Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 23.06.2014, 18:32   #1
holly_s
 
Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Hallo Ihr Lieben,
nachdem ich erst vor gut einer Wocher Eure Hilfe in Anspruch nehmen musste, hat Avira schon wieder 1 verstecktes Objekt gemeldet. MBAM hingegen nicht!

Während ich eben dabei war, hier zu posten, ist plötzlich der PC abgestürzt!

Bitte um Eure Hilfe! Im Gegensatz zu Viren kann man bei Avira versteckte Objekte ja nicht in Quarantäne schieben oder löschen. Auch der PC-Absturz eben ist sonst nie vorgekommen!

Besten Dank vorab,
holly_s

Da ich das Zippen der Logfiles leider nicht hinbekommen habe, muss ich stückeln:

Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 17:26 on 23/06/2014 (Sil)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...
SPTD -> Already disabled


-=E.O.F=-
         
FRST
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-06-2014
Ran by Sil (administrator) on SIL-PC1 on 23-06-2014 17:29:25
Running from C:\Users\Sil\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\LVPrS64H.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Acer) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHLE.EXE
(BillP Studios) C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
(Audible, Inc.) C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
() C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
() C:\Program Files (x86)\Common Files\logishrd\LQCVFX\COCIManager.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7981088 2009-07-20] (Realtek Semiconductor)
HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-08-06] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [261888 2009-08-12] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [Hotkey Utility] => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [629280 2009-08-10] ()
HKLM-x32\...\Run: [EgisTecLiveUpdate] => C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [NortonOnlineBackupReminder] => C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [588648 2009-07-25] (Symantec Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe [202256 2010-07-18] (RealNetworks, Inc.)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-04-23] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [737872 2014-05-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [571392 2011-10-30] (Nikon Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKU\S-1-5-21-2603993766-1395450080-1226671879-1001\...\Run: [Global Registration] => C:\Program Files (x86)\Acer\Registration\GREG.exe [2844704 2009-07-31] (Acer Incorporated)
HKU\S-1-5-21-2603993766-1395450080-1226671879-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE [283232 2012-02-29] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2603993766-1395450080-1226671879-1001\...\Run: [WinPatrol] => C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe [1128000 2014-06-03] (BillP Studios)
HKU\S-1-5-21-2603993766-1395450080-1226671879-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk
ShortcutTarget: Audible Download Manager.lnk -> C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe (Audible, Inc.)
Startup: C:\Users\Sil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x64\psdprotect.dll (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\psdprotect.dll (Egis Technology Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKCU - YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll No File
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} -  No File
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Sil\AppData\Roaming\Mozilla\Firefox\Profiles\v31cbdl0.default-1402685585626
FF DefaultSearchEngine: Wikipedia (de)
FF SelectedSearchEngine: Wikipedia (de)
FF Homepage: https://www.google.de/?gws_rd=ssl
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.775 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=1.0.3.775 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=1.0.0.0 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.775 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @facebook.com/FBPlugin,version=1.0.3 - C:\Users\Sil\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: WOT - C:\Users\Sil\AppData\Roaming\Mozilla\Firefox\Profiles\v31cbdl0.default-1402685585626\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-06-14]
FF Extension: Adblock Plus - C:\Users\Sil\AppData\Roaming\Mozilla\Firefox\Profiles\v31cbdl0.default-1402685585626\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-14]
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

==================== Services (Whitelisted) =================

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-05-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-05-20] (Avira Operations GmbH & Co. KG)
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [625184 2009-04-19] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [311592 2009-08-06] (Egis Technology Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
S3 nosGetPlusHelper; C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll [66112 2010-08-13] (NOS Microsystems Ltd.)
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [207904 2009-04-19] ()
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X]

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [112080 2014-05-20] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-02-13] (Duplex Secure Ltd.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [53760 2012-09-28] (Apple, Inc.) [File not signed]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-23 17:29 - 2014-06-23 17:29 - 00017492 _____ () C:\Users\Sil\Downloads\FRST.txt
2014-06-23 17:29 - 2014-06-23 17:29 - 00000000 ____D () C:\FRST
2014-06-23 17:28 - 2014-06-23 17:28 - 02082816 _____ (Farbar) C:\Users\Sil\Downloads\FRST64.exe
2014-06-23 17:22 - 2014-06-23 17:26 - 00000520 _____ () C:\Users\Sil\Downloads\defogger_disable.log
2014-06-23 17:22 - 2014-06-23 17:22 - 00000020 _____ () C:\Users\Sil\defogger_reenable
2014-06-23 17:19 - 2014-06-23 17:19 - 00050477 _____ () C:\Users\Sil\Downloads\Defogger.exe
2014-06-23 11:43 - 2014-06-23 11:44 - 00000000 ____D () C:\Users\Sil\Desktop\Neuer Ordner (2)
2014-06-23 11:43 - 2014-06-23 11:44 - 00000000 ____D () C:\Users\Sil\Desktop\Neuer Ordner
2014-06-22 22:33 - 2014-06-22 22:33 - 00000000 ____D () C:\Users\Sil\AppData\Local\{B3897641-9915-418E-A95A-2EB9F841C903}
2014-06-21 23:52 - 2014-06-23 17:24 - 00000368 _____ () C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Sil.job
2014-06-21 23:52 - 2014-06-22 11:49 - 00000362 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Sil.job
2014-06-21 23:52 - 2014-06-22 11:49 - 00000358 _____ () C:\Windows\Tasks\ReclaimerUpdateXML_Sil.job
2014-06-21 23:52 - 2014-06-21 23:52 - 00003602 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Sil
2014-06-21 23:52 - 2014-06-21 23:52 - 00002946 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Sil
2014-06-21 23:52 - 2014-06-21 23:52 - 00002942 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateXML_Sil
2014-06-21 23:52 - 2014-06-21 23:52 - 00002650 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Sil
2014-06-20 14:00 - 2014-06-20 14:00 - 00000000 ____D () C:\Users\Sil\AppData\Local\{06DA831D-744B-4EE2-91AC-D7CDF3D44825}
2014-06-20 11:14 - 2014-06-20 11:15 - 00000000 ____D () C:\Users\Sil\AppData\Local\{6D1D0979-2030-4258-A711-85B0FB5F3ED7}
2014-06-17 20:17 - 2014-06-20 11:22 - 00000000 ____D () C:\Users\Sil\Desktop\Kiga-Fest
2014-06-17 13:16 - 2014-06-20 11:24 - 00000000 ____D () C:\Users\Sil\Desktop\WM14
2014-06-14 01:25 - 2014-06-14 01:27 - 00000000 ____D () C:\ProgramData\TEMP
2014-06-14 01:25 - 2014-06-14 01:27 - 00000000 ____D () C:\Program Files (x86)\SpywareBlaster
2014-06-14 01:25 - 2014-06-14 01:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2014-06-14 01:25 - 2014-06-14 01:25 - 00000000 ____D () C:\ProgramData\Licenses
2014-06-14 01:24 - 2014-06-14 01:24 - 04095448 _____ (BrightFort LLC ) C:\Users\Sil\Downloads\spywareblastersetup50.exe
2014-06-14 01:16 - 2014-06-14 01:16 - 00448512 _____ (OldTimer Tools) C:\Users\Sil\Downloads\TFC.exe
2014-06-14 00:58 - 2014-06-14 00:58 - 00700980 _____ () C:\Users\Sil\Downloads\adblock_edge-2.0.7-sm+an+tb+fx-windows.xpi
2014-06-14 00:44 - 2014-06-14 00:44 - 00000000 ____D () C:\Users\Sil\AppData\Roaming\WinPatrol
2014-06-14 00:44 - 2014-06-14 00:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
2014-06-14 00:44 - 2014-06-14 00:44 - 00000000 ____D () C:\ProgramData\InstallMate
2014-06-14 00:44 - 2014-06-14 00:44 - 00000000 ____D () C:\Program Files (x86)\BillP Studios
2014-06-14 00:43 - 2014-06-14 00:43 - 01064488 _____ (BillP Studios) C:\Users\Sil\Downloads\wpsetup.exe
2014-06-14 00:42 - 2014-06-14 00:42 - 00001070 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-06-14 00:39 - 2014-06-14 00:41 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Sil\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-14 00:34 - 2014-06-14 00:34 - 00002944 _____ () C:\Windows\System32\Tasks\{BF3A600A-DAD3-42EE-BC15-229D5AF3DD57}
2014-06-14 00:27 - 2014-06-23 17:24 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-14 00:27 - 2014-06-14 00:27 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-14 00:26 - 2014-06-14 00:27 - 00000363 _____ () C:\Windows\SecuniaPackage.log
2014-06-14 00:13 - 2014-06-14 00:13 - 00000000 ____D () C:\Users\Sil\AppData\Local\Secunia PSI
2014-06-14 00:13 - 2014-06-14 00:13 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-06-14 00:11 - 2014-06-14 00:11 - 05329480 _____ (Secunia) C:\Users\Sil\Downloads\PSISetup_3.0.0.9016.exe
2014-06-13 23:34 - 2014-06-13 23:35 - 00001452 _____ () C:\DelFix.txt
2014-06-13 20:43 - 2014-06-13 20:53 - 00000000 ____D () C:\Alte Firefox-Daten
2014-06-13 20:40 - 2014-06-13 20:40 - 00001127 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-13 20:40 - 2014-06-13 20:40 - 00001115 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-13 20:40 - 2014-06-13 20:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-13 20:40 - 2014-06-13 20:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-13 20:32 - 2014-06-13 20:34 - 29677544 _____ (Mozilla) C:\Users\Sil\Downloads\Firefox_Setup_de30.0.exe
2014-06-13 20:17 - 2014-06-13 20:17 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-06-13 20:14 - 2014-06-13 20:14 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Sil\Downloads\revosetup95.exe
2014-06-12 09:34 - 2014-06-13 23:34 - 00000000 ____D () C:\Windows\ERUNT
2014-06-12 09:12 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-12 08:56 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 08:56 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-12 08:56 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-12 08:56 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 08:56 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-12 08:56 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-12 08:56 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-12 08:56 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 08:56 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-12 08:56 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-12 08:56 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-12 08:56 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-12 08:56 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-12 08:56 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-12 08:56 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-12 08:56 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 08:56 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 08:56 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-12 08:56 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-12 08:56 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-12 08:56 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 08:56 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-12 08:56 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 08:56 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-12 08:56 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-12 08:56 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-12 08:56 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-12 08:56 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-12 08:56 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-12 08:56 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-12 08:56 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 08:56 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-12 08:56 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-12 08:56 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-12 08:56 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 08:56 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-12 08:56 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-12 08:56 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-12 08:56 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-12 08:56 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-12 08:56 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-12 08:56 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 08:56 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-12 08:56 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-12 08:56 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-12 08:56 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 08:56 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-12 08:56 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 08:56 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-12 08:56 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-12 08:56 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-12 08:56 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-12 08:52 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-12 08:52 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-12 08:52 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 08:52 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-12 08:52 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-12 08:52 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-12 08:51 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-12 08:51 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-12 08:51 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-12 08:51 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-12 08:51 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-12 08:51 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-12 08:50 - 2014-06-23 11:49 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-12 08:49 - 2014-06-14 00:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-06-12 08:49 - 2014-06-14 00:42 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-12 08:49 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-12 08:49 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-12 08:49 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-12 08:46 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-12 08:46 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-31 22:59 - 2014-05-31 22:59 - 00001747 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\Program Files\iTunes
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\Program Files\iPod
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-26 21:59 - 2014-05-26 21:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-26 21:59 - 2014-05-26 21:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

