:15 . 2013-08-24 14:15	--------	d-----w-	c:\program files\Java
2013-08-24 13:03 . 2013-08-24 13:04	107128	----a-w-	c:\windows\system32\drivers\GRD.sys
2013-08-24 12:50 . 2013-08-24 12:50	62808	----a-w-	c:\windows\system32\drivers\PktIcpt.sys
2013-08-24 12:45 . 2013-08-24 12:45	77656	----a-w-	c:\windows\system32\drivers\gddcd64.sys
2013-08-24 12:45 . 2013-08-24 12:45	58712	----a-w-	c:\windows\system32\drivers\gddcv64.sys
2013-08-24 12:45 . 2013-08-24 12:45	64856	----a-w-	c:\windows\system32\drivers\gdwfpcd64.sys
2013-08-24 12:45 . 2013-08-24 12:50	64856	----a-w-	c:\windows\system32\drivers\HookCentre.sys
2013-08-24 12:45 . 2013-08-24 12:45	60248	----a-w-	c:\windows\system32\drivers\GDBehave.sys
2013-08-24 12:45 . 2013-08-24 12:45	133976	----a-w-	c:\windows\system32\drivers\MiniIcpt.sys
2013-08-24 12:44 . 2013-08-24 12:44	--------	d-----w-	c:\programdata\G DATA Software
2013-08-24 12:43 . 2013-08-24 12:43	--------	d-----w-	c:\program files (x86)\Common Files\G Data
2013-08-24 12:34 . 2013-08-24 12:34	--------	d-----w-	c:\windows\SysWow64\wbem\Logs
2013-08-24 11:49 . 2013-08-24 11:49	--------	d-----w-	c:\users\vm
2013-08-24 11:48 . 2013-08-24 12:17	--------	d-----w-	c:\users\temp
2013-08-22 14:21 . 2013-08-22 14:21	--------	d-----w-	c:\users\SissaTonaFlippiJakko\AppData\Local\Diagnostics
2013-08-16 20:42 . 2013-08-16 20:42	--------	d-----w-	c:\users\Volker_2\AppData\Local\NewTech Infosystems
2013-08-14 22:24 . 2013-07-09 05:46	1472512	----a-w-	c:\windows\system32\crypt32.dll
2013-08-11 20:31 . 2013-08-11 20:31	--------	d-----w-	C:\FRST
2013-08-06 20:17 . 2013-08-06 20:34	--------	d-----w-	c:\users\Volker_2\.gimp-2.8
2013-08-06 20:17 . 2013-08-06 20:17	--------	d-----w-	c:\users\Volker_2\AppData\Local\gegl-0.2
2013-08-06 19:54 . 2013-08-06 19:56	--------	d-----w-	c:\program files\GIMP 2
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-24 14:15 . 2013-01-19 20:45	972712	----a-w-	c:\windows\system32\deployJava1.dll
2013-08-24 14:15 . 2013-01-19 20:45	1093032	----a-w-	c:\windows\system32\npDeployJava1.dll
2013-08-24 13:04 . 2013-01-19 22:48	16944	----a-w-	c:\windows\system32\drivers\GdPhyMem.sys
2013-08-24 12:45 . 2013-01-19 20:30	98760	----a-w-	c:\windows\system32\drivers\TS4nt.sys
2013-07-15 11:32 . 2013-01-19 19:28	78185248	----a-w-	c:\windows\system32\MRT.exe
2013-07-09 04:45 . 2013-08-14 22:24	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2013-07-02 13:27 . 2013-07-02 13:27	97176	----a-w-	c:\windows\SysWow64\ElbyCDIO.dll
2013-06-05 03:34 . 2013-07-11 13:39	3153920	----a-w-	c:\windows\system32\win32k.sys
2013-06-04 06:00 . 2013-07-11 13:39	624128	----a-w-	c:\windows\system32\qedit.dll
2013-06-04 04:53 . 2013-07-11 13:39	509440	----a-w-	c:\windows\SysWow64\qedit.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2013-01-28 14:48	281760	----a-w-	c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2009-09-11 05:41	120104	----a-w-	c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AnyDVD"="c:\program files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe" [2013-07-09 7221336]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2009-09-24 261888]
"EgisTecLiveUpdate"="c:\program files (x86)\EgisTec Egis Software Update\EgisUpdate.exe" [2009-08-04 199464]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-11-01 1094736]
"ArcadeDeluxeAgent"="c:\program files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2009-10-06 419112]
"PlayMovie"="c:\program files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2009-10-05 181480]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"G Data AntiVirus Tray"="c:\program files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe" [2013-02-25 1444304]
"GDFirewallTray"="c:\program files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe" [2013-02-25 1854416]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Microsoft Office.lnk - c:\program files (x86)\Microsoft Office\Office\OSA9.EXE -b -l [1999-2-18 65588]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R3 GDTunerSvc;G Data Tuner Service;c:\program files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe;c:\program files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe [x]
R3 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys;c:\windows\SYSNATIVE\DRIVERS\Rts516xIR.sys [x]
R3 TSNxGService;G Data Datensafe Service;c:\program files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe;c:\program files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
S0 GDBehave;GDBehave;c:\windows\system32\drivers\GDBehave.sys;c:\windows\SYSNATIVE\drivers\GDBehave.sys [x]
S0 TS4NT;TS4nt driver;c:\windows\System32\Drivers\TS4nt.sys;c:\windows\SYSNATIVE\Drivers\TS4nt.sys [x]
S1 gddcv;G Data DCV Driver;c:\windows\system32\drivers\gddcv64.sys;c:\windows\SYSNATIVE\drivers\gddcv64.sys [x]
S1 GDMnIcpt;GDMnIcpt;c:\windows\system32\drivers\MiniIcpt.sys;c:\windows\SYSNATIVE\drivers\MiniIcpt.sys [x]
S1 gdwfpcd;G Data WFP CD;c:\windows\system32\drivers\gdwfpcd64.sys;c:\windows\SYSNATIVE\drivers\gdwfpcd64.sys [x]
S1 GRD;G Data Rootkit Detector Driver;c:\windows\system32\drivers\GRD.sys;c:\windows\SYSNATIVE\drivers\GRD.sys [x]
S1 HookCentre;HookCentre;c:\windows\system32\drivers\HookCentre.sys;c:\windows\SYSNATIVE\drivers\HookCentre.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 AVKProxy;G Data AntiVirus Proxy;c:\program files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe;c:\program files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [x]
S2 AVKService;G Data Scheduler;c:\program files (x86)\G Data\TotalProtection\AVK\AVKService.exe;c:\program files (x86)\G Data\TotalProtection\AVK\AVKService.exe [x]
S2 AVKWCtl;G Data Dateisystem Wächter;c:\program files (x86)\G Data\TotalProtection\AVK\AVKWCtlX64.exe;c:\program files (x86)\G Data\TotalProtection\AVK\AVKWCtlX64.exe [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
S2 GDBackupSvc;G Data Backup Service;c:\program files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe;c:\program files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe [x]
S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe;c:\program files (x86)\Acer\Registration\GregHSRW.exe [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [x]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S3 gddcd;G Data DCD Driver;c:\windows\system32\drivers\gddcd64.sys;c:\windows\SYSNATIVE\drivers\gddcd64.sys [x]
S3 GDFwSvc;G Data Personal Firewall;c:\program files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe;c:\program files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe [x]
S3 GDPkIcpt;GDPkIcpt;c:\windows\system32\drivers\PktIcpt.sys;c:\windows\SYSNATIVE\drivers\PktIcpt.sys [x]
S3 GDScan;G Data Scanner;c:\program files (x86)\Common Files\G Data\GDScan\GDScan.exe;c:\program files (x86)\Common Files\G Data\GDScan\GDScan.exe [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2013-01-28 14:48	342176	----a-w-	c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2009-09-11 05:44	137512	----a-w-	c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"mwlDaemon"="c:\program files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe" [2009-09-11 349480]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-10-03 16395880]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-08-06 8060960]
"PLFSetI"="c:\windows\PLFSetI.exe" [2009-11-20 200704]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2009-09-30 823840]
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_7736&r=27360113g106l0428z175t54l1a000
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\users\Volker\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: {{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Volker\AppData\Roaming\Mozilla\Firefox\Profiles\whaje83j.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
SafeBoot-mcmscsvc
SafeBoot-MCODS
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-09-01  23:31:34
ComboFix-quarantined-files.txt  2013-09-01 21:31
.
Vor Suchlauf: 10 Verzeichnis(se), 23.309.164.544 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 23.785.787.392 Bytes frei
.
- - End Of File - - CF9F482A38FCF1AC7EA90FAAF7F2F1AF
         
--- --- ---
5C616939100B85E558DA92B899A0FC36
[/code]


TDSSKiller
Code:
ATTFilter
23:47:52.0770 4868  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
23:47:53.0035 4868  ============================================================
23:47:53.0035 4868  Current date / time: 2013/09/01 23:47:53.0035
23:47:53.0035 4868  SystemInfo:
23:47:53.0035 4868  
23:47:53.0035 4868  OS Version: 6.1.7601 ServicePack: 1.0
23:47:53.0035 4868  Product type: Workstation
23:47:53.0035 4868  ComputerName: VOLKER-PC
23:47:53.0035 4868  UserName: Volker
23:47:53.0035 4868  Windows directory: C:\Windows
23:47:53.0035 4868  System windows directory: C:\Windows
23:47:53.0035 4868  Running under WOW64
23:47:53.0035 4868  Processor architecture: Intel x64
23:47:53.0035 4868  Number of processors: 2
23:47:53.0035 4868  Page size: 0x1000
23:47:53.0035 4868  Boot type: Normal boot
23:47:53.0035 4868  ============================================================
23:47:53.0550 4868  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:47:53.0550 4868  ============================================================
23:47:53.0550 4868  \Device\Harddisk0\DR0:
23:47:53.0550 4868  MBR partitions:
23:47:53.0550 4868  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1770800, BlocksNum 0x32000
23:47:53.0550 4868  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x17A2800, BlocksNum 0x814D2B0
23:47:53.0566 4868  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x98F0800, BlocksNum 0x88B8000
23:47:53.0581 4868  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x121A9000, BlocksNum 0x88B8000
23:47:53.0597 4868  \Device\Harddisk0\DR0\Partition5: MBR, Type 0x7, StartLBA 0x1AA61800, BlocksNum 0xA9CC800
23:47:53.0597 4868  ============================================================
23:47:53.0644 4868  C: <-> \Device\Harddisk0\DR0\Partition2
23:47:53.0706 4868  D: <-> \Device\Harddisk0\DR0\Partition3
23:47:53.0784 4868  E: <-> \Device\Harddisk0\DR0\Partition4
23:47:53.0831 4868  F: <-> \Device\Harddisk0\DR0\Partition5
23:47:53.0831 4868  ============================================================
23:47:53.0831 4868  Initialize success
23:47:53.0831 4868  ============================================================
23:48:00.0601 2236  ============================================================
23:48:00.0601 2236  Scan started
23:48:00.0601 2236  Mode: Manual; SigCheck; TDLFS; 
23:48:00.0601 2236  ============================================================
23:48:01.0225 2236  ================ Scan system memory ========================
23:48:01.0225 2236  System memory - ok
23:48:01.0225 2236  ================ Scan services =============================
23:48:01.0490 2236  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:48:01.0600 2236  1394ohci - ok
23:48:01.0662 2236  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:48:01.0693 2236  ACPI - ok
23:48:01.0756 2236  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:48:01.0865 2236  AcpiPmi - ok
23:48:02.0021 2236  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:48:02.0036 2236  AdobeARMservice - ok
23:48:02.0130 2236  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
23:48:02.0208 2236  adp94xx - ok
23:48:02.0255 2236  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
23:48:02.0270 2236  adpahci - ok
23:48:02.0270 2236  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
23:48:02.0302 2236  adpu320 - ok
23:48:02.0380 2236  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:48:02.0426 2236  AeLookupSvc - ok
23:48:02.0598 2236  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
23:48:02.0692 2236  AFD - ok
23:48:02.0785 2236  [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
23:48:02.0863 2236  AgereModemAudio - ok
23:48:02.0910 2236  [ AF4748EF93416159459769A24A0053AF ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
23:48:03.0019 2236  AgereSoftModem - ok
23:48:03.0050 2236  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
23:48:03.0066 2236  agp440 - ok
23:48:03.0113 2236  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
23:48:03.0160 2236  ALG - ok
23:48:03.0206 2236  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:48:03.0222 2236  aliide - ok
23:48:03.0238 2236  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
23:48:03.0269 2236  amdide - ok
23:48:03.0378 2236  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
23:48:03.0394 2236  AmdK8 - ok
23:48:03.0409 2236  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
23:48:03.0440 2236  AmdPPM - ok
23:48:03.0581 2236  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:48:03.0596 2236  amdsata - ok
23:48:03.0643 2236  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
23:48:03.0659 2236  amdsbs - ok
23:48:03.0706 2236  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:48:03.0721 2236  amdxata - ok
23:48:03.0799 2236  [ 2EF6C39D4E9D4EC41C52F1A6C03F4612 ] AnyDVD          C:\Windows\system32\Drivers\AnyDVD.sys
23:48:03.0877 2236  AnyDVD - ok
23:48:03.0924 2236  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
23:48:04.0018 2236  AppID - ok
23:48:04.0064 2236  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:48:04.0189 2236  AppIDSvc - ok
23:48:04.0220 2236  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
23:48:04.0283 2236  Appinfo - ok
23:48:04.0361 2236  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
23:48:04.0376 2236  arc - ok
23:48:04.0376 2236  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
23:48:04.0392 2236  arcsas - ok
23:48:04.0454 2236  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:48:04.0517 2236  AsyncMac - ok
23:48:04.0564 2236  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
23:48:04.0579 2236  atapi - ok
23:48:04.0657 2236  [ 0ACC06FCF46F64ED4F11E57EE461C1F4 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
23:48:04.0844 2236  athr - ok
23:48:04.0922 2236  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:48:05.0032 2236  AudioEndpointBuilder - ok
23:48:05.0047 2236  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:48:05.0094 2236  AudioSrv - ok
23:48:05.0312 2236  [ 4A451DD3761F951F09EFC2F29FABF398 ] AVKProxy        C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
23:48:05.0375 2236  AVKProxy - ok
23:48:05.0531 2236  [ 28D3B622E42D1042D2FABE98D92EF8DE ] AVKService      C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe
23:48:05.0546 2236  AVKService - ok
23:48:05.0702 2236  [ BB06C32C9BB5FAE720FA32DDB27FF3C4 ] AVKWCtl         C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlX64.exe
23:48:05.0765 2236  AVKWCtl - ok
23:48:05.0827 2236  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:48:05.0874 2236  AxInstSV - ok
23:48:05.0936 2236  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
23:48:05.0999 2236  b06bdrv - ok
23:48:06.0030 2236  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:48:06.0077 2236  b57nd60a - ok
23:48:06.0170 2236  [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
23:48:06.0311 2236  BCM43XX - ok
23:48:06.0342 2236  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:48:06.0404 2236  BDESVC - ok
23:48:06.0451 2236  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:48:06.0514 2236  Beep - ok
23:48:06.0638 2236  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
23:48:06.0716 2236  BFE - ok
23:48:06.0857 2236  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
23:48:06.0919 2236  BITS - ok
23:48:06.0966 2236  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