==================== One Month Modified Files and Folders =======

2014-06-23 17:29 - 2014-06-23 17:29 - 00017492 _____ () C:\Users\Sil\Downloads\FRST.txt
2014-06-23 17:29 - 2014-06-23 17:29 - 00000000 ____D () C:\FRST
2014-06-23 17:28 - 2014-06-23 17:28 - 02082816 _____ (Farbar) C:\Users\Sil\Downloads\FRST64.exe
2014-06-23 17:28 - 2006-10-10 00:56 - 01061154 _____ () C:\Windows\WindowsUpdate.log
2014-06-23 17:26 - 2014-06-23 17:22 - 00000520 _____ () C:\Users\Sil\Downloads\defogger_disable.log
2014-06-23 17:24 - 2014-06-21 23:52 - 00000368 _____ () C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Sil.job
2014-06-23 17:24 - 2014-06-14 00:27 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-23 17:24 - 2010-02-05 16:15 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-23 17:23 - 2011-10-18 23:23 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-06-23 17:23 - 2009-08-14 19:40 - 02066304 _____ () C:\Windows\PFRO.log
2014-06-23 17:23 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-23 17:23 - 2009-07-14 06:51 - 00470574 _____ () C:\Windows\setupact.log
2014-06-23 17:22 - 2014-06-23 17:22 - 00000020 _____ () C:\Users\Sil\defogger_reenable
2014-06-23 17:22 - 2009-12-22 19:26 - 00000000 ____D () C:\Users\Sil
2014-06-23 17:19 - 2014-06-23 17:19 - 00050477 _____ () C:\Users\Sil\Downloads\Defogger.exe
2014-06-23 17:12 - 2009-07-14 06:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-23 17:12 - 2009-07-14 06:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-23 14:33 - 2010-02-05 16:15 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-23 11:49 - 2014-06-12 08:50 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-23 11:44 - 2014-06-23 11:43 - 00000000 ____D () C:\Users\Sil\Desktop\Neuer Ordner (2)
2014-06-23 11:44 - 2014-06-23 11:43 - 00000000 ____D () C:\Users\Sil\Desktop\Neuer Ordner
2014-06-23 11:34 - 2011-10-30 15:51 - 00000020 ____H () C:\ProgramData\PKP_DLet.DAT
2014-06-23 11:28 - 2010-02-05 16:15 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-23 11:28 - 2010-02-05 16:15 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-23 10:39 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-06-22 22:33 - 2014-06-22 22:33 - 00000000 ____D () C:\Users\Sil\AppData\Local\{B3897641-9915-418E-A95A-2EB9F841C903}
2014-06-22 11:49 - 2014-06-21 23:52 - 00000362 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Sil.job
2014-06-22 11:49 - 2014-06-21 23:52 - 00000358 _____ () C:\Windows\Tasks\ReclaimerUpdateXML_Sil.job
2014-06-21 23:52 - 2014-06-21 23:52 - 00003602 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Sil
2014-06-21 23:52 - 2014-06-21 23:52 - 00002946 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Sil
2014-06-21 23:52 - 2014-06-21 23:52 - 00002942 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateXML_Sil
2014-06-21 23:52 - 2014-06-21 23:52 - 00002650 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Sil
2014-06-20 14:00 - 2014-06-20 14:00 - 00000000 ____D () C:\Users\Sil\AppData\Local\{06DA831D-744B-4EE2-91AC-D7CDF3D44825}
2014-06-20 11:24 - 2014-06-17 13:16 - 00000000 ____D () C:\Users\Sil\Desktop\WM14
2014-06-20 11:22 - 2014-06-17 20:17 - 00000000 ____D () C:\Users\Sil\Desktop\Kiga-Fest
2014-06-20 11:15 - 2014-06-20 11:14 - 00000000 ____D () C:\Users\Sil\AppData\Local\{6D1D0979-2030-4258-A711-85B0FB5F3ED7}
2014-06-14 01:27 - 2014-06-14 01:25 - 00000000 ____D () C:\ProgramData\TEMP
2014-06-14 01:27 - 2014-06-14 01:25 - 00000000 ____D () C:\Program Files (x86)\SpywareBlaster
2014-06-14 01:25 - 2014-06-14 01:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2014-06-14 01:25 - 2014-06-14 01:25 - 00000000 ____D () C:\ProgramData\Licenses
2014-06-14 01:24 - 2014-06-14 01:24 - 04095448 _____ (BrightFort LLC ) C:\Users\Sil\Downloads\spywareblastersetup50.exe
2014-06-14 01:16 - 2014-06-14 01:16 - 00448512 _____ (OldTimer Tools) C:\Users\Sil\Downloads\TFC.exe
2014-06-14 00:58 - 2014-06-14 00:58 - 00700980 _____ () C:\Users\Sil\Downloads\adblock_edge-2.0.7-sm+an+tb+fx-windows.xpi
2014-06-14 00:44 - 2014-06-14 00:44 - 00000000 ____D () C:\Users\Sil\AppData\Roaming\WinPatrol
2014-06-14 00:44 - 2014-06-14 00:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
2014-06-14 00:44 - 2014-06-14 00:44 - 00000000 ____D () C:\ProgramData\InstallMate
2014-06-14 00:44 - 2014-06-14 00:44 - 00000000 ____D () C:\Program Files (x86)\BillP Studios
2014-06-14 00:43 - 2014-06-14 00:43 - 01064488 _____ (BillP Studios) C:\Users\Sil\Downloads\wpsetup.exe
2014-06-14 00:42 - 2014-06-14 00:42 - 00001070 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-06-14 00:42 - 2014-06-12 08:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-06-14 00:42 - 2014-06-12 08:49 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-14 00:41 - 2014-06-14 00:39 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Sil\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-14 00:34 - 2014-06-14 00:34 - 00002944 _____ () C:\Windows\System32\Tasks\{BF3A600A-DAD3-42EE-BC15-229D5AF3DD57}
2014-06-14 00:27 - 2014-06-14 00:27 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-14 00:27 - 2014-06-14 00:26 - 00000363 _____ () C:\Windows\SecuniaPackage.log
2014-06-14 00:27 - 2014-02-14 23:38 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-14 00:27 - 2014-02-14 23:38 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-14 00:13 - 2014-06-14 00:13 - 00000000 ____D () C:\Users\Sil\AppData\Local\Secunia PSI
2014-06-14 00:13 - 2014-06-14 00:13 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-06-14 00:11 - 2014-06-14 00:11 - 05329480 _____ (Secunia) C:\Users\Sil\Downloads\PSISetup_3.0.0.9016.exe
2014-06-13 23:35 - 2014-06-13 23:34 - 00001452 _____ () C:\DelFix.txt
2014-06-13 23:34 - 2014-06-12 09:34 - 00000000 ____D () C:\Windows\ERUNT
2014-06-13 20:53 - 2014-06-13 20:43 - 00000000 ____D () C:\Alte Firefox-Daten
2014-06-13 20:40 - 2014-06-13 20:40 - 00001127 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-13 20:40 - 2014-06-13 20:40 - 00001115 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-13 20:40 - 2014-06-13 20:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-13 20:40 - 2014-06-13 20:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-13 20:34 - 2014-06-13 20:32 - 29677544 _____ (Mozilla) C:\Users\Sil\Downloads\Firefox_Setup_de30.0.exe
2014-06-13 20:17 - 2014-06-13 20:17 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-06-13 20:14 - 2014-06-13 20:14 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Sil\Downloads\revosetup95.exe
2014-06-13 15:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-12 15:18 - 2013-08-15 03:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 15:16 - 2009-12-29 13:34 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-12 15:16 - 2009-08-14 20:03 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 15:14 - 2014-05-06 21:34 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-12 10:30 - 2009-07-14 07:13 - 01620684 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-12 10:30 - 2006-10-10 10:48 - 00699432 _____ () C:\Windows\system32\perfh007.dat
2014-06-12 10:30 - 2006-10-10 10:48 - 00149572 _____ () C:\Windows\system32\perfc007.dat
2014-06-10 20:22 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-06-10 20:21 - 2013-03-09 21:30 - 00000000 ____D () C:\Windows\erdnt
2014-06-10 20:15 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-06-10 19:45 - 2012-12-19 02:37 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-06-08 11:13 - 2014-06-12 08:46 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 11:08 - 2014-06-12 08:46 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-31 22:59 - 2014-05-31 22:59 - 00001747 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\Program Files\iTunes
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\Program Files\iPod
2014-05-31 22:59 - 2014-05-31 22:59 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-31 22:55 - 2009-12-23 00:05 - 00000000 ____D () C:\ProgramData\Apple
2014-05-30 12:21 - 2014-06-12 08:56 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-12 08:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-12 08:56 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-12 08:56 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-12 08:56 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:39 - 2014-06-12 08:56 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:38 - 2014-06-12 08:56 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-12 08:56 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-12 08:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-12 08:56 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-12 08:56 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-12 08:56 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-12 08:56 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-12 08:56 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-12 08:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-12 08:56 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-12 08:56 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-12 08:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-12 08:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-12 08:56 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-12 08:56 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-12 08:56 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-12 08:56 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-12 08:56 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-12 08:56 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:38 - 2014-06-12 08:56 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-12 08:56 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-12 08:56 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-12 08:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-12 08:56 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-12 08:56 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-12 08:56 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-12 08:56 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-12 08:56 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-12 08:56 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-12 08:56 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-12 08:56 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-12 08:56 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-12 08:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-12 08:56 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-12 08:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-12 08:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-12 08:56 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-12 08:56 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-12 08:56 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-12 08:56 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-12 08:56 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-12 08:56 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-12 08:56 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-12 08:56 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-12 08:56 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 09:13 - 2014-06-12 08:56 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-26 22:01 - 2013-10-30 13:08 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-26 21:59 - 2014-05-26 21:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-26 21:59 - 2014-05-26 21:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-26 21:59 - 2014-04-17 21:25 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-05-26 21:59 - 2014-04-17 21:25 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-05-26 21:59 - 2009-12-25 13:21 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-26 21:55 - 2011-07-01 20:44 - 00921512 _____ (Oracle Corporation) C:\Users\Sil\Downloads\jxpiinstall.exe
2014-05-26 17:15 - 2007-07-12 03:49 - 00000000 ____D () C:\Windows\Panther
2014-05-26 16:13 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT

Files to move or delete:
====================
C:\ProgramData\PKP_DLes.DAT
C:\ProgramData\PKP_DLet.DAT
C:\ProgramData\PKP_DLev.DAT


Some content of TEMP:
====================
C:\Users\Sil\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-12 18:20

==================== End Of Log ============================
         
Addition
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-06-2014
Ran by Sil at 2014-06-23 17:30:25
Running from C:\Users\Sil\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{30075A70-B5D2-440B-AFA3-FB2021740121}) (Version: 2.0.2.19 - NewTech Infosystems)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3002 - Acer Incorporated)
Acer GameZone Console (HKLM-x32\...\{8ed9688e-4f79-4308-91ca-f1c37ca142b4}_is1) (Version: 5.1.0.2 - Oberon Media, Inc.)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.02.3004 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.2.0812 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3014 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden
Adobe Download Manager (HKLM-x32\...\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}) (Version: 1.6.2.90 - NOS Microsystems Ltd.)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.6.602.180 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\{C4B32291-F7B2-4BEC-BA4D-4195676A08CC}) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden
Alice Greenfingers (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}) (Version:  - Oberon Media)
Amazon MP3-Downloader 1.0.9 (HKLM-x32\...\Amazon MP3-Downloader) (Version:  - )
Amazonia (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}) (Version:  - Oberon Media)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{1F9241E8-87C1-FB9C-5D76-3FF7D0318A87}) (Version: 3.0.732.0 - ATI Technologies, Inc.)
Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.15 - Audible, Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.4.672 - Avira)
Backup Manager Advance (x32 Version: 2.0.2.19 - NewTech Infosystems) Hidden
Benutzerhandbuch EPSON SX235 Series (HKLM-x32\...\EPSON SX235 Series Useg) (Version:  - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2009.0702.1239.20840 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0702.1239.20840 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2009.0702.1239.20840 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2009.0702.1239.20840 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2009.0702.1239.20840 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.0702.1239.20840 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2009.0702.1239.20840 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Czech (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Danish (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Dutch (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help English (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Finnish (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help French (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help German (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Greek (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Italian (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Japanese (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Korean (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Polish (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Russian (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Spanish (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Swedish (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Thai (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
CCC Help Turkish (x32 Version: 2009.0702.1238.20840 - ATI) Hidden
ccc-core-static (x32 Version: 2009.0702.1239.20840 - Ihr Firmenname) Hidden
ccc-utility64 (Version: 2009.0702.1239.20840 - ATI) Hidden
Chicken Invaders 2 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}) (Version:  - Oberon Media)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dairy Dash (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}) (Version:  - Oberon Media)
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version:  - Oberon Media)
eBay Worldwide (HKLM-x32\...\{AAF89271-2594-468D-B578-96B2E30C41C4}) (Version: 2.1.0703 - OEM)
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON SX235 Series Printer Uninstall (HKLM\...\EPSON SX235 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
Facebook Plug-In (HKCU\...\Facebook Plug-In) (Version:  - Facebook, Inc.)
Farm Frenzy 2 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}) (Version:  - Oberon Media)
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.2.16.327 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.1.27.508 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.1.27.508 - DVDVideoSoft Ltd.)
Free YouTube to iPod Converter version 3.11.35.514 (HKLM-x32\...\Free YouTube to iPod Converter_is1) (Version: 3.11.35.514 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.33.424 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.33.424 - DVDVideoSoft Ltd.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
GPL Ghostscript 8.71 (HKLM-x32\...\GPL Ghostscript 8.71) (Version:  - )
Granny In Paradise (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}) (Version:  - Oberon Media)
GSview 4.9 (HKLM-x32\...\GSview 4.9) (Version:  - )
Heroes of Hellas (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}) (Version:  - Oberon Media)
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 1.00.3003 - Acer Incorporated)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3001 - Acer Incorporated)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.27 - Irfan Skiljan)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 29 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.290 - Sun Microsystems, Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Logitech Vid HD (HKLM-x32\...\Logitech Vid) (Version: 7.2 (7259) - Logitech Inc..)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Merriam Websters Spell Jam (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}) (Version:  - Oberon Media)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0100-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2007 - German/Deutsch (HKLM-x32\...\OMUI.de-de) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office O MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (German) (HKLM-x32\...\{95120000-00AF-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office SharePoint Designer MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (HKLM-x32\...\{68301905-2DEA-41CE-A4D4-E8B443B099BA}) (Version: 3.1.72.0 - Egis Technology Inc.)
Nero 9 Essentials (HKLM-x32\...\{dcecd67a-83b9-491f-93bd-059cab7dff56}) (Version:  - Nero AG)
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero DiscSpeed (x32 Version: 5.4.7.201 - Nero AG) Hidden
Nero DiscSpeed Help (x32 Version: 5.4.4.100 - Nero AG) Hidden
Nero DriveSpeed (x32 Version: 4.4.7.201 - Nero AG) Hidden
Nero DriveSpeed Help (x32 Version: 4.4.4.100 - Nero AG) Hidden
Nero Express Help (x32 Version: 9.4.9.100 - Nero AG) Hidden
Nero InfoTool (x32 Version: 6.4.7.201 - Nero AG) Hidden
Nero InfoTool Help (x32 Version: 6.4.4.100 - Nero AG) Hidden
Nero Installer (x32 Version: 4.4.8.1 - Nero AG) Hidden
Nero Online Upgrade (x32 Version: 1.3.0.0 - Nero AG) Hidden
Nero StartSmart (x32 Version: 9.4.11.209 - Nero AG) Hidden
Nero StartSmart Help (x32 Version: 9.4.1.100 - Nero AG) Hidden
Nero StartSmart OEM (x32 Version: 9.16.0.100 - Nero AG) Hidden
NeroExpress (x32 Version: 9.4.10.505 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Netzwerkhandbuch EPSON SX235 Series (HKLM-x32\...\EPSON SX235 Series Netg) (Version:  - )
Nikon File Uploader 2 (HKLM-x32\...\{D1E7142C-6BC3-49EB-A71A-E5D7ADAC7599}) (Version: 2.00.0001 - Nikon)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.0 - Nikon)
Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.9.0 - Nikon)
Norton Online Backup (HKLM-x32\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.0.36 - Symantec)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.7 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM-x32\...\InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version:  - )
NVIDIA ForceWare Network Access Manager (Version: 1.00.7305 - NVIDIA Corporation) Hidden
O&O MediaRecovery (HKLM-x32\...\{53480870-02D8-48FB-BC27-72C956885168}) (Version: 4.1.1322 - O&O Software GmbH)
Picture Control Utility (HKLM-x32\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.2.0 - Nikon)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.0 - Nikon)
QuickTime (HKLM-x32\...\{7BE15435-2D3E-4B58-867F-9C75BED0208C}) (Version: 7.71.80.42 - Apple Inc.)
RealPlayer (HKLM-x32\...\RealPlayer 12.0) (Version:  - RealNetworks)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5898 - Realtek Semiconductor Corp.)
RealUpgrade 1.0 (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.10.9560 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
Star Defender 4 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114803710}) (Version:  - Oberon Media)
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version:  - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0100-0407-0000-0000000FF1CE}_OMUI.de-de_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_OMUI.de-de_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_OMUI.de-de_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_OMUI.de-de_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_OMUI.de-de_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_OMUI.de-de_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
ViewNX 2 (HKLM\...\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}) (Version: 2.9.0 - Nikon)
VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3004 - Acer Incorporated)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinPatrol (HKLM\...\{84481A87-2316-4923-8FAB-3BA8CA29323D}) (Version: 31.0.2014.0 - BillP Studios)
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version:  - )
Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version:  - Yahoo! Inc.)