23:48:06.0997 2236  blbdrive - ok
23:48:07.0060 2236  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:48:07.0106 2236  bowser - ok
23:48:07.0153 2236  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:48:07.0184 2236  BrFiltLo - ok
23:48:07.0184 2236  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:48:07.0231 2236  BrFiltUp - ok
23:48:07.0247 2236  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
23:48:07.0294 2236  BridgeMP - ok
23:48:07.0325 2236  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
23:48:07.0356 2236  Browser - ok
23:48:07.0387 2236  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:48:07.0434 2236  Brserid - ok
23:48:07.0465 2236  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:48:07.0496 2236  BrSerWdm - ok
23:48:07.0496 2236  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:48:07.0559 2236  BrUsbMdm - ok
23:48:07.0559 2236  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:48:07.0574 2236  BrUsbSer - ok
23:48:07.0606 2236  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
23:48:07.0637 2236  BTHMODEM - ok
23:48:07.0684 2236  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
23:48:07.0730 2236  bthserv - ok
23:48:07.0793 2236  catchme - ok
23:48:07.0855 2236  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:48:07.0933 2236  cdfs - ok
23:48:08.0027 2236  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
23:48:08.0074 2236  cdrom - ok
23:48:08.0152 2236  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
23:48:08.0230 2236  CertPropSvc - ok
23:48:08.0261 2236  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
23:48:08.0292 2236  circlass - ok
23:48:08.0339 2236  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
23:48:08.0354 2236  CLFS - ok
23:48:08.0479 2236  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:48:08.0495 2236  clr_optimization_v2.0.50727_32 - ok
23:48:08.0557 2236  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:48:08.0573 2236  clr_optimization_v2.0.50727_64 - ok
23:48:08.0635 2236  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
23:48:08.0666 2236  CmBatt - ok
23:48:08.0698 2236  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:48:08.0713 2236  cmdide - ok
23:48:08.0744 2236  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
23:48:08.0807 2236  CNG - ok
23:48:08.0838 2236  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
23:48:08.0854 2236  Compbatt - ok
23:48:08.0963 2236  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:48:08.0994 2236  CompositeBus - ok
23:48:09.0010 2236  COMSysApp - ok
23:48:09.0025 2236  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
23:48:09.0041 2236  crcdisk - ok
23:48:09.0072 2236  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:48:09.0103 2236  CryptSvc - ok
23:48:09.0150 2236  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:48:09.0197 2236  DcomLaunch - ok
23:48:09.0228 2236  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
23:48:09.0306 2236  defragsvc - ok
23:48:09.0353 2236  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:48:09.0415 2236  DfsC - ok
23:48:09.0509 2236  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:48:09.0571 2236  Dhcp - ok
23:48:09.0618 2236  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
23:48:09.0649 2236  discache - ok
23:48:09.0680 2236  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
23:48:09.0696 2236  Disk - ok
23:48:09.0836 2236  [ D5BCB77BE83CF99F508943945D46343D ] DKbFltr         C:\Windows\syswow64\Drivers\DKbFltr.sys
23:48:09.0836 2236  DKbFltr - ok
23:48:09.0914 2236  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:48:09.0946 2236  Dnscache - ok
23:48:09.0992 2236  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:48:10.0055 2236  dot3svc - ok
23:48:10.0070 2236  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
23:48:10.0117 2236  DPS - ok
23:48:10.0148 2236  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:48:10.0180 2236  drmkaud - ok
23:48:10.0258 2236  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:48:10.0304 2236  DXGKrnl - ok
23:48:10.0398 2236  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
23:48:10.0445 2236  EapHost - ok
23:48:10.0538 2236  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
23:48:10.0726 2236  ebdrv - ok
23:48:10.0757 2236  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
23:48:10.0772 2236  EFS - ok
23:48:10.0850 2236  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:48:10.0928 2236  ehRecvr - ok
23:48:10.0960 2236  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
23:48:10.0975 2236  ehSched - ok
23:48:11.0022 2236  [ BE2902E13CA69383F449B6BF927844FB ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
23:48:11.0038 2236  ElbyCDIO - ok
23:48:11.0084 2236  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
23:48:11.0116 2236  elxstor - ok
23:48:11.0287 2236  [ FB67AA8AC61B9365ADD546139A21BED6 ] ePowerSvc       C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
23:48:11.0350 2236  ePowerSvc - ok
23:48:11.0396 2236  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:48:11.0412 2236  ErrDev - ok
23:48:11.0506 2236  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
23:48:11.0552 2236  EventSystem - ok
23:48:11.0584 2236  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
23:48:11.0630 2236  exfat - ok
23:48:11.0646 2236  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:48:11.0724 2236  fastfat - ok
23:48:11.0771 2236  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
23:48:11.0833 2236  Fax - ok
23:48:11.0864 2236  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
23:48:11.0880 2236  fdc - ok
23:48:11.0927 2236  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
23:48:11.0958 2236  fdPHost - ok
23:48:11.0958 2236  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:48:12.0005 2236  FDResPub - ok
23:48:12.0020 2236  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:48:12.0036 2236  FileInfo - ok
23:48:12.0036 2236  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:48:12.0098 2236  Filetrace - ok
23:48:12.0114 2236  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
23:48:12.0130 2236  flpydisk - ok
23:48:12.0176 2236  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:48:12.0192 2236  FltMgr - ok
23:48:12.0286 2236  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
23:48:12.0348 2236  FontCache - ok
23:48:12.0426 2236  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:48:12.0442 2236  FontCache3.0.0.0 - ok
23:48:12.0473 2236  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:48:12.0488 2236  FsDepends - ok
23:48:12.0520 2236  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:48:12.0535 2236  Fs_Rec - ok
23:48:12.0613 2236  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:48:12.0644 2236  fvevol - ok
23:48:12.0660 2236  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
23:48:12.0676 2236  gagp30kx - ok
23:48:12.0878 2236  [ 261780F6E0AFBBB3F1929A5677AF53B9 ] GDBackupSvc     C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe
23:48:13.0003 2236  GDBackupSvc - ok
23:48:13.0034 2236  [ 3567F5FD2962F63F82F8A37BC0678F75 ] GDBehave        C:\Windows\system32\drivers\GDBehave.sys
23:48:13.0050 2236  GDBehave - ok
23:48:13.0112 2236  [ 850ECBD3D6F9A346425A2839A3EA8302 ] gddcd           C:\Windows\system32\drivers\gddcd64.sys
23:48:13.0128 2236  gddcd - ok
23:48:13.0175 2236  [ 4817DE33D85E5013FFD07D47A71B2E7C ] gddcv           C:\Windows\system32\drivers\gddcv64.sys
23:48:13.0190 2236  gddcv - ok
23:48:13.0331 2236  [ B4D2F8F6857C0FBE0661C8F897A04F5D ] GDFwSvc         C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe
23:48:13.0409 2236  GDFwSvc - ok