==================== Restore Points  =========================

13-06-2014 21:34:54 Ende der Bereinigung
13-06-2014 22:27:01 Installed Adobe Flash Player 14 Plugin.
17-06-2014 09:03:34 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2014-06-10 20:13 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {18248C0C-E0D1-4B06-B9AE-D0E82CE13A73} - System32\Tasks\RNUpgradeHelperResumePrompt_Sil => C:\Users\Sil\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.01\agent\rnupgagent.exe [2014-06-21] (RealNetworks, Inc.)
Task: {38DA3E6D-982C-40D8-9351-94D4E7034816} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-14] (Adobe Systems Incorporated)
Task: {39B63BEF-68A7-4230-9EE9-317390194B8F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {44DD180E-7E01-43BC-B3B1-7CF172CC7A07} - System32\Tasks\RNUpgradeHelperLogonPrompt_Sil => C:\Users\Sil\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.01\agent\rnupgagent.exe [2014-06-21] (RealNetworks, Inc.)
Task: {4A30A0E6-242A-4886-8E88-3ABEA7A08015} - System32\Tasks\ReclaimerUpdateFiles_Sil => C:\Users\Sil\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.01\agent\rnupgagent.exe [2014-06-21] (RealNetworks, Inc.)
Task: {717721E2-8D4F-494C-8920-783CBF435024} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2603993766-1395450080-1226671879-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2010-06-03] (RealNetworks, Inc.)
Task: {7EA735A6-0347-4DFE-B82C-51C737BF2D7E} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2603993766-1395450080-1226671879-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2010-06-03] (RealNetworks, Inc.)
Task: {8238EA1E-3408-4F55-A31A-7AB8DE45EF8A} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)
Task: {94688FFC-C880-4454-A280-30AB0643BCF2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-02-05] (Google Inc.)
Task: {9AAF1365-3070-4ABC-BD8C-CCC393D2D1E1} - System32\Tasks\ReclaimerUpdateXML_Sil => C:\Users\Sil\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.01\agent\rnupgagent.exe [2014-06-21] (RealNetworks, Inc.)
Task: {9CA5FA5D-11C3-4F30-AC5A-9221EFEDA189} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-02-05] (Google Inc.)
Task: {BE9664E6-69C5-473B-8E6A-E2B8C3E5F49E} - System32\Tasks\{BF3A600A-DAD3-42EE-BC15-229D5AF3DD57} => C:\Program Files (x86)\Secunia\PSI\psi.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ReclaimerUpdateFiles_Sil.job => C:\Users\Sil\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.01\agent\rnupgagent.exe
Task: C:\Windows\Tasks\ReclaimerUpdateXML_Sil.job => C:\Users\Sil\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.01\agent\rnupgagent.exe
Task: C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Sil.job => C:\Users\Sil\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.01\agent\rnupgagent.exe

==================== Loaded Modules (whitelisted) =============

2009-04-19 17:34 - 2009-04-19 17:34 - 00625184 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
2009-04-19 17:34 - 2009-04-19 17:34 - 00070176 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll
2009-04-19 17:34 - 2009-04-19 17:34 - 00578080 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll
2009-04-19 17:34 - 2009-04-19 17:34 - 00207904 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
2009-08-10 07:36 - 2009-08-10 07:36 - 00629280 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
2009-10-14 13:36 - 2009-10-14 13:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2009-10-14 13:34 - 2009-10-14 13:34 - 00560472 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
2009-06-23 16:02 - 2009-06-23 16:02 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2006-10-10 00:57 - 2006-10-10 00:57 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-04-23 16:05 - 2014-04-23 16:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 16:04 - 2014-04-23 16:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2009-02-03 02:33 - 2009-02-03 02:33 - 00460199 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2008-09-29 02:55 - 2008-09-29 02:55 - 01076224 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2009-08-10 04:49 - 2009-08-10 04:49 - 00019968 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyHook.dll
2014-06-13 20:40 - 2014-06-06 06:38 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-06-14 00:27 - 2014-06-14 00:27 - 17024688 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:5C321E34

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/15/2014 11:07:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm avscan.exe, Version 14.0.4.632 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 760

Startzeit: 01cf88c8e3b85190

Endzeit: 60000

Anwendungspfad: C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe

Berichts-ID: e8dc6661-f4d0-11e3-ae47-001f16fb9a54

Error: (06/14/2014 00:33:18 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm psi.exe, Version 3.0.0.9016 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 848

Startzeit: 01cf8756d616aff0

Endzeit: 10

Anwendungspfad: C:\Program Files (x86)\Secunia\PSI\psi.exe

Berichts-ID: adeaf1c1-f34a-11e3-a86e-001f16fb9a54

Error: (06/13/2014 08:31:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 11.0.9600.17126, Zeitstempel: 0x53882d40
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7c92c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003185b
ID des fehlerhaften Prozesses: 0x398
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3

Error: (06/13/2014 08:09:08 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/13/2014 03:29:23 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/13/2014 03:29:02 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (06/13/2014 09:36:48 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/13/2014 09:36:44 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/13/2014 09:36:44 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/13/2014 09:35:23 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (06/23/2014 05:24:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/23/2014 05:04:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/23/2014 03:14:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/23/2014 11:47:06 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/23/2014 10:37:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/22/2014 08:18:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/22/2014 04:20:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/22/2014 11:49:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/21/2014 11:51:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/21/2014 10:46:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2


Microsoft Office Sessions:
=========================
Error: (08/11/2012 09:49:53 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1630 seconds with 600 seconds of active time.  This session ended with a crash.

Error: (04/14/2010 00:59:46 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (04/14/2010 00:57:33 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 124 seconds with 120 seconds of active time.  This session ended with a crash.

Error: (03/08/2010 03:59:54 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 173 seconds with 120 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-06-10 20:11:48.624
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-10 20:11:47.906
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 53%
Total physical RAM: 4094.55 MB
Available physical RAM: 1888.03 MB
Total Pagefile: 8187.28 MB
Available Pagefile: 5769.31 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:457.89 GB) (Free:76.68 GB) NTFS
Drive d: (DATA) (Fixed) (Total:457.9 GB) (Free:235.19 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 1551A083)
Partition 1: (Not Active) - (Size=16 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=458 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=458 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         

Alt 23.06.2014, 19:24   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Hi,

Logfile von Avira?
__________________

__________________

Alt 23.06.2014, 19:28   #3
holly_s
 
Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Hallo Schrauber,

kommt:

Code:
ATTFilter
Avira Free Antivirus
Erstellungsdatum der Reportdatei: Montag, 23. Juni 2014  12:12


Das Programm läuft als uneingeschränkte Vollversion.
Online-Dienste stehen zur Verfügung.

Lizenznehmer   : Avira Antivirus Free
Seriennummer   : 0000149996-AVHOE-0000001
Plattform      : Windows 7 Home Premium
Windowsversion : (Service Pack 1)  [6.1.7601]
Boot Modus     : Normal gebootet
Benutzername   : SYSTEM
Computername   : SIL-PC1

Versionsinformationen:
BUILD.DAT      : 14.0.4.672     91560 Bytes  27.05.2014 17:12:00
AVSCAN.EXE     : 14.0.4.632   1030736 Bytes  20.05.2014 08:20:59
AVSCANRC.DLL   : 14.0.4.620     62032 Bytes  20.05.2014 08:20:59
LUKE.DLL       : 14.0.4.620     57936 Bytes  20.05.2014 08:21:42
AVSCPLR.DLL    : 14.0.4.620     89680 Bytes  20.05.2014 08:21:00
AVREG.DLL      : 14.0.4.632    261200 Bytes  20.05.2014 08:20:55
avlode.dll     : 14.0.4.638    583760 Bytes  20.05.2014 08:20:53
avlode.rdf     : 14.0.4.22      64276 Bytes  15.05.2014 15:37:15
XBV00008.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:40
XBV00009.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:40
XBV00010.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:40
XBV00011.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:40
XBV00012.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:40
XBV00013.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:40
XBV00014.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:40
XBV00015.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:40
XBV00016.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00017.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00018.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00019.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00020.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00021.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00022.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00023.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00024.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00025.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00026.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:41
XBV00027.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00028.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00029.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00030.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00031.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00032.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00033.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00034.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00035.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00036.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00037.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00038.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:42
XBV00039.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:43
XBV00040.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:43
XBV00041.VDF   : 8.11.153.142     2048 Bytes  06.06.2014 09:02:43
XBV00106.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:56
XBV00107.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:56
XBV00108.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:56
XBV00109.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:56
XBV00110.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:56
XBV00111.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00112.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00113.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00114.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00115.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00116.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00117.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00118.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00119.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00120.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00121.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00122.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:57
XBV00123.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00124.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00125.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00126.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00127.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00128.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00129.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00130.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00131.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00132.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00133.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:58
XBV00134.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00135.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00136.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00137.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00138.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00139.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00140.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00141.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00142.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00143.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00144.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:02:59
XBV00145.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00146.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00147.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00148.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00149.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00150.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00151.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00152.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00153.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00154.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00155.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:00
XBV00156.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00157.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00158.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00159.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00160.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00161.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00162.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00163.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00164.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00165.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00166.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00167.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:01
XBV00168.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00169.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00170.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00171.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00172.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00173.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00174.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00175.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00176.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00177.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00178.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:02
XBV00179.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00180.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00181.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00182.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00183.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00184.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00185.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00186.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00187.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00188.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00189.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:03
XBV00190.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00191.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00192.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00193.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00194.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00195.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00196.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00197.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00198.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00199.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00200.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00201.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:04
XBV00202.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00203.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00204.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00205.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00206.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00207.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00208.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00209.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00210.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00211.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00212.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:05
XBV00213.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00214.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00215.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00216.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00217.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00218.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00219.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00220.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00221.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00222.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00223.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:06
XBV00224.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00225.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00226.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00227.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00228.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00229.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00230.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00231.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00232.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00233.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00234.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00235.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:07
XBV00236.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00237.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00238.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00239.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00240.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00241.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00242.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00243.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00244.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00245.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00246.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:08
XBV00247.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:09
XBV00248.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:09
XBV00249.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:09
XBV00250.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:09
XBV00251.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:09
XBV00252.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:09
XBV00253.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:09
XBV00254.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:09
XBV00255.VDF   : 8.11.155.44     2048 Bytes  16.06.2014 09:03:09
XBV00000.VDF   : 7.11.70.0   66736640 Bytes  04.04.2013 19:38:30
XBV00001.VDF   : 7.11.74.226  2201600 Bytes  30.04.2013 16:27:42
XBV00002.VDF   : 7.11.80.60   2751488 Bytes  28.05.2013 11:37:18
XBV00003.VDF   : 7.11.85.214  2162688 Bytes  21.06.2013 10:18:45
XBV00004.VDF   : 7.11.91.176  3903488 Bytes  23.07.2013 18:43:26
XBV00005.VDF   : 7.11.98.186  6822912 Bytes  29.08.2013 11:14:30
XBV00006.VDF   : 7.11.139.38 15708672 Bytes  27.03.2014 11:30:41
XBV00007.VDF   : 7.11.152.100  4193792 Bytes  02.06.2014 13:31:15
XBV00042.VDF   : 8.11.153.142   710656 Bytes  06.06.2014 09:02:46
XBV00043.VDF   : 8.11.155.44  1013760 Bytes  16.06.2014 09:02:50
XBV00044.VDF   : 8.11.155.46     3072 Bytes  16.06.2014 09:02:50
XBV00045.VDF   : 8.11.155.52    38912 Bytes  16.06.2014 09:02:50
XBV00046.VDF   : 8.11.155.54    29696 Bytes  16.06.2014 09:02:51
XBV00047.VDF   : 8.11.155.58    13824 Bytes  16.06.2014 09:02:51
XBV00048.VDF   : 8.11.155.62    20480 Bytes  17.06.2014 09:02:51
XBV00049.VDF   : 8.11.155.64     5632 Bytes  17.06.2014 09:02:51
XBV00050.VDF   : 8.11.155.66   139264 Bytes  17.06.2014 18:17:06
XBV00051.VDF   : 8.11.155.68     2048 Bytes  17.06.2014 18:17:06
XBV00052.VDF   : 8.11.155.70     6144 Bytes  17.06.2014 18:17:06
XBV00053.VDF   : 8.11.155.74   180224 Bytes  17.06.2014 18:17:07
XBV00054.VDF   : 8.11.155.78    18432 Bytes  17.06.2014 09:05:13
XBV00055.VDF   : 8.11.155.80     6144 Bytes  17.06.2014 09:05:14
XBV00056.VDF   : 8.11.155.82     4608 Bytes  18.06.2014 09:05:14
XBV00057.VDF   : 8.11.155.86    17408 Bytes  18.06.2014 09:05:14
XBV00058.VDF   : 8.11.155.100   144896 Bytes  18.06.2014 09:05:15
XBV00059.VDF   : 8.11.155.114    25088 Bytes  18.06.2014 11:06:01
XBV00060.VDF   : 8.11.155.128     2048 Bytes  18.06.2014 11:06:01
XBV00061.VDF   : 8.11.155.146    27648 Bytes  18.06.2014 11:06:01
XBV00062.VDF   : 8.11.155.148     2048 Bytes  18.06.2014 11:06:02
XBV00063.VDF   : 8.11.155.150   148992 Bytes  18.06.2014 11:06:02
XBV00064.VDF   : 8.11.155.152     5120 Bytes  18.06.2014 11:06:02
XBV00065.VDF   : 8.11.155.156    12800 Bytes  18.06.2014 11:06:02
XBV00066.VDF   : 8.11.155.158     2048 Bytes  18.06.2014 11:06:03
XBV00067.VDF   : 8.11.155.160     2048 Bytes  18.06.2014 11:06:03
XBV00068.VDF   : 8.11.155.164     7680 Bytes  18.06.2014 11:06:03
XBV00069.VDF   : 8.11.155.168    18432 Bytes  19.06.2014 11:06:03
XBV00070.VDF   : 8.11.155.172     2048 Bytes  19.06.2014 11:06:03
XBV00071.VDF   : 8.11.155.174     7680 Bytes  19.06.2014 07:41:28
XBV00072.VDF   : 8.11.155.176     2048 Bytes  19.06.2014 07:41:28
XBV00073.VDF   : 8.11.155.178     7680 Bytes  19.06.2014 07:41:29
XBV00074.VDF   : 8.11.155.180     5120 Bytes  19.06.2014 07:41:29
XBV00075.VDF   : 8.11.155.182     4608 Bytes  19.06.2014 07:41:29
XBV00076.VDF   : 8.11.155.184     6144 Bytes  19.06.2014 07:41:29
XBV00077.VDF   : 8.11.155.186     4608 Bytes  19.06.2014 07:41:29
XBV00078.VDF   : 8.11.155.188     5632 Bytes  19.06.2014 07:41:29
XBV00079.VDF   : 8.11.155.190     5120 Bytes  19.06.2014 07:41:29
XBV00080.VDF   : 8.11.155.192     2048 Bytes  19.06.2014 07:41:29
XBV00081.VDF   : 8.11.155.196    17408 Bytes  19.06.2014 07:41:29
XBV00082.VDF   : 8.11.155.200     2048 Bytes  19.06.2014 07:41:30
XBV00083.VDF   : 8.11.155.202     5632 Bytes  20.06.2014 07:41:30
XBV00084.VDF   : 8.11.155.204    14848 Bytes  20.06.2014 07:41:30
XBV00085.VDF   : 8.11.155.206     3072 Bytes  20.06.2014 07:41:30
XBV00086.VDF   : 8.11.155.208     2048 Bytes  20.06.2014 07:41:30
XBV00087.VDF   : 8.11.155.210    11264 Bytes  20.06.2014 16:16:52
XBV00088.VDF   : 8.11.155.214     4608 Bytes  20.06.2014 16:16:52
XBV00089.VDF   : 8.11.155.218     8704 Bytes  20.06.2014 08:51:32
XBV00090.VDF   : 8.11.155.222     2048 Bytes  20.06.2014 08:51:32
XBV00091.VDF   : 8.11.155.224     2048 Bytes  20.06.2014 08:51:33
XBV00092.VDF   : 8.11.155.228   151552 Bytes  20.06.2014 08:51:34
XBV00093.VDF   : 8.11.155.242    13312 Bytes  21.06.2014 08:51:34
XBV00094.VDF   : 8.11.156.2     12800 Bytes  21.06.2014 08:51:34
XBV00095.VDF   : 8.11.156.4     58368 Bytes  21.06.2014 08:51:37
XBV00096.VDF   : 8.11.156.18   146944 Bytes  21.06.2014 09:54:59
XBV00097.VDF   : 8.11.156.20     2048 Bytes  21.06.2014 09:54:59
XBV00098.VDF   : 8.11.156.22    49152 Bytes  22.06.2014 09:54:59
XBV00099.VDF   : 8.11.156.24     2048 Bytes  22.06.2014 09:54:59
XBV00100.VDF   : 8.11.156.26     9216 Bytes  22.06.2014 18:24:06
XBV00101.VDF   : 8.11.156.30     2048 Bytes  22.06.2014 18:24:06
XBV00102.VDF   : 8.11.156.32    12800 Bytes  22.06.2014 18:24:07
XBV00103.VDF   : 8.11.156.34    36352 Bytes  23.06.2014 08:42:32
XBV00104.VDF   : 8.11.156.36     2560 Bytes  23.06.2014 08:42:32
XBV00105.VDF   : 8.11.156.38     2048 Bytes  23.06.2014 08:42:33
LOCAL001.VDF   : 8.11.156.38 106887680 Bytes  23.06.2014 08:42:45
Engineversion  : 8.3.20.10 
AEVDF.DLL      : 8.3.0.4       118976 Bytes  21.03.2014 08:53:27
AESCRIPT.DLL   : 8.1.4.212     528584 Bytes  13.06.2014 13:35:09
AESCN.DLL      : 8.3.1.2       135360 Bytes  29.05.2014 09:57:57
AESBX.DLL      : 8.2.20.24    1409224 Bytes  08.05.2014 14:50:23
AERDL.DLL      : 8.2.0.138     704888 Bytes  03.12.2013 07:58:03
AEPACK.DLL     : 8.4.0.24      778440 Bytes  13.05.2014 15:22:45
AEOFFICE.DLL   : 8.3.0.4       205000 Bytes  17.04.2014 19:15:55
AEHEUR.DLL     : 8.1.4.1112   6738120 Bytes  13.06.2014 13:35:08
AEHELP.DLL     : 8.3.1.0       278728 Bytes  29.05.2014 09:57:42
AEGEN.DLL      : 8.1.7.28      450752 Bytes  06.06.2014 17:13:49
AEEXP.DLL      : 8.4.2.2       237760 Bytes  04.06.2014 13:33:33
AEEMU.DLL      : 8.1.3.2       393587 Bytes  19.09.2012 14:42:55
AEDROID.DLL    : 8.4.2.24      442568 Bytes  04.06.2014 13:33:34
AECORE.DLL     : 8.3.1.4       241864 Bytes  06.06.2014 17:13:48
AEBB.DLL       : 8.1.1.4        53619 Bytes  15.11.2012 18:10:25
AVWINLL.DLL    : 14.0.4.620     24144 Bytes  20.05.2014 08:20:41
AVPREF.DLL     : 14.0.4.632     50256 Bytes  20.05.2014 08:20:54
AVREP.DLL      : 14.0.4.620    219216 Bytes  20.05.2014 08:20:55
AVARKT.DLL     : 14.0.4.632    225872 Bytes  20.05.2014 08:20:44
AVEVTLOG.DLL   : 14.0.4.620    182352 Bytes  20.05.2014 08:20:49
SQLITE3.DLL    : 14.0.4.620    452176 Bytes  20.05.2014 08:21:53
AVSMTP.DLL     : 14.0.4.620     76368 Bytes  20.05.2014 08:21:02
NETNT.DLL      : 14.0.4.620     13392 Bytes  20.05.2014 08:21:42
RCIMAGE.DLL    : 14.0.4.620   4979280 Bytes  20.05.2014 08:20:42
RCTEXT.DLL     : 14.0.4.620     73808 Bytes  20.05.2014 08:20:42