23:48:13.0456 2236  [ F3D7EB80B9B36C230D8FCA35B0E6903D ] GDMnIcpt        C:\Windows\system32\drivers\MiniIcpt.sys
23:48:13.0471 2236  GDMnIcpt - ok
23:48:13.0549 2236  [ AEE2F67A657B0E23DE644DC0D2F3A434 ] GDPkIcpt        C:\Windows\system32\drivers\PktIcpt.sys
23:48:13.0565 2236  GDPkIcpt - ok
23:48:13.0705 2236  [ 7101CE2767592BFC42AC1F8A8B27DC7C ] GDScan          C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
23:48:13.0721 2236  GDScan - ok
23:48:13.0814 2236  [ C32EF90495334F14EA53909AE1798A3E ] GDTunerSvc      C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe
23:48:13.0892 2236  GDTunerSvc - ok
23:48:13.0939 2236  [ 5E59DC33362BE700B6EEC0092BFFE979 ] gdwfpcd         C:\Windows\system32\drivers\gdwfpcd64.sys
23:48:13.0955 2236  gdwfpcd - ok
23:48:14.0002 2236  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
23:48:14.0064 2236  gpsvc - ok
23:48:14.0111 2236  [ 21134D22597F061EDF12CD3315C881EA ] GRD             C:\Windows\system32\drivers\GRD.sys
23:48:14.0126 2236  GRD - ok
23:48:14.0220 2236  [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service    C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
23:48:14.0314 2236  Greg_Service - ok
23:48:14.0345 2236  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:48:14.0376 2236  hcw85cir - ok
23:48:14.0454 2236  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:48:14.0516 2236  HdAudAddService - ok
23:48:14.0563 2236  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
23:48:14.0626 2236  HDAudBus - ok
23:48:14.0641 2236  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
23:48:14.0672 2236  HidBatt - ok
23:48:14.0688 2236  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
23:48:14.0704 2236  HidBth - ok
23:48:14.0719 2236  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
23:48:14.0735 2236  HidIr - ok
23:48:14.0766 2236  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
23:48:14.0813 2236  hidserv - ok
23:48:14.0922 2236  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
23:48:14.0938 2236  HidUsb - ok
23:48:14.0984 2236  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:48:15.0031 2236  hkmsvc - ok
23:48:15.0078 2236  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:48:15.0140 2236  HomeGroupListener - ok
23:48:15.0203 2236  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:48:15.0250 2236  HomeGroupProvider - ok
23:48:15.0296 2236  [ C7C7602C10DAE63C95D2733C0C8CA773 ] HookCentre      C:\Windows\system32\drivers\HookCentre.sys
23:48:15.0312 2236  HookCentre - ok
23:48:15.0359 2236  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:48:15.0374 2236  HpSAMD - ok
23:48:15.0468 2236  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:48:15.0562 2236  HTTP - ok
23:48:15.0624 2236  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:48:15.0640 2236  hwpolicy - ok
23:48:15.0718 2236  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
23:48:15.0733 2236  i8042prt - ok
23:48:15.0827 2236  [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:48:15.0858 2236  IAANTMON - ok
23:48:15.0889 2236  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
23:48:15.0905 2236  iaStor - ok
23:48:15.0952 2236  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:48:15.0983 2236  iaStorV - ok
23:48:16.0061 2236  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:48:16.0108 2236  idsvc - ok
23:48:16.0295 2236  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
23:48:16.0544 2236  igfx - ok
23:48:16.0560 2236  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
23:48:16.0576 2236  iirsp - ok
23:48:16.0622 2236  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
23:48:16.0700 2236  IKEEXT - ok
23:48:16.0794 2236  [ 9AA6A93852E36FE76C3F7FC2904F3B01 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:48:16.0888 2236  IntcAzAudAddService - ok
23:48:16.0934 2236  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
23:48:16.0950 2236  intelide - ok
23:48:17.0012 2236  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
23:48:17.0075 2236  intelppm - ok
23:48:17.0122 2236  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:48:17.0168 2236  IPBusEnum - ok
23:48:17.0215 2236  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:48:17.0278 2236  IpFilterDriver - ok
23:48:17.0324 2236  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:48:17.0418 2236  iphlpsvc - ok
23:48:17.0465 2236  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:48:17.0543 2236  IPMIDRV - ok
23:48:17.0590 2236  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:48:17.0699 2236  IPNAT - ok
23:48:17.0714 2236  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:48:17.0839 2236  IRENUM - ok
23:48:17.0870 2236  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:48:17.0886 2236  isapnp - ok
23:48:17.0933 2236  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:48:17.0964 2236  iScsiPrt - ok
23:48:18.0042 2236  [ 249EE2D26CB1530F3BEDE0AC8B9E3099 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
23:48:18.0058 2236  k57nd60a - ok
23:48:18.0167 2236  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
23:48:18.0182 2236  kbdclass - ok
23:48:18.0229 2236  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
23:48:18.0260 2236  kbdhid - ok
23:48:18.0292 2236  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
23:48:18.0323 2236  KeyIso - ok
23:48:18.0354 2236  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:48:18.0370 2236  KSecDD - ok
23:48:18.0416 2236  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:48:18.0432 2236  KSecPkg - ok
23:48:18.0494 2236  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:48:18.0557 2236  ksthunk - ok
23:48:18.0588 2236  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:48:18.0682 2236  KtmRm - ok
23:48:18.0728 2236  [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E             C:\Windows\system32\DRIVERS\L1E62x64.sys
23:48:18.0775 2236  L1E - ok
23:48:18.0806 2236  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
23:48:18.0869 2236  LanmanServer - ok
23:48:18.0900 2236  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:48:18.0962 2236  LanmanWorkstation - ok
23:48:18.0994 2236  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:48:19.0087 2236  lltdio - ok
23:48:19.0118 2236  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:48:19.0165 2236  lltdsvc - ok
23:48:19.0181 2236  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:48:19.0228 2236  lmhosts - ok
23:48:19.0274 2236  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
23:48:19.0290 2236  LSI_FC - ok
23:48:19.0321 2236  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
23:48:19.0337 2236  LSI_SAS - ok
23:48:19.0337 2236  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:48:19.0352 2236  LSI_SAS2 - ok
23:48:19.0368 2236  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:48:19.0384 2236  LSI_SCSI - ok
23:48:19.0430 2236  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
23:48:19.0524 2236  luafv - ok
23:48:19.0618 2236  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:48:19.0680 2236  Mcx2Svc - ok
23:48:19.0696 2236  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
23:48:19.0711 2236  megasas - ok
23:48:19.0742 2236  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
23:48:19.0774 2236  MegaSR - ok
23:48:19.0836 2236  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
23:48:19.0945 2236  MMCSS - ok
23:48:19.0961 2236  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
23:48:19.0992 2236  Modem - ok
23:48:20.0023 2236  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:48:20.0086 2236  monitor - ok
23:48:20.0132 2236  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