Konfiguration für den aktuellen Suchlauf:
Job Name..............................: Vollständige Systemprüfung
Konfigurationsdatei...................: C:\Program Files (x86)\Avira\AntiVir Desktop\sysscan.avp
Protokollierung.......................: standard
Primäre Aktion........................: Interaktiv
Sekundäre Aktion......................: Ignorieren
Durchsuche Masterbootsektoren.........: ein
Durchsuche Bootsektoren...............: ein
Bootsektoren..........................: C:, D:, 
Durchsuche aktive Programme...........: ein
Laufende Programme erweitert..........: ein
Durchsuche Registrierung..............: ein
Suche nach Rootkits...................: ein
Integritätsprüfung von Systemdateien..: aus
Prüfe alle Dateien....................: Alle Dateien
Durchsuche Archive....................: ein
Rekursionstiefe einschränken..........: 20
Archiv Smart Extensions...............: ein
Makrovirenheuristik...................: ein
Dateiheuristik........................: erweitert

Beginn des Suchlaufs: Montag, 23. Juni 2014  12:12

Der Suchlauf über die Bootsektoren wird begonnen:
Bootsektor 'HDD0(C:, D:)'
    [INFO]      Es wurde kein Virus gefunden!

Der Suchlauf nach versteckten Objekten wird begonnen.
Versteckter Treiber
  [HINWEIS]   Eine Speicherveränderung wurde entdeckt, die möglicherweise zur versteckten Dateizugriffen missbraucht werden könnte.

Der Suchlauf über gestartete Prozesse wird begonnen:
Durchsuche Prozess 'svchost.exe' - '52' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'atiesrxx.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '100' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '103' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '86' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '160' Modul(e) wurden durchsucht
Durchsuche Prozess 'UMVPFSrv.exe' - '29' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '86' Modul(e) wurden durchsucht
Durchsuche Prozess 'atieclxx.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'spoolsv.exe' - '91' Modul(e) wurden durchsucht
Durchsuche Prozess 'sched.exe' - '60' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '61' Modul(e) wurden durchsucht
Durchsuche Prozess 'NetworkLicenseServer.exe' - '48' Modul(e) wurden durchsucht
Durchsuche Prozess 'armsvc.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'avguard.exe' - '108' Modul(e) wurden durchsucht
Durchsuche Prozess 'AppleMobileDeviceService.exe' - '70' Modul(e) wurden durchsucht
Durchsuche Prozess 'mDNSResponder.exe' - '35' Modul(e) wurden durchsucht
Durchsuche Prozess 'E_S50RPB.EXE' - '19' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '60' Modul(e) wurden durchsucht
Durchsuche Prozess 'GregHSRW.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'LVPrcSrv.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'MWLService.exe' - '51' Modul(e) wurden durchsucht
Durchsuche Prozess 'LVPrS64H.exe' - '29' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '21' Modul(e) wurden durchsucht
Durchsuche Prozess 'IScheduleSvc.exe' - '73' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '21' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '46' Modul(e) wurden durchsucht
Durchsuche Prozess 'UpdaterService.exe' - '27' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '63' Modul(e) wurden durchsucht
Durchsuche Prozess 'WLIDSVC.EXE' - '76' Modul(e) wurden durchsucht
Durchsuche Prozess 'YahooAUService.exe' - '58' Modul(e) wurden durchsucht
Durchsuche Prozess 'nSvcAppFlt.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'nSvcIp.exe' - '42' Modul(e) wurden durchsucht
Durchsuche Prozess 'WLIDSvcM.exe' - '17' Modul(e) wurden durchsucht
Durchsuche Prozess 'Dwm.exe' - '31' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskhost.exe' - '55' Modul(e) wurden durchsucht
Durchsuche Prozess 'Explorer.EXE' - '173' Modul(e) wurden durchsucht
Durchsuche Prozess 'RAVCpl64.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'mwlDaemon.exe' - '80' Modul(e) wurden durchsucht
Durchsuche Prozess 'E_IATIHLE.EXE' - '29' Modul(e) wurden durchsucht
Durchsuche Prozess 'WinPatrol.exe' - '47' Modul(e) wurden durchsucht
Durchsuche Prozess 'BackupManagerTray.exe' - '39' Modul(e) wurden durchsucht
Durchsuche Prozess 'HotkeyUtility.exe' - '57' Modul(e) wurden durchsucht
Durchsuche Prozess 'EgisUpdate.exe' - '41' Modul(e) wurden durchsucht
Durchsuche Prozess 'AudibleDownloadHelper.exe' - '87' Modul(e) wurden durchsucht
Durchsuche Prozess 'realsched.exe' - '39' Modul(e) wurden durchsucht
Durchsuche Prozess 'LWS.exe' - '78' Modul(e) wurden durchsucht
Durchsuche Prozess 'ONENOTEM.EXE' - '27' Modul(e) wurden durchsucht
Durchsuche Prozess 'MOM.exe' - '71' Modul(e) wurden durchsucht
Durchsuche Prozess 'EEventManager.exe' - '67' Modul(e) wurden durchsucht
Durchsuche Prozess 'avgnt.exe' - '100' Modul(e) wurden durchsucht
Durchsuche Prozess 'iTunesHelper.exe' - '79' Modul(e) wurden durchsucht
Durchsuche Prozess 'COCIManager.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'CCC.exe' - '156' Modul(e) wurden durchsucht
Durchsuche Prozess 'avshadow.exe' - '29' Modul(e) wurden durchsucht
Durchsuche Prozess 'iPodService.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchIndexer.exe' - '54' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'WUDFHost.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmpnetwk.exe' - '126' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '59' Modul(e) wurden durchsucht
Durchsuche Prozess 'DllHost.exe' - '45' Modul(e) wurden durchsucht
Durchsuche Prozess 'avcenter.exe' - '151' Modul(e) wurden durchsucht
Durchsuche Prozess 'avscan.exe' - '131' Modul(e) wurden durchsucht
Durchsuche Prozess 'firefox.exe' - '154' Modul(e) wurden durchsucht
Durchsuche Prozess 'vssvc.exe' - '47' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskeng.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'plugin-container.exe' - '83' Modul(e) wurden durchsucht
Durchsuche Prozess 'FlashPlayerPlugin_14_0_0_125.exe' - '55' Modul(e) wurden durchsucht
Durchsuche Prozess 'FlashPlayerPlugin_14_0_0_125.exe' - '64' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchProtocolHost.exe' - '29' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchFilterHost.exe' - '27' Modul(e) wurden durchsucht
Durchsuche Prozess 'smss.exe' - '2' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '18' Modul(e) wurden durchsucht
Durchsuche Prozess 'wininit.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '16' Modul(e) wurden durchsucht
Durchsuche Prozess 'services.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsass.exe' - '73' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsm.exe' - '16' Modul(e) wurden durchsucht
Durchsuche Prozess 'winlogon.exe' - '31' Modul(e) wurden durchsucht

Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen:
Die Registry wurde durchsucht ( '24404' Dateien ).


Der Suchlauf über die ausgewählten Dateien wird begonnen:

Beginne mit der Suche in 'C:\' <Acer>
Beginne mit der Suche in 'D:\' <DATA>


Ende des Suchlaufs: Montag, 23. Juni 2014  15:11
Benötigte Zeit:  2:59:03 Stunde(n)

Der Suchlauf wurde vollständig durchgeführt.

  42291 Verzeichnisse wurden überprüft
 939295 Dateien wurden geprüft
      0 Viren bzw. unerwünschte Programme wurden gefunden
      0 Dateien wurden als verdächtig eingestuft
      0 Dateien wurden gelöscht
      0 Viren bzw. unerwünschte Programme wurden repariert
      0 Dateien wurden in die Quarantäne verschoben
      0 Dateien wurden umbenannt
      0 Dateien konnten nicht durchsucht werden
 939295 Dateien ohne Befall
   8768 Archive wurden durchsucht
      0 Warnungen
      1 Hinweise
 1098636 Objekte wurden beim Rootkitscan durchsucht
      1 Versteckte Objekte wurden gefunden
         
und Gmer:

Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-06-23 17:54:52
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\0000005e ST310005 rev.CC44 931,51GB
Running: Gmer-19357.exe; Driver: C:\Users\Sil\AppData\Local\Temp\kfddypow.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528                                                                                 fffff80003009000 16 bytes [8B, E3, 41, 5F, 41, 5E, 41, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 545                                                                                 fffff80003009011 35 bytes {LEA ECX, [RSP+0x70]; CALL 0x3d64f}