23:48:20.0148 2236  mouclass - ok
23:48:20.0210 2236  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:48:20.0273 2236  mouhid - ok
23:48:20.0304 2236  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:48:20.0320 2236  mountmgr - ok
23:48:20.0398 2236  [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:48:20.0413 2236  MozillaMaintenance - ok
23:48:20.0491 2236  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:48:20.0507 2236  mpio - ok
23:48:20.0554 2236  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:48:20.0616 2236  mpsdrv - ok
23:48:20.0694 2236  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:48:20.0834 2236  MpsSvc - ok
23:48:20.0881 2236  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:48:20.0928 2236  MRxDAV - ok
23:48:20.0975 2236  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:48:21.0053 2236  mrxsmb - ok
23:48:21.0100 2236  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:48:21.0115 2236  mrxsmb10 - ok
23:48:21.0193 2236  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:48:21.0209 2236  mrxsmb20 - ok
23:48:21.0256 2236  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
23:48:21.0271 2236  msahci - ok
23:48:21.0318 2236  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:48:21.0334 2236  msdsm - ok
23:48:21.0365 2236  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
23:48:21.0443 2236  MSDTC - ok
23:48:21.0474 2236  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:48:21.0521 2236  Msfs - ok
23:48:21.0536 2236  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:48:21.0568 2236  mshidkmdf - ok
23:48:21.0614 2236  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:48:21.0630 2236  msisadrv - ok
23:48:21.0692 2236  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:48:21.0770 2236  MSiSCSI - ok
23:48:21.0786 2236  msiserver - ok
23:48:21.0802 2236  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:48:21.0880 2236  MSKSSRV - ok
23:48:21.0942 2236  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:48:21.0989 2236  MSPCLOCK - ok
23:48:21.0989 2236  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:48:22.0051 2236  MSPQM - ok
23:48:22.0114 2236  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:48:22.0129 2236  MsRPC - ok
23:48:22.0207 2236  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:48:22.0223 2236  mssmbios - ok
23:48:22.0270 2236  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:48:22.0332 2236  MSTEE - ok
23:48:22.0348 2236  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
23:48:22.0394 2236  MTConfig - ok
23:48:22.0426 2236  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
23:48:22.0457 2236  Mup - ok
23:48:22.0504 2236  [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
23:48:22.0504 2236  mwlPSDFilter - ok
23:48:22.0519 2236  [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ     C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
23:48:22.0535 2236  mwlPSDNServ - ok
23:48:22.0535 2236  [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk     C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
23:48:22.0550 2236  mwlPSDVDisk - ok
23:48:22.0675 2236  [ 2F139207F618EC2933830227EEFFDDB4 ] MWLService      C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
23:48:22.0706 2236  MWLService - ok
23:48:22.0753 2236  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
23:48:22.0847 2236  napagent - ok
23:48:22.0909 2236  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:48:22.0972 2236  NativeWifiP - ok
23:48:23.0050 2236  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:48:23.0096 2236  NDIS - ok
23:48:23.0174 2236  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:48:23.0284 2236  NdisCap - ok
23:48:23.0299 2236  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:48:23.0377 2236  NdisTapi - ok
23:48:23.0471 2236  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:48:23.0518 2236  Ndisuio - ok
23:48:23.0564 2236  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:48:23.0611 2236  NdisWan - ok
23:48:23.0658 2236  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:48:23.0705 2236  NDProxy - ok
23:48:23.0752 2236  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:48:23.0814 2236  NetBIOS - ok
23:48:23.0861 2236  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:48:23.0954 2236  NetBT - ok
23:48:23.0986 2236  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
23:48:24.0001 2236  Netlogon - ok
23:48:24.0079 2236  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
23:48:24.0126 2236  Netman - ok
23:48:24.0173 2236  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
23:48:24.0251 2236  netprofm - ok
23:48:24.0282 2236  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:48:24.0298 2236  NetTcpPortSharing - ok
23:48:24.0344 2236  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
23:48:24.0360 2236  nfrd960 - ok
23:48:24.0438 2236  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:48:24.0500 2236  NlaSvc - ok
23:48:24.0500 2236  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:48:24.0547 2236  Npfs - ok
23:48:24.0578 2236  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
23:48:24.0641 2236  nsi - ok
23:48:24.0641 2236  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:48:24.0703 2236  nsiproxy - ok
23:48:24.0781 2236  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:48:24.0890 2236  Ntfs - ok
23:48:24.0968 2236  [ 14E66F603FB187713AEB02AD3B0390CF ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
23:48:24.0984 2236  NTI IScheduleSvc - ok
23:48:25.0062 2236  [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr         C:\Windows\system32\drivers\NTIDrvr.sys
23:48:25.0093 2236  NTIDrvr - ok
23:48:25.0124 2236  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
23:48:25.0171 2236  Null - ok
23:48:25.0265 2236  [ AD37248BD442D41C9A896E53EB8A85EE ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
23:48:25.0280 2236  NVHDA - ok
23:48:25.0592 2236  [ FD39B98FF1BB8ED3848781497E9D02E0 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:48:26.0029 2236  nvlddmkm - ok
23:48:26.0092 2236  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:48:26.0107 2236  nvraid - ok
23:48:26.0154 2236  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:48:26.0185 2236  nvstor - ok
23:48:26.0263 2236  [ C1668D58547DD0C4A0FBD6AFA20D5890 ] nvsvc           C:\Windows\system32\nvvsvc.exe
23:48:26.0279 2236  nvsvc - ok
23:48:26.0326 2236  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:48:26.0357 2236  nv_agp - ok
23:48:26.0419 2236  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:48:26.0450 2236  ohci1394 - ok
23:48:26.0466 2236  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:48:26.0513 2236  p2pimsvc - ok
23:48:26.0528 2236  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
23:48:26.0560 2236  p2psvc - ok
23:48:26.0606 2236  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
23:48:26.0622 2236  Parport - ok
23:48:26.0653 2236  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:48:26.0669 2236  partmgr - ok
23:48:26.0731 2236  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:48:26.0778 2236  PcaSvc - ok
23:48:26.0809 2236  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
23:48:26.0840 2236  pci - ok
23:48:26.0872 2236  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
23:48:26.0887 2236  pciide - ok
23:48:26.0918 2236  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
23:48:26.0950 2236  pcmcia - ok
23:48:26.0965 2236  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:48:26.0981 2236  pcw - ok
23:48:26.0996 2236  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:48:27.0059 2236  PEAUTH - ok