---- User code sections - GMER 2.1 ----

.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17      0000000076e91401 2 bytes JMP 000000010779a47c
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17        0000000076e91419 2 bytes JMP 000000010779a494
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17      0000000076e91431 2 bytes JMP 000000010779a4ac
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42      0000000076e9144a 2 bytes JMP 0000000076f5fcc5
.text     ...                                                                                                                                                * 9
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17         0000000076e914dd 2 bytes JMP 000000010779a558
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17  0000000076e914f5 2 bytes JMP 000000010779a570
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17         0000000076e9150d 2 bytes JMP 000000010779a588
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17  0000000076e91525 2 bytes JMP 000000010779a5a0
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17        0000000076e9153d 2 bytes JMP 000000010779a5b8
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17             0000000076e91555 2 bytes JMP 000000010779a5d0
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17      0000000076e9156d 2 bytes JMP 000000010779a5e8
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17        0000000076e91585 2 bytes JMP 000000010779a600
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17           0000000076e9159d 2 bytes JMP 000000010779a618
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17        0000000076e915b5 2 bytes JMP 000000010779a630
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17      0000000076e915cd 2 bytes JMP 000000015d37ce48
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20  0000000076e916b2 2 bytes JMP 000000010779a72d
.text     C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe[1228] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31  0000000076e916bd 2 bytes JMP 000000010779a738
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                         0000000076e91401 2 bytes JMP 000000010779a47c
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                           0000000076e91419 2 bytes JMP 000000010779a494
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                         0000000076e91431 2 bytes JMP 000000010779a4ac
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                         0000000076e9144a 2 bytes JMP 0000000076f5fcc5
.text     ...                                                                                                                                                * 9
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                            0000000076e914dd 2 bytes JMP 000000010779a558
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                     0000000076e914f5 2 bytes JMP 000000010779a570
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                            0000000076e9150d 2 bytes JMP 000000010779a588
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                     0000000076e91525 2 bytes JMP 000000010779a5a0
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                           0000000076e9153d 2 bytes JMP 000000010779a5b8
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                0000000076e91555 2 bytes JMP 000000010779a5d0
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                         0000000076e9156d 2 bytes JMP 000000010779a5e8
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                           0000000076e91585 2 bytes JMP 000000010779a600
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                              0000000076e9159d 2 bytes JMP 000000010779a618
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                           0000000076e915b5 2 bytes JMP 000000010779a630
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                         0000000076e915cd 2 bytes JMP 000000015d37ce48
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                     0000000076e916b2 2 bytes JMP 000000010779a72d
.text     C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe[3376] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                     0000000076e916bd 2 bytes JMP 000000010779a738
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\kernel32.dll!FindResourceW                                  00000000769f5939 5 bytes JMP 0000000100440980
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\kernel32.dll!FindResourceA                                  0000000076a0e98b 5 bytes JMP 0000000100440930
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\user32.DLL!LoadStringW                                      0000000075318eb9 5 bytes JMP 0000000100440fd0
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\user32.DLL!LoadStringA                                      000000007531db21 5 bytes JMP 0000000100441110
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\user32.DLL!LoadMenuW                                        0000000075324391 5 bytes JMP 0000000100440b40
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\user32.DLL!LoadMenuA                                        0000000075334eef 5 bytes JMP 0000000100440ad0
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\user32.DLL!CreateDialogParamA                               0000000075335246 5 bytes JMP 00000001004409d0
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\user32.DLL!CreateDialogParamW                               00000000753410dc 5 bytes JMP 0000000100440a50
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                         0000000076e91401 2 bytes JMP 000000010779a47c
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                           0000000076e91419 2 bytes JMP 000000010779a494
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                         0000000076e91431 2 bytes JMP 000000010779a4ac
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                         0000000076e9144a 2 bytes JMP 0000000076f5fcc5
.text     ...                                                                                                                                                * 9
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                            0000000076e914dd 2 bytes JMP 000000010779a558
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                     0000000076e914f5 2 bytes JMP 000000010779a570
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                            0000000076e9150d 2 bytes JMP 000000010779a588
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                     0000000076e91525 2 bytes JMP 000000010779a5a0
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                           0000000076e9153d 2 bytes JMP 000000010779a5b8
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                0000000076e91555 2 bytes JMP 000000010779a5d0
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                         0000000076e9156d 2 bytes JMP 000000010779a5e8
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                           0000000076e91585 2 bytes JMP 000000010779a600
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                              0000000076e9159d 2 bytes JMP 000000010779a618
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                           0000000076e915b5 2 bytes JMP 000000010779a630
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                         0000000076e915cd 2 bytes JMP 000000015d37ce48
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                     0000000076e916b2 2 bytes JMP 000000010779a72d
.text     C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe[3688] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                     0000000076e916bd 2 bytes JMP 000000010779a738
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                           0000000076e91401 2 bytes JMP 000000010779a47c
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                             0000000076e91419 2 bytes JMP 000000010779a494
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                           0000000076e91431 2 bytes JMP 000000010779a4ac
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                           0000000076e9144a 2 bytes JMP 0000000076f5fcc5
.text     ...                                                                                                                                                * 9
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                              0000000076e914dd 2 bytes JMP 000000010779a558
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                       0000000076e914f5 2 bytes JMP 000000010779a570
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                              0000000076e9150d 2 bytes JMP 000000010779a588
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                       0000000076e91525 2 bytes JMP 000000010779a5a0
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                             0000000076e9153d 2 bytes JMP 000000010779a5b8
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                  0000000076e91555 2 bytes JMP 000000010779a5d0
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                           0000000076e9156d 2 bytes JMP 000000010779a5e8
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                             0000000076e91585 2 bytes JMP 000000010779a600
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                0000000076e9159d 2 bytes JMP 000000010779a618
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                             0000000076e915b5 2 bytes JMP 000000010779a630
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                           0000000076e915cd 2 bytes JMP 000000015d37ce48
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                       0000000076e916b2 2 bytes JMP 000000010779a72d
.text     C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe[3800] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                       0000000076e916bd 2 bytes JMP 000000010779a738
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                0000000076e91401 2 bytes JMP 000000010779a47c
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                  0000000076e91419 2 bytes JMP 000000010779a494
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                0000000076e91431 2 bytes JMP 000000010779a4ac
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                0000000076e9144a 2 bytes JMP 0000000076f5fcc5
.text     ...                                                                                                                                                * 9
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                   0000000076e914dd 2 bytes JMP 000000010779a558
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17            0000000076e914f5 2 bytes JMP 000000010779a570
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                   0000000076e9150d 2 bytes JMP 000000010779a588
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17            0000000076e91525 2 bytes JMP 000000010779a5a0
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                  0000000076e9153d 2 bytes JMP 000000010779a5b8
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                       0000000076e91555 2 bytes JMP 000000010779a5d0
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                0000000076e9156d 2 bytes JMP 000000010779a5e8
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                  0000000076e91585 2 bytes JMP 000000010779a600
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                     0000000076e9159d 2 bytes JMP 000000010779a618
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                  0000000076e915b5 2 bytes JMP 000000010779a630
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                0000000076e915cd 2 bytes JMP 000000015d37ce48
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20            0000000076e916b2 2 bytes JMP 000000010779a72d
.text     C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[3872] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31            0000000076e916bd 2 bytes JMP 000000010779a738
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                  0000000076e91401 2 bytes JMP 000000010779a47c
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                    0000000076e91419 2 bytes JMP 000000010779a494
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                  0000000076e91431 2 bytes JMP 000000010779a4ac
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                  0000000076e9144a 2 bytes JMP 0000000076f5fcc5
.text     ...                                                                                                                                                * 9
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                     0000000076e914dd 2 bytes JMP 000000010779a558
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17              0000000076e914f5 2 bytes JMP 000000010779a570
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                     0000000076e9150d 2 bytes JMP 000000010779a588
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17              0000000076e91525 2 bytes JMP 000000010779a5a0
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                    0000000076e9153d 2 bytes JMP 000000010779a5b8
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                         0000000076e91555 2 bytes JMP 000000010779a5d0
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                  0000000076e9156d 2 bytes JMP 000000010779a5e8
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                    0000000076e91585 2 bytes JMP 000000010779a600
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                       0000000076e9159d 2 bytes JMP 000000010779a618
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                    0000000076e915b5 2 bytes JMP 000000010779a630
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                  0000000076e915cd 2 bytes JMP 000000015d37ce48
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20              0000000076e916b2 2 bytes JMP 000000010779a72d
.text     C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[3576] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31              0000000076e916bd 2 bytes JMP 000000010779a738

---- Disk sectors - GMER 2.1 ----

Disk      \Device\Harddisk0\DR0                                                                                                                              unknown MBR code

---- EOF - GMER 2.1 ----
         
__________________

Alt 24.06.2014, 13:27   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



hi,

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.06.2014, 14:29   #5
holly_s
 
Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Hi Schrauber,

die beiden Programme haben nichts gefunden. Zwischenfrage: Ohne Änderungen an den Einstellungen vorgenommen zu haben, werden Videos auf YouTube von gestern auf heute nur noch in einem großen oder noch größerem Bild dargstellt. Ein Klick auf die Einstellungen rechts untem im Video helfen nicht. Könnte dies mit dem versteckten Objekt zusammenhängen oder ist das ein YouTube spezifisches Problem?
Danke!

mbar
Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org

Database version: v2014.06.24.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17126
Sil :: SIL-PC1 [administrator]

24.06.2014 13:58:46
mbar-log-2014-06-24 (13-58-46).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 294736
Time elapsed: 17 minute(s), 54 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
TDDSSKiller:
Code:
ATTFilter
14:22:32.0376 0x1600  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
14:22:37.0852 0x1600  ============================================================
14:22:37.0852 0x1600  Current date / time: 2014/06/24 14:22:37.0852
14:22:37.0852 0x1600  SystemInfo:
14:22:37.0852 0x1600  
14:22:37.0852 0x1600  OS Version: 6.1.7601 ServicePack: 1.0
14:22:37.0852 0x1600  Product type: Workstation
14:22:37.0852 0x1600  ComputerName: SIL-PC1
14:22:37.0852 0x1600  UserName: Sil
14:22:37.0852 0x1600  Windows directory: C:\Windows
14:22:37.0852 0x1600  System windows directory: C:\Windows
14:22:37.0852 0x1600  Running under WOW64
14:22:37.0852 0x1600  Processor architecture: Intel x64
14:22:37.0852 0x1600  Number of processors: 4
14:22:37.0852 0x1600  Page size: 0x1000
14:22:37.0852 0x1600  Boot type: Normal boot
14:22:37.0852 0x1600  ============================================================
14:22:39.0396 0x1600  KLMD registered as C:\Windows\system32\drivers\42793841.sys
14:22:39.0755 0x1600  System UUID: {2279F3B7-9CCA-824C-BFCA-86464A5E3E38}
14:22:40.0629 0x1600  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:22:40.0629 0x1600  ============================================================
14:22:40.0629 0x1600  \Device\Harddisk0\DR0:
14:22:40.0629 0x1600  MBR partitions:
14:22:40.0629 0x1600  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1F40800, BlocksNum 0x32000
14:22:40.0629 0x1600  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1F72800, BlocksNum 0x393C9000
14:22:40.0629 0x1600  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B33B800, BlocksNum 0x393CADB0
14:22:40.0629 0x1600  ============================================================
14:22:40.0660 0x1600  C: <-> \Device\Harddisk0\DR0\Partition2
14:22:40.0691 0x1600  D: <-> \Device\Harddisk0\DR0\Partition3
14:22:40.0691 0x1600  ============================================================
14:22:40.0691 0x1600  Initialize success
14:22:40.0691 0x1600  ============================================================
14:23:11.0314 0x1554  ============================================================
14:23:11.0314 0x1554  Scan started
14:23:11.0314 0x1554  Mode: Manual; SigCheck; TDLFS; 
14:23:11.0314 0x1554  ============================================================
14:23:11.0314 0x1554  KSN ping started
14:23:14.0231 0x1554  KSN ping finished: true
14:23:15.0526 0x1554  ================ Scan system memory ========================
14:23:15.0526 0x1554  System memory - ok
14:23:15.0526 0x1554  ================ Scan services =============================
14:23:15.0666 0x1554  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
14:23:15.0869 0x1554  1394ohci - ok
14:23:16.0009 0x1554  [ B33CF4DE909A5B30F526D82053A63C8E, ABF5BB962C038E545C18B96E686E072D780C907096C7BB341297AF31D3703ABD ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
14:23:16.0041 0x1554  ABBYY.Licensing.FineReader.Sprint.9.0 - ok
14:23:16.0072 0x1554  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:23:16.0087 0x1554  ACPI - ok
14:23:16.0119 0x1554  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
14:23:16.0212 0x1554  AcpiPmi - ok
14:23:16.0290 0x1554  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:23:16.0321 0x1554  AdobeARMservice - ok
14:23:16.0431 0x1554  [ B5D8DE922237CEDDC7992297654A4BE4, 88EF0B5EBFB383C9069A29AEA8D76EDBE1E70DD6F7C18970EE01ECAE9F408B38 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:23:16.0462 0x1554  AdobeFlashPlayerUpdateSvc - ok
14:23:16.0524 0x1554  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
14:23:16.0555 0x1554  adp94xx - ok
14:23:16.0571 0x1554  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
14:23:16.0587 0x1554  adpahci - ok
14:23:16.0602 0x1554  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
14:23:16.0618 0x1554  adpu320 - ok
14:23:16.0633 0x1554  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:23:16.0789 0x1554  AeLookupSvc - ok
14:23:16.0867 0x1554  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
14:23:16.0945 0x1554  AFD - ok
14:23:16.0992 0x1554  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
14:23:17.0023 0x1554  agp440 - ok
14:23:17.0055 0x1554  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
14:23:17.0117 0x1554  ALG - ok
14:23:17.0164 0x1554  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
14:23:17.0179 0x1554  aliide - ok
14:23:17.0226 0x1554  [ D0D8877969011D1B0ED9C3C55A9A9108, DFF41D12EA353DFACDF5C1C227D2D44D659EB8C484829651C90F8684CE2B9E49 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
14:23:17.0304 0x1554  AMD External Events Utility - ok
14:23:17.0335 0x1554  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
14:23:17.0351 0x1554  amdide - ok
14:23:17.0367 0x1554  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
14:23:17.0413 0x1554  AmdK8 - ok
14:23:17.0445 0x1554  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
14:23:17.0476 0x1554  AmdPPM - ok
14:23:17.0491 0x1554  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:23:17.0523 0x1554  amdsata - ok
14:23:17.0538 0x1554  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
14:23:17.0554 0x1554  amdsbs - ok
14:23:17.0569 0x1554  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:23:17.0585 0x1554  amdxata - ok
14:23:17.0725 0x1554  [ 0BF3BE441B226D018767C28F92830D34, F4737DB09D2CDF1AD3516711E6A7B230D02630D7A7481CCAD046D99AF165CA23 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
14:23:17.0772 0x1554  AntiVirSchedulerService - ok
14:23:17.0850 0x1554  [ 0BF3BE441B226D018767C28F92830D34, F4737DB09D2CDF1AD3516711E6A7B230D02630D7A7481CCAD046D99AF165CA23 ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
14:23:17.0881 0x1554  AntiVirService - ok
14:23:17.0913 0x1554  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
14:23:18.0053 0x1554  AppID - ok
14:23:18.0084 0x1554  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:23:18.0131 0x1554  AppIDSvc - ok
14:23:18.0162 0x1554  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
14:23:18.0225 0x1554  Appinfo - ok
14:23:18.0287 0x1554  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:23:18.0318 0x1554  Apple Mobile Device - ok
14:23:18.0349 0x1554  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
14:23:18.0365 0x1554  arc - ok
14:23:18.0381 0x1554  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
14:23:18.0396 0x1554  arcsas - ok
14:23:18.0521 0x1554  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:23:18.0568 0x1554  aspnet_state - ok
14:23:18.0599 0x1554  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:23:18.0661 0x1554  AsyncMac - ok
14:23:18.0708 0x1554  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
14:23:18.0724 0x1554  atapi - ok
14:23:18.0739 0x1554  [ 38467FF83C2B4265D51F418812A91E3C, 93F3C16E3B97EDBE7315CC9B9008D2B77D658EBFF14ECB184D521373E0B193D0 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
14:23:18.0786 0x1554  AtiHdmiService - ok
14:23:18.0989 0x1554  [ C5758BF1DFD762A5B17041FF061B7750, BA732E670536C73523DA0880485E5028C682FBEAF048F564EB626DA61364CAAD ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
14:23:19.0239 0x1554  atikmdag - ok
14:23:19.0317 0x1554  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:23:19.0379 0x1554  AudioEndpointBuilder - ok
14:23:19.0410 0x1554  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
14:23:19.0457 0x1554  AudioSrv - ok
14:23:19.0504 0x1554  [ 46552023B54E374C887A3A9AAF1279F2, 02A365675C4C9A7C67615EB635418DD6392467878FAB84AE97BF1D74EAC0A623 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
14:23:19.0535 0x1554  avgntflt - ok
14:23:19.0597 0x1554  [ 8902AEC2382A37E9E99A4E0D52DBD42B, 138F2D7E7430132B2C527D413BC845CC467F084F39C232EC3A17DD2A74EE401E ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
14:23:19.0613 0x1554  avipbb - ok
14:23:19.0675 0x1554  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
14:23:19.0707 0x1554  avkmgr - ok
14:23:19.0738 0x1554  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:23:19.0816 0x1554  AxInstSV - ok
14:23:19.0863 0x1554  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
14:23:19.0925 0x1554  b06bdrv - ok
14:23:19.0972 0x1554  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
14:23:20.0034 0x1554  b57nd60a - ok
14:23:20.0081 0x1554  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:23:20.0112 0x1554  BDESVC - ok
14:23:20.0143 0x1554  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:23:20.0175 0x1554  Beep - ok
14:23:20.0284 0x1554  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
14:23:20.0346 0x1554  BFE - ok
14:23:20.0393 0x1554  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
14:23:20.0471 0x1554  BITS - ok
14:23:20.0487 0x1554  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:23:20.0518 0x1554  blbdrive - ok
14:23:20.0611 0x1554  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:23:20.0643 0x1554  Bonjour Service - ok
14:23:20.0674 0x1554  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:23:20.0736 0x1554  bowser - ok
14:23:20.0767 0x1554  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:23:20.0861 0x1554  BrFiltLo - ok
14:23:20.0877 0x1554  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:23:20.0892 0x1554  BrFiltUp - ok
14:23:20.0939 0x1554  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
14:23:21.0033 0x1554  BridgeMP - ok
14:23:21.0064 0x1554  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
14:23:21.0111 0x1554  Browser - ok
14:23:21.0126 0x1554  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:23:21.0189 0x1554  Brserid - ok
14:23:21.0204 0x1554  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:23:21.0235 0x1554  BrSerWdm - ok
14:23:21.0235 0x1554  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:23:21.0267 0x1554  BrUsbMdm - ok
14:23:21.0282 0x1554  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:23:21.0298 0x1554  BrUsbSer - ok
14:23:21.0313 0x1554  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
14:23:21.0329 0x1554  BTHMODEM - ok
14:23:21.0376 0x1554  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
14:23:21.0423 0x1554  bthserv - ok
14:23:21.0485 0x1554  catchme - ok
14:23:21.0501 0x1554  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:23:21.0594 0x1554  cdfs - ok
14:23:21.0657 0x1554  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
14:23:21.0688 0x1554  cdrom - ok
14:23:21.0750 0x1554  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
14:23:21.0813 0x1554  CertPropSvc - ok
14:23:21.0828 0x1554  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
14:23:21.0859 0x1554  circlass - ok
14:23:21.0906 0x1554  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
14:23:21.0922 0x1554  CLFS - ok
14:23:21.0969 0x1554  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:23:22.0000 0x1554  clr_optimization_v2.0.50727_32 - ok
14:23:22.0015 0x1554  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:23:22.0047 0x1554  clr_optimization_v2.0.50727_64 - ok
14:23:22.0140 0x1554  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:23:22.0171 0x1554  clr_optimization_v4.0.30319_32 - ok
14:23:22.0187 0x1554  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:23:22.0265 0x1554  clr_optimization_v4.0.30319_64 - ok
14:23:22.0281 0x1554  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
14:23:22.0296 0x1554  CmBatt - ok
14:23:22.0327 0x1554  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
14:23:22.0343 0x1554  cmdide - ok
14:23:22.0390 0x1554  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
14:23:22.0421 0x1554  CNG - ok
14:23:22.0437 0x1554  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
14:23:22.0452 0x1554  Compbatt - ok
14:23:22.0499 0x1554  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
14:23:22.0561 0x1554  CompositeBus - ok
14:23:22.0593 0x1554  COMSysApp - ok
14:23:22.0608 0x1554  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
14:23:22.0639 0x1554  crcdisk - ok
14:23:22.0702 0x1554  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:23:22.0764 0x1554  CryptSvc - ok
14:23:22.0827 0x1554  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:23:22.0889 0x1554  DcomLaunch - ok
14:23:22.0905 0x1554  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
14:23:22.0951 0x1554  defragsvc - ok
14:23:22.0998 0x1554  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
14:23:23.0092 0x1554  DfsC - ok
14:23:23.0107 0x1554  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:23:23.0170 0x1554  Dhcp - ok
14:23:23.0185 0x1554  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
14:23:23.0232 0x1554  discache - ok
14:23:23.0248 0x1554  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
14:23:23.0263 0x1554  Disk - ok
14:23:23.0341 0x1554  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:23:23.0404 0x1554  Dnscache - ok
14:23:23.0451 0x1554  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
14:23:23.0482 0x1554  dot3svc - ok
14:23:23.0529 0x1554  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
14:23:23.0575 0x1554  Dot4 - ok
14:23:23.0622 0x1554  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:23:23.0638 0x1554  Dot4Print - ok
14:23:23.0653 0x1554  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
14:23:23.0685 0x1554  dot4usb - ok
14:23:23.0716 0x1554  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
14:23:23.0809 0x1554  DPS - ok
14:23:23.0856 0x1554  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:23:23.0919 0x1554  drmkaud - ok
14:23:23.0997 0x1554  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:23:24.0028 0x1554  DXGKrnl - ok
14:23:24.0059 0x1554  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
14:23:24.0121 0x1554  EapHost - ok
14:23:24.0277 0x1554  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
14:23:24.0480 0x1554  ebdrv - ok
14:23:24.0511 0x1554  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
14:23:24.0605 0x1554  EFS - ok
14:23:24.0683 0x1554  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
14:23:24.0761 0x1554  ehRecvr - ok
14:23:24.0792 0x1554  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
14:23:24.0823 0x1554  ehSched - ok
14:23:24.0870 0x1554  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
14:23:24.0901 0x1554  elxstor - ok
14:23:24.0995 0x1554  [ 194E8100D57FC13BEF88129BAAD07E46, 745D24ADD99ED182FCCA30C6B85167484B74D3EFD631AF92AA57AAD73F474631 ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
14:23:25.0026 0x1554  EPSON_PM_RPCV4_04 - ok
14:23:25.0073 0x1554  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
14:23:25.0167 0x1554  ErrDev - ok
14:23:25.0198 0x1554  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
14:23:25.0291 0x1554  EventSystem - ok
14:23:25.0307 0x1554  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
14:23:25.0369 0x1554  exfat - ok
14:23:25.0385 0x1554  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:23:25.0447 0x1554  fastfat - ok
14:23:25.0541 0x1554  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
14:23:25.0650 0x1554  Fax - ok
14:23:25.0666 0x1554  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
14:23:25.0697 0x1554  fdc - ok
14:23:25.0713 0x1554  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
14:23:25.0775 0x1554  fdPHost - ok
14:23:25.0791 0x1554  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:23:25.0837 0x1554  FDResPub - ok
14:23:25.0853 0x1554  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:23:25.0869 0x1554  FileInfo - ok
14:23:25.0884 0x1554  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:23:25.0915 0x1554  Filetrace - ok
14:23:25.0931 0x1554  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
14:23:25.0947 0x1554  flpydisk - ok
14:23:25.0993 0x1554  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:23:26.0009 0x1554  FltMgr - ok
14:23:26.0118 0x1554  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
14:23:26.0181 0x1554  FontCache - ok
14:23:26.0243 0x1554  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:23:26.0274 0x1554  FontCache3.0.0.0 - ok
14:23:26.0337 0x1554  [ A9FF65EA14E4CABFCC1BB8ECE111A249, D5FCAE29E75AE2DF1BC748FEAEE732A3163DF22DBD2766732E86D330A107E861 ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
14:23:26.0368 0x1554  ForceWare Intelligent Application Manager (IAM) - ok
14:23:26.0383 0x1554  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:23:26.0399 0x1554  FsDepends - ok
14:23:26.0415 0x1554  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:23:26.0430 0x1554  Fs_Rec - ok
14:23:26.0461 0x1554  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:23:26.0477 0x1554  fvevol - ok
14:23:26.0493 0x1554  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
14:23:26.0508 0x1554  gagp30kx - ok
14:23:26.0571 0x1554  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:23:26.0602 0x1554  GEARAspiWDM - ok
14:23:26.0727 0x1554  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
14:23:26.0805 0x1554  gpsvc - ok
14:23:26.0883 0x1554  [ 816FD5A6F3C2F3D600900096632FC60E, D92401C4B56663F8A12B6390562608A125713408B00266C53844129679E48E9C ] Greg_Service    C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
14:23:26.0929 0x1554  Greg_Service - ok
14:23:26.0992 0x1554  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:23:27.0023 0x1554  gupdate - ok
14:23:27.0039 0x1554  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:23:27.0054 0x1554  gupdatem - ok
14:23:27.0070 0x1554  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
14:23:27.0163 0x1554  hcw85cir - ok
14:23:27.0226 0x1554  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:23:27.0273 0x1554  HdAudAddService - ok
14:23:27.0319 0x1554  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
14:23:27.0351 0x1554  HDAudBus - ok
14:23:27.0382 0x1554  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
14:23:27.0413 0x1554  HidBatt - ok
14:23:27.0429 0x1554  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
14:23:27.0475 0x1554  HidBth - ok
14:23:27.0507 0x1554  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
14:23:27.0522 0x1554  HidIr - ok
14:23:27.0553 0x1554  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
14:23:27.0600 0x1554  hidserv - ok
14:23:27.0663 0x1554  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
14:23:27.0709 0x1554  HidUsb - ok
14:23:27.0756 0x1554  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:23:27.0850 0x1554  hkmsvc - ok
14:23:27.0912 0x1554  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:23:27.0975 0x1554  HomeGroupListener - ok
14:23:28.0021 0x1554  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:23:28.0068 0x1554  HomeGroupProvider - ok
14:23:28.0099 0x1554  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:23:28.0115 0x1554  HpSAMD - ok