23:48:27.0137 2236  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:48:27.0168 2236  PerfHost - ok
23:48:27.0230 2236  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
23:48:27.0324 2236  pla - ok
23:48:27.0371 2236  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:48:27.0418 2236  PlugPlay - ok
23:48:27.0449 2236  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:48:27.0464 2236  PNRPAutoReg - ok
23:48:27.0480 2236  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:48:27.0496 2236  PNRPsvc - ok
23:48:27.0527 2236  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:48:27.0589 2236  PolicyAgent - ok
23:48:27.0667 2236  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
23:48:27.0792 2236  Power - ok
23:48:27.0886 2236  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:48:27.0932 2236  PptpMiniport - ok
23:48:27.0964 2236  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
23:48:27.0979 2236  Processor - ok
23:48:28.0057 2236  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:48:28.0088 2236  ProfSvc - ok
23:48:28.0120 2236  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:48:28.0135 2236  ProtectedStorage - ok
23:48:28.0182 2236  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:48:28.0244 2236  Psched - ok
23:48:28.0307 2236  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
23:48:28.0369 2236  ql2300 - ok
23:48:28.0416 2236  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
23:48:28.0432 2236  ql40xx - ok
23:48:28.0478 2236  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
23:48:28.0525 2236  QWAVE - ok
23:48:28.0525 2236  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:48:28.0556 2236  QWAVEdrv - ok
23:48:28.0572 2236  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:48:28.0634 2236  RasAcd - ok
23:48:28.0681 2236  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:48:28.0712 2236  RasAgileVpn - ok
23:48:28.0744 2236  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
23:48:28.0806 2236  RasAuto - ok
23:48:28.0853 2236  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:48:28.0915 2236  Rasl2tp - ok
23:48:28.0946 2236  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
23:48:29.0009 2236  RasMan - ok
23:48:29.0056 2236  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:48:29.0102 2236  RasPppoe - ok
23:48:29.0165 2236  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:48:29.0212 2236  RasSstp - ok
23:48:29.0258 2236  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:48:29.0336 2236  rdbss - ok
23:48:29.0368 2236  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
23:48:29.0399 2236  rdpbus - ok
23:48:29.0399 2236  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:48:29.0477 2236  RDPCDD - ok
23:48:29.0492 2236  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:48:29.0524 2236  RDPENCDD - ok
23:48:29.0539 2236  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:48:29.0586 2236  RDPREFMP - ok
23:48:29.0648 2236  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:48:29.0664 2236  RdpVideoMiniport - ok
23:48:29.0726 2236  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:48:29.0758 2236  RDPWD - ok
23:48:29.0836 2236  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:48:29.0851 2236  rdyboost - ok
23:48:29.0898 2236  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:48:29.0976 2236  RemoteAccess - ok
23:48:30.0007 2236  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:48:30.0054 2236  RemoteRegistry - ok
23:48:30.0085 2236  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:48:30.0132 2236  RpcEptMapper - ok
23:48:30.0163 2236  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
23:48:30.0179 2236  RpcLocator - ok
23:48:30.0226 2236  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
23:48:30.0272 2236  RpcSs - ok
23:48:30.0319 2236  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:48:30.0382 2236  rspndr - ok
23:48:30.0506 2236  [ 2DB8116D52B19216812C4E6D5D837810 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
23:48:30.0522 2236  RSUSBSTOR - ok
23:48:30.0584 2236  RtsUIR - ok
23:48:30.0600 2236  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
23:48:30.0616 2236  SamSs - ok
23:48:30.0678 2236  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:48:30.0694 2236  sbp2port - ok
23:48:30.0756 2236  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:48:30.0818 2236  SCardSvr - ok
23:48:30.0881 2236  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:48:30.0928 2236  scfilter - ok
23:48:31.0021 2236  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
23:48:31.0099 2236  Schedule - ok
23:48:31.0130 2236  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:48:31.0177 2236  SCPolicySvc - ok
23:48:31.0208 2236  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:48:31.0255 2236  SDRSVC - ok
23:48:31.0302 2236  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:48:31.0364 2236  secdrv - ok
23:48:31.0411 2236  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
23:48:31.0474 2236  seclogon - ok
23:48:31.0489 2236  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
23:48:31.0567 2236  SENS - ok
23:48:31.0614 2236  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:48:31.0645 2236  SensrSvc - ok
23:48:31.0645 2236  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
23:48:31.0692 2236  Serenum - ok
23:48:31.0739 2236  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
23:48:31.0770 2236  Serial - ok
23:48:31.0832 2236  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
23:48:31.0848 2236  sermouse - ok
23:48:31.0910 2236  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
23:48:31.0988 2236  SessionEnv - ok
23:48:32.0035 2236  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:48:32.0051 2236  sffdisk - ok
23:48:32.0082 2236  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:48:32.0113 2236  sffp_mmc - ok
23:48:32.0144 2236  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:48:32.0176 2236  sffp_sd - ok
23:48:32.0207 2236  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
23:48:32.0238 2236  sfloppy - ok
23:48:32.0300 2236  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:48:32.0378 2236  SharedAccess - ok
23:48:32.0425 2236  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:48:32.0472 2236  ShellHWDetection - ok
23:48:32.0488 2236  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:48:32.0503 2236  SiSRaid2 - ok
23:48:32.0503 2236  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
23:48:32.0519 2236  SiSRaid4 - ok
23:48:32.0566 2236  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:48:32.0612 2236  Smb - ok
23:48:32.0659 2236  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:48:32.0690 2236  SNMPTRAP - ok
23:48:32.0690 2236  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:48:32.0706 2236  spldr - ok
23:48:32.0815 2236  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
23:48:32.0846 2236  Spooler - ok
23:48:32.0971 2236  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
23:48:33.0065 2236  sppsvc - ok
23:48:33.0080 2236  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:48:33.0158 2236  sppuinotify - ok
23:48:33.0221 2236  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:48:33.0299 2236  srv - ok
23:48:33.0377 2236  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:48:33.0424 2236  srv2 - ok
23:48:33.0502 2236  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:48:33.0580 2236  srvnet - ok
23:48:33.0642 2236  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:48:33.0689 2236  SSDPSRV - ok
23:48:33.0720 2236  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:48:33.0767 2236  SstpSvc - ok