14:23:28.0177 0x1554  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:23:28.0255 0x1554  HTTP - ok
14:23:28.0287 0x1554  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:23:28.0318 0x1554  hwpolicy - ok
14:23:28.0349 0x1554  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
14:23:28.0365 0x1554  i8042prt - ok
14:23:28.0396 0x1554  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:23:28.0411 0x1554  iaStorV - ok
14:23:28.0489 0x1554  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
14:23:28.0505 0x1554  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
14:23:31.0453 0x1554  Detect skipped due to KSN trusted
14:23:31.0453 0x1554  IDriverT - ok
14:23:31.0563 0x1554  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:23:31.0594 0x1554  idsvc - ok
14:23:31.0609 0x1554  IEEtwCollectorService - ok
14:23:31.0641 0x1554  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
14:23:31.0656 0x1554  iirsp - ok
14:23:31.0734 0x1554  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
14:23:31.0797 0x1554  IKEEXT - ok
14:23:31.0875 0x1554  [ BC64B75E8E0A0B8982AB773483164E72, BF7CB0DEAAF78E20EA56B50FC177E99538FC4F29DA018D98E4286D122789435D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:23:31.0953 0x1554  IntcAzAudAddService - ok
14:23:32.0015 0x1554  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
14:23:32.0046 0x1554  intelide - ok
14:23:32.0062 0x1554  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
14:23:32.0093 0x1554  intelppm - ok
14:23:32.0109 0x1554  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
14:23:32.0171 0x1554  IPBusEnum - ok
14:23:32.0202 0x1554  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:23:32.0280 0x1554  IpFilterDriver - ok
14:23:32.0374 0x1554  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:23:32.0452 0x1554  iphlpsvc - ok
14:23:32.0483 0x1554  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
14:23:32.0530 0x1554  IPMIDRV - ok
14:23:32.0545 0x1554  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:23:32.0608 0x1554  IPNAT - ok
14:23:32.0670 0x1554  [ 835FC2EA0631B734BB06C12B0665F01D, B8A8B0148C6C3AFC40835B44E3D6508CB9EEE8AC430A7904711C8B51C2116A8D ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:23:32.0686 0x1554  iPod Service - ok
14:23:32.0701 0x1554  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:23:32.0795 0x1554  IRENUM - ok
14:23:32.0811 0x1554  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:23:32.0811 0x1554  isapnp - ok
14:23:32.0857 0x1554  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
14:23:32.0889 0x1554  iScsiPrt - ok
14:23:32.0904 0x1554  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
14:23:32.0904 0x1554  kbdclass - ok
14:23:32.0935 0x1554  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
14:23:32.0951 0x1554  kbdhid - ok
14:23:32.0967 0x1554  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
14:23:32.0967 0x1554  KeyIso - ok
14:23:33.0013 0x1554  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:23:33.0029 0x1554  KSecDD - ok
14:23:33.0045 0x1554  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:23:33.0060 0x1554  KSecPkg - ok
14:23:33.0076 0x1554  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
14:23:33.0107 0x1554  ksthunk - ok
14:23:33.0138 0x1554  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:23:33.0201 0x1554  KtmRm - ok
14:23:33.0279 0x1554  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
14:23:33.0341 0x1554  LanmanServer - ok
14:23:33.0403 0x1554  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:23:33.0481 0x1554  LanmanWorkstation - ok
14:23:33.0497 0x1554  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:23:33.0544 0x1554  lltdio - ok
14:23:33.0591 0x1554  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:23:33.0637 0x1554  lltdsvc - ok
14:23:33.0669 0x1554  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:23:33.0731 0x1554  lmhosts - ok
14:23:33.0762 0x1554  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
14:23:33.0778 0x1554  LSI_FC - ok
14:23:33.0793 0x1554  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
14:23:33.0809 0x1554  LSI_SAS - ok
14:23:33.0825 0x1554  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:23:33.0825 0x1554  LSI_SAS2 - ok
14:23:33.0840 0x1554  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:23:33.0856 0x1554  LSI_SCSI - ok
14:23:33.0887 0x1554  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
14:23:33.0934 0x1554  luafv - ok
14:23:33.0996 0x1554  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
14:23:34.0027 0x1554  LVPr2M64 - ok
14:23:34.0059 0x1554  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
14:23:34.0074 0x1554  LVPr2Mon - ok
14:23:34.0152 0x1554  [ A35679E56E78091E1042A2D7ADBF2958, F2282B697DCDD5767F65D99FEA374D3757C6133D42BD5A9C582C217619213290 ] LVPrcS64        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
14:23:34.0199 0x1554  LVPrcS64 - ok
14:23:34.0215 0x1554  [ 986C1CB787A007BAA5F74E7D316D7246, 8846D5FF09A669816F57C98507FBCBE60F770B22BC784269765E46B36EE38D9D ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
14:23:34.0246 0x1554  LVRS64 - ok
14:23:34.0480 0x1554  [ 5747BC465ABEA2858C5D037252AED84E, 1D62E05ED1D3265FEFDD02C8653B2901B05994091F1D417632E2FBF053C5D451 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
14:23:34.0729 0x1554  LVUVC64 - ok
14:23:34.0761 0x1554  McAfee SiteAdvisor Service - ok
14:23:34.0807 0x1554  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
14:23:34.0839 0x1554  Mcx2Svc - ok
14:23:34.0854 0x1554  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
14:23:34.0870 0x1554  megasas - ok
14:23:34.0901 0x1554  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
14:23:34.0917 0x1554  MegaSR - ok
14:23:34.0948 0x1554  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
14:23:35.0010 0x1554  MMCSS - ok
14:23:35.0026 0x1554  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
14:23:35.0057 0x1554  Modem - ok
14:23:35.0073 0x1554  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
14:23:35.0104 0x1554  monitor - ok
14:23:35.0135 0x1554  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
14:23:35.0151 0x1554  mouclass - ok
14:23:35.0182 0x1554  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
14:23:35.0213 0x1554  mouhid - ok
14:23:35.0307 0x1554  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:23:35.0369 0x1554  mountmgr - ok
14:23:35.0463 0x1554  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:23:35.0494 0x1554  MozillaMaintenance - ok
14:23:35.0525 0x1554  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
14:23:35.0541 0x1554  mpio - ok
14:23:35.0572 0x1554  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:23:35.0619 0x1554  mpsdrv - ok
14:23:35.0697 0x1554  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:23:35.0806 0x1554  MpsSvc - ok
14:23:35.0853 0x1554  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:23:35.0931 0x1554  MRxDAV - ok
14:23:35.0962 0x1554  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:23:36.0009 0x1554  mrxsmb - ok
14:23:36.0055 0x1554  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:23:36.0087 0x1554  mrxsmb10 - ok
14:23:36.0102 0x1554  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:23:36.0118 0x1554  mrxsmb20 - ok
14:23:36.0180 0x1554  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
14:23:36.0211 0x1554  msahci - ok
14:23:36.0227 0x1554  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
14:23:36.0258 0x1554  msdsm - ok
14:23:36.0289 0x1554  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
14:23:36.0305 0x1554  MSDTC - ok
14:23:36.0336 0x1554  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:23:36.0367 0x1554  Msfs - ok
14:23:36.0383 0x1554  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:23:36.0461 0x1554  mshidkmdf - ok
14:23:36.0477 0x1554  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:23:36.0492 0x1554  msisadrv - ok
14:23:36.0523 0x1554  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:23:36.0555 0x1554  MSiSCSI - ok
14:23:36.0570 0x1554  msiserver - ok
14:23:36.0586 0x1554  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:23:36.0617 0x1554  MSKSSRV - ok
14:23:36.0633 0x1554  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:23:36.0664 0x1554  MSPCLOCK - ok
14:23:36.0679 0x1554  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:23:36.0711 0x1554  MSPQM - ok
14:23:36.0773 0x1554  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:23:36.0804 0x1554  MsRPC - ok
14:23:36.0835 0x1554  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
14:23:36.0851 0x1554  mssmbios - ok
14:23:36.0867 0x1554  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:23:36.0898 0x1554  MSTEE - ok
14:23:36.0913 0x1554  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
14:23:36.0929 0x1554  MTConfig - ok
14:23:36.0945 0x1554  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
14:23:36.0960 0x1554  Mup - ok
14:23:36.0991 0x1554  [ 6FFECC25B39DC7652A0CEC0ADA9DB589, 927EF066CBBA8353149F8C3B7C4299AC06FED439DA874D25CFB583E5912611A2 ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
14:23:37.0007 0x1554  mwlPSDFilter - ok
14:23:37.0023 0x1554  [ 0BEFE32CA56D6EE89D58175725596A85, E36B9E6159AF7F67D549F7178896CCCB8FC3964531B1DA20CBDD465E632D8FCF ] mwlPSDNServ     C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
14:23:37.0023 0x1554  mwlPSDNServ - ok
14:23:37.0038 0x1554  [ D43BC633B8660463E446E28E14A51262, C55F235B5E08FAC6D70B0FAC737D714E318A93F8E43FF8095B86A76559AF211D ] mwlPSDVDisk     C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
14:23:37.0054 0x1554  mwlPSDVDisk - ok
14:23:37.0101 0x1554  [ 0F5FAAC852DB4C340B7A2F187E3358B8, 859A077C03AA244918F3E7BF7A63BD422C1C085EEDEE2C25FE4BC068E5D72484 ] MWLService      C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
14:23:37.0132 0x1554  MWLService - ok
14:23:37.0210 0x1554  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
14:23:37.0272 0x1554  napagent - ok
14:23:37.0303 0x1554  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:23:37.0350 0x1554  NativeWifiP - ok
14:23:37.0413 0x1554  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:23:37.0459 0x1554  NDIS - ok
14:23:37.0475 0x1554  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:23:37.0522 0x1554  NdisCap - ok
14:23:37.0537 0x1554  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:23:37.0584 0x1554  NdisTapi - ok
14:23:37.0615 0x1554  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:23:37.0647 0x1554  Ndisuio - ok
14:23:37.0693 0x1554  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:23:37.0740 0x1554  NdisWan - ok
14:23:37.0787 0x1554  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:23:37.0865 0x1554  NDProxy - ok
14:23:37.0974 0x1554  [ B90E093E7A7250906F1054418B5339C0, F9A0BAC5B4B29F14B5CACA1047F8928A495EFD56E485492BF71C856B296476D6 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
14:23:38.0021 0x1554  Nero BackItUp Scheduler 4.0 - ok
14:23:38.0099 0x1554  [ D5AC41AE382738483FAFFBD7E373D49A, 68793D15566F387650E9C5010E1CA73BDE3EB4BA431EA0A1673004CAE08413B0 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
14:23:38.0115 0x1554  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
14:23:41.0063 0x1554  Detect skipped due to KSN trusted
14:23:41.0063 0x1554  Net Driver HPZ12 - ok
14:23:41.0125 0x1554  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:23:41.0188 0x1554  NetBIOS - ok
14:23:41.0250 0x1554  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:23:41.0328 0x1554  NetBT - ok
14:23:41.0344 0x1554  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
14:23:41.0359 0x1554  Netlogon - ok
14:23:41.0375 0x1554  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
14:23:41.0437 0x1554  Netman - ok
14:23:41.0469 0x1554  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:23:41.0515 0x1554  NetMsmqActivator - ok
14:23:41.0531 0x1554  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:23:41.0547 0x1554  NetPipeActivator - ok
14:23:41.0578 0x1554  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
14:23:41.0625 0x1554  netprofm - ok
14:23:41.0640 0x1554  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:23:41.0656 0x1554  NetTcpActivator - ok
14:23:41.0671 0x1554  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:23:41.0687 0x1554  NetTcpPortSharing - ok
14:23:41.0703 0x1554  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
14:23:41.0718 0x1554  nfrd960 - ok
14:23:41.0749 0x1554  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:23:41.0781 0x1554  NlaSvc - ok
14:23:41.0874 0x1554  [ EF7A048FE8E3F102C78C9BD7C448BB6C, 92F720C20504D7794174F70907AD6703660C1A0438A8968F5848D74F351B0710 ] nosGetPlusHelper C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll
14:23:41.0905 0x1554  nosGetPlusHelper - ok
14:23:41.0921 0x1554  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:23:41.0968 0x1554  Npfs - ok
14:23:41.0968 0x1554  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
14:23:42.0015 0x1554  nsi - ok
14:23:42.0046 0x1554  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:23:42.0124 0x1554  nsiproxy - ok
14:23:42.0155 0x1554  [ C04F5DEF37E55F6A34428B050F44D3D6, 9B1BE8404831453AA89C2081DFA0EAD95696C0F63EAA2D0E8B5AED60A1B3876C ] nSvcIp          C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
14:23:42.0171 0x1554  nSvcIp - ok
14:23:42.0295 0x1554  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:23:42.0405 0x1554  Ntfs - ok
14:23:42.0420 0x1554  [ BD691091AC7D9713D8F0B07C6B099E6C, 4A69ED227CCBBCB76F78078CEE42506A875759FFB519CB9C40173EF8ACD6D6D2 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
14:23:42.0436 0x1554  NTI IScheduleSvc - ok
14:23:42.0436 0x1554  [ 64DDD0DEE976302F4BD93E5EFCC2F013, 19F54B4549999EF96FAE1B2B97973F281304843ADE0CF5823574453AB41E3E9C ] NTIDrvr         C:\Windows\system32\drivers\NTIDrvr.sys
14:23:42.0451 0x1554  NTIDrvr - ok
14:23:42.0467 0x1554  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
14:23:42.0498 0x1554  Null - ok
14:23:42.0514 0x1554  [ A85B4F2EF3A7304A5399EF0526423040, E45854691BA6AE36E53C2922CC93FF13DC2D84CBE7FE13A2F0B1CE1C16D1D158 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
14:23:42.0561 0x1554  NVENETFD - ok
14:23:42.0935 0x1554  [ DD81FBC57AB9134CDDC5CE90880BFD80, 16DF4D9645238D1014FA9189FF171DCF7B7C7573F759B5AC73025518139D86B1 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:23:43.0341 0x1554  nvlddmkm - ok
14:23:43.0419 0x1554  [ 956A1F47826514C1EA0C295FE13C7377, 136A6DBF1C54901D8F91132C9692CE8F814CD7594097ECF3A6A6473BE695E82F ] NVNET           C:\Windows\system32\DRIVERS\nvmf6264.sys
14:23:43.0450 0x1554  NVNET - ok
14:23:43.0497 0x1554  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:23:43.0512 0x1554  nvraid - ok
14:23:43.0528 0x1554  [ AFDE3015BB8D76E26BEC3B287C5443A0, 6D4804392149EA9B8BC555D4BEBB84A39DE14E62ACCD7EEBBE21D2D8E37E32B0 ] nvsmu           C:\Windows\system32\DRIVERS\nvsmu.sys
14:23:43.0543 0x1554  nvsmu - ok
14:23:43.0559 0x1554  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:23:43.0575 0x1554  nvstor - ok
14:23:43.0606 0x1554  [ 7C7EEF51979658CE15BBC04F96A77D56, 3363DA5B1C4E22D1B3AC368CB66B22221C435B98FACFA7BAD675B7D46D35F662 ] nvstor64        C:\Windows\system32\DRIVERS\nvstor64.sys
14:23:43.0621 0x1554  nvstor64 - ok
14:23:43.0637 0x1554  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:23:43.0653 0x1554  nv_agp - ok
14:23:43.0746 0x1554  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:23:43.0793 0x1554  odserv - ok
14:23:43.0809 0x1554  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
14:23:43.0840 0x1554  ohci1394 - ok
14:23:43.0871 0x1554  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:23:43.0871 0x1554  ose - ok
14:23:43.0902 0x1554  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:23:43.0965 0x1554  p2pimsvc - ok
14:23:43.0980 0x1554  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
14:23:44.0011 0x1554  p2psvc - ok
14:23:44.0043 0x1554  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
14:23:44.0058 0x1554  Parport - ok
14:23:44.0089 0x1554  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:23:44.0136 0x1554  partmgr - ok
14:23:44.0152 0x1554  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:23:44.0183 0x1554  PcaSvc - ok
14:23:44.0199 0x1554  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
14:23:44.0214 0x1554  pci - ok
14:23:44.0261 0x1554  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
14:23:44.0292 0x1554  pciide - ok
14:23:44.0308 0x1554  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
14:23:44.0339 0x1554  pcmcia - ok
14:23:44.0355 0x1554  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
14:23:44.0370 0x1554  pcw - ok
14:23:44.0386 0x1554  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:23:44.0448 0x1554  PEAUTH - ok
14:23:44.0526 0x1554  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
14:23:44.0589 0x1554  PerfHost - ok
14:23:44.0698 0x1554  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
14:23:44.0807 0x1554  pla - ok
14:23:44.0901 0x1554  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:23:44.0963 0x1554  PlugPlay - ok
14:23:45.0010 0x1554  [ 37F6046CDC630442D7DC087501FF6FC6, EFC0F3DA49839CA263CD95AE5015F4FC554D9D845A58A699C542C8C96E70ED3C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
14:23:45.0041 0x1554  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
14:23:47.0896 0x1554  Detect skipped due to KSN trusted
14:23:47.0896 0x1554  Pml Driver HPZ12 - ok
14:23:47.0943 0x1554  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:23:47.0989 0x1554  PNRPAutoReg - ok
14:23:48.0036 0x1554  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:23:48.0052 0x1554  PNRPsvc - ok
14:23:48.0083 0x1554  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:23:48.0130 0x1554  PolicyAgent - ok
14:23:48.0161 0x1554  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
14:23:48.0208 0x1554  Power - ok
14:23:48.0270 0x1554  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:23:48.0333 0x1554  PptpMiniport - ok
14:23:48.0348 0x1554  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
14:23:48.0364 0x1554  Processor - ok
14:23:48.0426 0x1554  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
14:23:48.0535 0x1554  ProfSvc - ok
14:23:48.0551 0x1554  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:23:48.0582 0x1554  ProtectedStorage - ok
14:23:48.0629 0x1554  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:23:48.0691 0x1554  Psched - ok
14:23:48.0801 0x1554  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
14:23:48.0863 0x1554  ql2300 - ok
14:23:48.0879 0x1554  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
14:23:48.0894 0x1554  ql40xx - ok
14:23:48.0910 0x1554  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
14:23:48.0941 0x1554  QWAVE - ok
14:23:48.0957 0x1554  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:23:48.0972 0x1554  QWAVEdrv - ok