23:48:33.0798 2236  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
23:48:33.0814 2236  stexstor - ok
23:48:33.0860 2236  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
23:48:33.0907 2236  stisvc - ok
23:48:33.0954 2236  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:48:33.0970 2236  swenum - ok
23:48:34.0001 2236  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
23:48:34.0141 2236  swprv - ok
23:48:34.0204 2236  [ ED6D1424E5B0C21A57B28DD8508D6843 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
23:48:34.0219 2236  SynTP - ok
23:48:34.0297 2236  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
23:48:34.0453 2236  SysMain - ok
23:48:34.0484 2236  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:48:34.0516 2236  TabletInputService - ok
23:48:34.0578 2236  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:48:34.0640 2236  TapiSrv - ok
23:48:34.0703 2236  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
23:48:34.0750 2236  TBS - ok
23:48:34.0828 2236  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:48:34.0952 2236  Tcpip - ok
23:48:35.0062 2236  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:48:35.0124 2236  TCPIP6 - ok
23:48:35.0155 2236  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:48:35.0186 2236  tcpipreg - ok
23:48:35.0249 2236  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:48:35.0327 2236  TDPIPE - ok
23:48:35.0405 2236  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:48:35.0483 2236  TDTCP - ok
23:48:35.0545 2236  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:48:35.0576 2236  tdx - ok
23:48:35.0654 2236  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:48:35.0670 2236  TermDD - ok
23:48:35.0717 2236  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
23:48:35.0779 2236  TermService - ok
23:48:35.0810 2236  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
23:48:35.0873 2236  Themes - ok
23:48:35.0888 2236  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
23:48:35.0935 2236  THREADORDER - ok
23:48:35.0982 2236  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
23:48:36.0060 2236  TrkWks - ok
23:48:36.0122 2236  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:48:36.0169 2236  TrustedInstaller - ok
23:48:36.0263 2236  [ 59BD43714E1034A913F019413905D387 ] TS4NT           C:\Windows\system32\Drivers\TS4nt.sys
23:48:36.0294 2236  TS4NT - ok
23:48:36.0403 2236  [ DAC791D10D1BBB3E85628E64C0A6F76B ] TSNxGService    C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe
23:48:36.0419 2236  TSNxGService - ok
23:48:36.0497 2236  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:48:36.0512 2236  tssecsrv - ok
23:48:36.0590 2236  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:48:36.0637 2236  TsUsbFlt - ok
23:48:36.0762 2236  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:48:36.0856 2236  tunnel - ok
23:48:36.0902 2236  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
23:48:36.0918 2236  uagp35 - ok
23:48:37.0012 2236  [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
23:48:37.0012 2236  UBHelper - ok
23:48:37.0058 2236  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:48:37.0136 2236  udfs - ok
23:48:37.0183 2236  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:48:37.0199 2236  UI0Detect - ok
23:48:37.0292 2236  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:48:37.0308 2236  uliagpkx - ok
23:48:37.0370 2236  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
23:48:37.0448 2236  umbus - ok
23:48:37.0495 2236  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
23:48:37.0526 2236  UmPass - ok
23:48:37.0682 2236  [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
23:48:37.0714 2236  Updater Service - ok
23:48:37.0776 2236  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
23:48:37.0823 2236  upnphost - ok
23:48:37.0870 2236  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:48:37.0885 2236  usbccgp - ok
23:48:37.0885 2236  USBCCID - ok
23:48:37.0948 2236  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:48:37.0963 2236  usbcir - ok
23:48:38.0010 2236  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
23:48:38.0026 2236  usbehci - ok
23:48:38.0088 2236  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
23:48:38.0150 2236  usbhub - ok
23:48:38.0213 2236  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
23:48:38.0275 2236  usbohci - ok
23:48:38.0306 2236  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
23:48:38.0338 2236  usbprint - ok
23:48:38.0400 2236  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
23:48:38.0416 2236  usbscan - ok
23:48:38.0447 2236  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:48:38.0494 2236  USBSTOR - ok
23:48:38.0541 2236  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
23:48:38.0603 2236  usbuhci - ok
23:48:38.0697 2236  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
23:48:38.0728 2236  usbvideo - ok
23:48:38.0743 2236  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
23:48:38.0790 2236  UxSms - ok
23:48:38.0821 2236  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
23:48:38.0837 2236  VaultSvc - ok
23:48:38.0915 2236  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:48:38.0931 2236  vdrvroot - ok
23:48:38.0977 2236  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
23:48:39.0102 2236  vds - ok
23:48:39.0211 2236  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:48:39.0227 2236  vga - ok
23:48:39.0258 2236  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:48:39.0336 2236  VgaSave - ok
23:48:39.0383 2236  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
23:48:39.0414 2236  vhdmp - ok
23:48:39.0461 2236  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:48:39.0477 2236  viaide - ok
23:48:39.0555 2236  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:48:39.0570 2236  volmgr - ok
23:48:39.0633 2236  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:48:39.0664 2236  volmgrx - ok
23:48:39.0711 2236  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:48:39.0742 2236  volsnap - ok
23:48:39.0773 2236  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
23:48:39.0789 2236  vsmraid - ok
23:48:39.0882 2236  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
23:48:40.0038 2236  VSS - ok
23:48:40.0038 2236  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
23:48:40.0054 2236  vwifibus - ok
23:48:40.0069 2236  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:48:40.0085 2236  vwififlt - ok
23:48:40.0116 2236  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
23:48:40.0179 2236  vwifimp - ok
23:48:40.0225 2236  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
23:48:40.0272 2236  W32Time - ok
23:48:40.0288 2236  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
23:48:40.0319 2236  WacomPen - ok
23:48:40.0397 2236  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:48:40.0475 2236  WANARP - ok
23:48:40.0506 2236  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:48:40.0537 2236  Wanarpv6 - ok
23:48:40.0615 2236  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
23:48:40.0740 2236  wbengine - ok
23:48:40.0787 2236  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:48:40.0803 2236  WbioSrvc - ok
23:48:40.0849 2236  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:48:40.0881 2236  wcncsvc - ok
23:48:40.0927 2236  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:48:40.0943 2236  WcsPlugInService - ok
23:48:40.0990 2236  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
23:48:41.0005 2236  Wd - ok
23:48:41.0052 2236  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:48:41.0130 2236  Wdf01000 - ok
23:48:41.0146 2236  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:48:41.0224 2236  WdiServiceHost - ok
23:48:41.0239 2236  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:48:41.0255 2236  WdiSystemHost - ok
23:48:41.0302 2236  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
23:48:41.0364 2236  WebClient - ok
23:48:41.0395 2236  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:48:41.0489 2236  Wecsvc - ok
23:48:41.0520 2236  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:48:41.0614 2236  wercplsupport - ok
23:48:41.0645 2236  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:48:41.0692 2236  WerSvc - ok
23:48:41.0770 2236  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:48:41.0817 2236  WfpLwf - ok
23:48:41.0817 2236  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:48:41.0832 2236  WIMMount - ok
23:48:41.0895 2236  WinDefend - ok
23:48:41.0926 2236  WinHttpAutoProxySvc - ok
23:48:42.0019 2236  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:48:42.0129 2236  Winmgmt - ok
23:48:42.0253 2236  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
23:48:42.0394 2236  WinRM - ok
23:48:42.0441 2236  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
23:48:42.0472 2236  WinUsb - ok
23:48:42.0534 2236  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:48:42.0628 2236  Wlansvc - ok
23:48:42.0690 2236  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:48:42.0706 2236  WmiAcpi - ok
23:48:42.0753 2236  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:48:42.0768 2236  wmiApSrv - ok
23:48:42.0862 2236  WMPNetworkSvc - ok
23:48:42.0877 2236  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:48:42.0909 2236  WPCSvc - ok
23:48:42.0940 2236  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:48:42.0971 2236  WPDBusEnum - ok
23:48:43.0002 2236  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:48:43.0096 2236  ws2ifsl - ok
23:48:43.0143 2236  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
23:48:43.0189 2236  wscsvc - ok
23:48:43.0205 2236  WSearch - ok
23:48:43.0299 2236  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:48:43.0377 2236  wuauserv - ok
23:48:43.0408 2236  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:48:43.0486 2236  WudfPf - ok
23:48:43.0595 2236  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
23:48:43.0611 2236  WUDFRd - ok
23:48:43.0657 2236  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:48:43.0720 2236  wudfsvc - ok
23:48:43.0767 2236  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:48:43.0829 2236  WwanSvc - ok
23:48:43.0845 2236  ================ Scan global ===============================
23:48:43.0891 2236  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
23:48:43.0923 2236  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:48:43.0938 2236  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:48:43.0985 2236  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
23:48:44.0016 2236  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
23:48:44.0016 2236  [Global] - ok
23:48:44.0016 2236  ================ Scan MBR ==================================
23:48:44.0032 2236  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
23:48:44.0609 2236  \Device\Harddisk0\DR0 - ok
23:48:44.0609 2236  ================ Scan VBR ==================================
23:48:44.0609 2236  [ 671839086C9803E7C96F94557C9C82F0 ] \Device\Harddisk0\DR0\Partition1
23:48:44.0609 2236  \Device\Harddisk0\DR0\Partition1 - ok
23:48:44.0640 2236  [ C626D9C2F81C401A53F8C30683B293AF ] \Device\Harddisk0\DR0\Partition2
23:48:44.0640 2236  \Device\Harddisk0\DR0\Partition2 - ok
23:48:44.0703 2236  [ 2925AB67F9CF1F0BEBB9823FF1ED444F ] \Device\Harddisk0\DR0\Partition3
23:48:44.0703 2236  \Device\Harddisk0\DR0\Partition3 - ok
23:48:44.0734 2236  [ 213DCDDB117A2BE45454C64606F2385F ] \Device\Harddisk0\DR0\Partition4
23:48:44.0734 2236  \Device\Harddisk0\DR0\Partition4 - ok
23:48:44.0765 2236  [ 7994B9F3C0AA12BE04E0CA24EF5EE5F4 ] \Device\Harddisk0\DR0\Partition5
23:48:44.0765 2236  \Device\Harddisk0\DR0\Partition5 - ok
23:48:44.0765 2236  ============================================================
23:48:44.0765 2236  Scan finished
23:48:44.0765 2236  ============================================================
23:48:44.0781 2624  Detected object count: 0
23:48:44.0781 2624  Actual detected object count: 0
23:49:12.0020 1008  Deinitialize success
         

Antwort

Themen zu PUP.Optional.Installex
administrator, anti-malware, appdata, asus, autostart, dateien, entfernen, explorer, gdata, gen, loswerden, malwarebytes, nichts, notebook, pup.optional.installex, quarantäne, scan, scanner, service, speicher, temp, version, virenscan, virenscanner, win, win7



Ähnliche Themen: PUP.Optional.Installex


  1. Amazon Konto gehackt, Schädlinge PUP.OPTIONAL.MetacrawlerBAR.A + PUP.OPTIONAL.Crossrider.A gefunden
    Log-Analyse und Auswertung - 16.07.2015 (13)
  2. GMER stürzt ab - MBAM erkennt PUP.Optional.Agent, PUP.Optional.IEBho.A, PUP.Optional.MyFreeze.A
    Plagegeister aller Art und deren Bekämpfung - 07.02.2015 (13)
  3. WIN7: Fund PUP.Optional.DigitalSites.A, PUP.Optional.OpenCandy, PUP.Optional.Softonic.A, PUP.Optional.Updater.A. Weitere Vorgehensweise
    Log-Analyse und Auswertung - 08.10.2014 (11)
  4. Trojaner: PUP.Optional.CrossRider.A, PUP.Optional.MySearchDial.A, PUP.Optional.Babylon.A, PUP.Optional.BuenoSearch
    Plagegeister aller Art und deren Bekämpfung - 17.07.2014 (3)
  5. Windows 8 nachdem (PUP.Optional.SweetPage.A) behoben ist, Fund von PUP.Optional.IePluginServiceA
    Log-Analyse und Auswertung - 15.05.2014 (19)
  6. XP SP3 und externe Festplatte haben EXP/CVE-2013-1493.A.Gen, PUP.Optional.SweetIM.A und PUP.Optional.SweetPacks
    Log-Analyse und Auswertung - 19.04.2014 (7)
  7. Security.Hijack, PUP.Optional.OpenCandy, PUP.Optional.Somoto, PUP.Optional.MoviesToolBar etc gefunden
    Plagegeister aller Art und deren Bekämpfung - 16.04.2014 (1)
  8. PUP.Optional.DomalQ / PUP.Optional.BProtector / PUP.Optional.InstallMonetizer.A
    Plagegeister aller Art und deren Bekämpfung - 11.03.2014 (9)
  9. Windows 8: Fund von TR/Dropper.gen, PUP.Optional.Iminent.A, PUP.Optional.BizzyBolt, PUP.Optional.DigitalSites.A
    Log-Analyse und Auswertung - 10.12.2013 (13)
  10. PUP.Optional.Installex
    Log-Analyse und Auswertung - 20.11.2013 (9)
  11. Installex Pop-Up entfernen
    Anleitungen, FAQs & Links - 27.10.2013 (2)
  12. PC läuft langsam Adware Agent,Pup Optional B..,Pup Optional S..,wurde von Malewarebytes gefunden
    Log-Analyse und Auswertung - 04.10.2013 (41)
  13. Malwarebytes und Avira finden PUP.Optional.OpenCandy, PUP.Optional.Softonic, ADWARE/InstallCo.HF
    Log-Analyse und Auswertung - 14.09.2013 (9)
  14. Windows Vista: PUP.Optional.Tarma.A PUP.Optional.OpenCandy PUP.Optional.InstallCore.A
    Plagegeister aller Art und deren Bekämpfung - 11.09.2013 (13)
  15. 2x Windows Vista: PUP.Optional.Tarma.A PUP.Optional.OpenCandy PUP.Optional.InstallCore.A
    Mülltonne - 08.09.2013 (1)
  16. PUP.Optional.BrowserDefender.A, PUP.Optional.Babylon.A, PUP.Optional.Delta
    Log-Analyse und Auswertung - 25.08.2013 (8)
  17. Windows 7 Ultimate 64bit: Malewarebytes findet PUP.Optional.Conduit.A/PUP.Optional.Softonic
    Plagegeister aller Art und deren Bekämpfung - 22.08.2013 (6)

Zum Thema PUP.Optional.Installex - Hallo, Nachdem mein Notebook (Asus7736ZG mit Win7) ziemlich laaaaangsam startete, habe ich Malwarebytes rüberlaufen lassen - so richtig fündig ist er nicht geworden - ABER er fand PUP.Optional.Installex. Das würde - PUP.Optional.Installex...
Archiv
Du betrachtest: PUP.Optional.Installex auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.