14:23:49.0003 0x1554  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:23:49.0066 0x1554  RasAcd - ok
14:23:49.0081 0x1554  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:23:49.0113 0x1554  RasAgileVpn - ok
14:23:49.0128 0x1554  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
14:23:49.0175 0x1554  RasAuto - ok
14:23:49.0222 0x1554  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:23:49.0269 0x1554  Rasl2tp - ok
14:23:49.0331 0x1554  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
14:23:49.0409 0x1554  RasMan - ok
14:23:49.0440 0x1554  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:23:49.0471 0x1554  RasPppoe - ok
14:23:49.0487 0x1554  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:23:49.0534 0x1554  RasSstp - ok
14:23:49.0612 0x1554  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:23:49.0659 0x1554  rdbss - ok
14:23:49.0674 0x1554  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
14:23:49.0690 0x1554  rdpbus - ok
14:23:49.0705 0x1554  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
14:23:49.0752 0x1554  RDPCDD - ok
14:23:49.0752 0x1554  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
14:23:49.0799 0x1554  RDPENCDD - ok
14:23:49.0815 0x1554  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
14:23:49.0861 0x1554  RDPREFMP - ok
14:23:49.0908 0x1554  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:23:50.0002 0x1554  RDPWD - ok
14:23:50.0080 0x1554  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:23:50.0095 0x1554  rdyboost - ok
14:23:50.0158 0x1554  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:23:50.0205 0x1554  RemoteAccess - ok
14:23:50.0220 0x1554  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:23:50.0267 0x1554  RemoteRegistry - ok
14:23:50.0283 0x1554  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:23:50.0314 0x1554  RpcEptMapper - ok
14:23:50.0345 0x1554  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
14:23:50.0376 0x1554  RpcLocator - ok
14:23:50.0439 0x1554  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
14:23:50.0548 0x1554  RpcSs - ok
14:23:50.0563 0x1554  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:23:50.0610 0x1554  rspndr - ok
14:23:50.0626 0x1554  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
14:23:50.0641 0x1554  SamSs - ok
14:23:50.0688 0x1554  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:23:50.0704 0x1554  sbp2port - ok
14:23:50.0719 0x1554  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:23:50.0766 0x1554  SCardSvr - ok
14:23:50.0797 0x1554  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:23:50.0844 0x1554  scfilter - ok
14:23:50.0875 0x1554  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
14:23:50.0969 0x1554  Schedule - ok
14:23:51.0016 0x1554  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:23:51.0047 0x1554  SCPolicySvc - ok
14:23:51.0094 0x1554  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:23:51.0172 0x1554  SDRSVC - ok
14:23:51.0187 0x1554  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:23:51.0265 0x1554  secdrv - ok
14:23:51.0297 0x1554  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
14:23:51.0359 0x1554  seclogon - ok
14:23:51.0375 0x1554  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
14:23:51.0421 0x1554  SENS - ok
14:23:51.0453 0x1554  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:23:51.0499 0x1554  SensrSvc - ok
14:23:51.0531 0x1554  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
14:23:51.0546 0x1554  Serenum - ok
14:23:51.0577 0x1554  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
14:23:51.0609 0x1554  Serial - ok
14:23:51.0640 0x1554  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
14:23:51.0671 0x1554  sermouse - ok
14:23:51.0733 0x1554  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
14:23:51.0811 0x1554  SessionEnv - ok
14:23:51.0858 0x1554  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
14:23:51.0905 0x1554  sffdisk - ok
14:23:51.0921 0x1554  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
14:23:51.0936 0x1554  sffp_mmc - ok
14:23:51.0952 0x1554  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
14:23:51.0967 0x1554  sffp_sd - ok
14:23:51.0983 0x1554  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
14:23:51.0999 0x1554  sfloppy - ok
14:23:52.0030 0x1554  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:23:52.0077 0x1554  SharedAccess - ok
14:23:52.0139 0x1554  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:23:52.0170 0x1554  ShellHWDetection - ok
14:23:52.0201 0x1554  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:23:52.0201 0x1554  SiSRaid2 - ok
14:23:52.0217 0x1554  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
14:23:52.0233 0x1554  SiSRaid4 - ok
14:23:52.0326 0x1554  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
14:23:52.0373 0x1554  SkypeUpdate - ok
14:23:52.0389 0x1554  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
14:23:52.0435 0x1554  Smb - ok
14:23:52.0467 0x1554  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:23:52.0482 0x1554  SNMPTRAP - ok
14:23:52.0482 0x1554  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
14:23:52.0498 0x1554  spldr - ok
14:23:52.0560 0x1554  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
14:23:52.0591 0x1554  Spooler - ok
14:23:52.0763 0x1554  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
14:23:52.0935 0x1554  sppsvc - ok
14:23:52.0966 0x1554  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
14:23:53.0013 0x1554  sppuinotify - ok
14:23:53.0013 0x1554  sptd - ok
14:23:53.0091 0x1554  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:23:53.0137 0x1554  srv - ok
14:23:53.0184 0x1554  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:23:53.0215 0x1554  srv2 - ok
14:23:53.0247 0x1554  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:23:53.0278 0x1554  srvnet - ok
14:23:53.0293 0x1554  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:23:53.0340 0x1554  SSDPSRV - ok
14:23:53.0371 0x1554  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:23:53.0403 0x1554  SstpSvc - ok
14:23:53.0434 0x1554  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
14:23:53.0449 0x1554  stexstor - ok
14:23:53.0527 0x1554  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
14:23:53.0559 0x1554  stisvc - ok
14:23:53.0590 0x1554  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
14:23:53.0621 0x1554  swenum - ok
14:23:53.0652 0x1554  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
14:23:53.0730 0x1554  swprv - ok
14:23:53.0855 0x1554  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
14:23:53.0933 0x1554  SysMain - ok
14:23:53.0964 0x1554  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:23:53.0980 0x1554  TabletInputService - ok
14:23:53.0995 0x1554  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:23:54.0042 0x1554  TapiSrv - ok
14:23:54.0073 0x1554  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
14:23:54.0105 0x1554  TBS - ok
14:23:54.0198 0x1554  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:23:54.0292 0x1554  Tcpip - ok
14:23:54.0385 0x1554  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:23:54.0448 0x1554  TCPIP6 - ok
14:23:54.0495 0x1554  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:23:54.0526 0x1554  tcpipreg - ok
14:23:54.0557 0x1554  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
14:23:54.0619 0x1554  TDPIPE - ok
14:23:54.0651 0x1554  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
14:23:54.0682 0x1554  TDTCP - ok
14:23:54.0729 0x1554  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:23:54.0807 0x1554  tdx - ok
14:23:54.0869 0x1554  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
14:23:54.0916 0x1554  TermDD - ok
14:23:54.0963 0x1554  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
14:23:55.0025 0x1554  TermService - ok
14:23:55.0056 0x1554  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
14:23:55.0134 0x1554  Themes - ok
14:23:55.0197 0x1554  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
14:23:55.0259 0x1554  THREADORDER - ok
14:23:55.0275 0x1554  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
14:23:55.0306 0x1554  TrkWks - ok
14:23:55.0368 0x1554  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:23:55.0446 0x1554  TrustedInstaller - ok
14:23:55.0493 0x1554  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
14:23:55.0540 0x1554  tssecsrv - ok
14:23:55.0571 0x1554  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:23:55.0602 0x1554  TsUsbFlt - ok
14:23:55.0665 0x1554  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:23:55.0743 0x1554  tunnel - ok
14:23:55.0789 0x1554  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
14:23:55.0789 0x1554  uagp35 - ok
14:23:55.0821 0x1554  [ 2E22C1FD397A5A9FFEF55E9D1FC96C00, 4646712B3F3AF6188DBCE1A95D92261E8B15E9583FE5DD538EC884F48B51759D ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
14:23:55.0852 0x1554  UBHelper - ok
14:23:55.0899 0x1554  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:23:55.0992 0x1554  udfs - ok
14:23:56.0023 0x1554  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:23:56.0039 0x1554  UI0Detect - ok
14:23:56.0055 0x1554  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:23:56.0070 0x1554  uliagpkx - ok
14:23:56.0117 0x1554  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
14:23:56.0164 0x1554  umbus - ok
14:23:56.0179 0x1554  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
14:23:56.0211 0x1554  UmPass - ok
14:23:56.0320 0x1554  [ 927754ABF077AEB5504BE4E0F2C60C1B, 14DBDB8DAD85432D310C4F3DDF99C07AA5E23DC3D92280CB8B9ECC7456B9F6E1 ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
14:23:56.0351 0x1554  UMVPFSrv - ok
14:23:56.0382 0x1554  [ 70DDE3A86DBEB1D6C3C30AD687B1877A, 2DAE797240DB8F521F1C9D1171524790052E186B060D58A1B102FBFFC80CE48E ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
14:23:56.0398 0x1554  Updater Service - ok
14:23:56.0413 0x1554  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
14:23:56.0460 0x1554  upnphost - ok
14:23:56.0507 0x1554  [ 43228F8EDD1B0BCDD3145AD246E63D39, 108D8793E9F94C0A0E895398599B359121751F2E7BAA8B7BD24838AEF646726D ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
14:23:56.0507 0x1554  USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
14:23:59.0346 0x1554  Detect skipped due to KSN trusted
14:23:59.0346 0x1554  USBAAPL64 - ok
14:23:59.0409 0x1554  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
14:23:59.0487 0x1554  usbaudio - ok
14:23:59.0518 0x1554  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
14:23:59.0580 0x1554  usbccgp - ok
14:23:59.0611 0x1554  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
14:23:59.0658 0x1554  usbcir - ok
14:23:59.0705 0x1554  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
14:23:59.0736 0x1554  usbehci - ok
14:23:59.0783 0x1554  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
14:23:59.0814 0x1554  usbhub - ok
14:23:59.0830 0x1554  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
14:23:59.0861 0x1554  usbohci - ok
14:23:59.0892 0x1554  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
14:23:59.0908 0x1554  usbprint - ok
14:23:59.0939 0x1554  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
14:23:59.0970 0x1554  usbscan - ok
14:24:00.0017 0x1554  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:24:00.0095 0x1554  USBSTOR - ok
14:24:00.0126 0x1554  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
14:24:00.0142 0x1554  usbuhci - ok
14:24:00.0157 0x1554  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
14:24:00.0220 0x1554  UxSms - ok
14:24:00.0235 0x1554  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
14:24:00.0251 0x1554  VaultSvc - ok
14:24:00.0267 0x1554  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:24:00.0313 0x1554  vdrvroot - ok
14:24:00.0407 0x1554  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
14:24:00.0501 0x1554  vds - ok
14:24:00.0532 0x1554  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
14:24:00.0547 0x1554  vga - ok
14:24:00.0563 0x1554  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
14:24:00.0610 0x1554  VgaSave - ok
14:24:00.0703 0x1554  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
14:24:00.0735 0x1554  vhdmp - ok
14:24:00.0766 0x1554  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
14:24:00.0781 0x1554  viaide - ok
14:24:00.0797 0x1554  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:24:00.0813 0x1554  volmgr - ok
14:24:00.0859 0x1554  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:24:00.0891 0x1554  volmgrx - ok
14:24:00.0906 0x1554  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:24:00.0922 0x1554  volsnap - ok
14:24:00.0953 0x1554  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
14:24:00.0969 0x1554  vsmraid - ok
14:24:01.0062 0x1554  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
14:24:01.0171 0x1554  VSS - ok
14:24:01.0187 0x1554  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
14:24:01.0203 0x1554  vwifibus - ok
14:24:01.0234 0x1554  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
14:24:01.0296 0x1554  W32Time - ok
14:24:01.0312 0x1554  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
14:24:01.0359 0x1554  WacomPen - ok
14:24:01.0374 0x1554  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
14:24:01.0421 0x1554  WANARP - ok
14:24:01.0437 0x1554  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:24:01.0468 0x1554  Wanarpv6 - ok
14:24:01.0577 0x1554  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
14:24:01.0671 0x1554  wbengine - ok
14:24:01.0702 0x1554  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:24:01.0717 0x1554  WbioSrvc - ok
14:24:01.0749 0x1554  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:24:01.0780 0x1554  wcncsvc - ok
14:24:01.0811 0x1554  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:24:01.0842 0x1554  WcsPlugInService - ok
14:24:01.0858 0x1554  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
14:24:01.0873 0x1554  Wd - ok
14:24:01.0951 0x1554  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:24:01.0983 0x1554  Wdf01000 - ok
14:24:01.0998 0x1554  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:24:02.0107 0x1554  WdiServiceHost - ok
14:24:02.0123 0x1554  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:24:02.0139 0x1554  WdiSystemHost - ok
14:24:02.0154 0x1554  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
14:24:02.0185 0x1554  WebClient - ok
14:24:02.0201 0x1554  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:24:02.0232 0x1554  Wecsvc - ok
14:24:02.0248 0x1554  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:24:02.0279 0x1554  wercplsupport - ok
14:24:02.0295 0x1554  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:24:02.0341 0x1554  WerSvc - ok
14:24:02.0373 0x1554  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
14:24:02.0404 0x1554  WfpLwf - ok
14:24:02.0419 0x1554  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:24:02.0435 0x1554  WIMMount - ok
14:24:02.0451 0x1554  WinDefend - ok
14:24:02.0451 0x1554  WinHttpAutoProxySvc - ok
14:24:02.0513 0x1554  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:24:02.0622 0x1554  Winmgmt - ok
14:24:02.0747 0x1554  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
14:24:02.0856 0x1554  WinRM - ok
14:24:02.0919 0x1554  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
14:24:02.0965 0x1554  WinUsb - ok
14:24:03.0012 0x1554  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
14:24:03.0075 0x1554  Wlansvc - ok
14:24:03.0277 0x1554  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:24:03.0340 0x1554  wlidsvc - ok
14:24:03.0355 0x1554  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
14:24:03.0371 0x1554  WmiAcpi - ok
14:24:03.0387 0x1554  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:24:03.0402 0x1554  wmiApSrv - ok
14:24:03.0433 0x1554  WMPNetworkSvc - ok
14:24:03.0449 0x1554  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:24:03.0511 0x1554  WPCSvc - ok
14:24:03.0574 0x1554  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:24:03.0621 0x1554  WPDBusEnum - ok
14:24:03.0636 0x1554  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:24:03.0699 0x1554  ws2ifsl - ok
14:24:03.0699 0x1554  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
14:24:03.0745 0x1554  wscsvc - ok
14:24:03.0745 0x1554  WSearch - ok
14:24:03.0917 0x1554  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:24:04.0011 0x1554  wuauserv - ok
14:24:04.0057 0x1554  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:24:04.0120 0x1554  WudfPf - ok
14:24:04.0135 0x1554  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
14:24:04.0167 0x1554  WUDFRd - ok
14:24:04.0213 0x1554  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:24:04.0229 0x1554  wudfsvc - ok
14:24:04.0276 0x1554  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:24:04.0323 0x1554  WwanSvc - ok
14:24:04.0385 0x1554  [ DD0042F0C3B606A6A8B92D49AFB18AD6, 8D3BE4C93D02AF5F42EC46AF598D6DA40C61D467CB2FEE5E222F9C1E7A84B852 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
14:24:04.0401 0x1554  YahooAUService - ok
14:24:04.0401 0x1554  ================ Scan global ===============================
14:24:04.0432 0x1554  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
14:24:04.0479 0x1554  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:24:04.0510 0x1554  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:24:04.0541 0x1554  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
14:24:04.0557 0x1554  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
14:24:04.0572 0x1554  [ Global ] - ok
14:24:04.0572 0x1554  ================ Scan MBR ==================================
14:24:04.0588 0x1554  [ 70E629B51C16B3C007730C6AE57144C9 ] \Device\Harddisk0\DR0
14:24:06.0881 0x1554  \Device\Harddisk0\DR0 - ok
14:24:06.0881 0x1554  ================ Scan VBR ==================================
14:24:06.0881 0x1554  [ 962DD49D3ACC8860E011659CBC3B678A ] \Device\Harddisk0\DR0\Partition1
14:24:06.0912 0x1554  \Device\Harddisk0\DR0\Partition1 - ok
14:24:06.0928 0x1554  [ 09DAA8DF20866DA9DCF07F61716CFF4F ] \Device\Harddisk0\DR0\Partition2
14:24:06.0943 0x1554  \Device\Harddisk0\DR0\Partition2 - ok
14:24:06.0959 0x1554  [ 9C89167EBD5DE2BD9493570753FAF9A7 ] \Device\Harddisk0\DR0\Partition3
14:24:06.0959 0x1554  \Device\Harddisk0\DR0\Partition3 - ok
14:24:06.0959 0x1554  ================ Scan generic autorun ======================
14:24:07.0271 0x1554  [ 02C60C606B17D7797377F1AC837EA070, AE1E7BF36E51B655A7516D7CCC79BB53BDE6CA15BF5AF37DB65AE242835E1FC2 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
14:24:07.0458 0x1554  RtHDVCpl - ok
14:24:07.0521 0x1554  [ EAEB34D06AC35097031B0F11595012D7, 5203574367A8FCD9F708CC02A868991D40E4508EE39E6D662F65AD65E9B7E3A0 ] C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
14:24:07.0536 0x1554  mwlDaemon - ok
14:24:07.0567 0x1554  [ D9CB30BF12B3670650C85637EA1AB6EA, AFA4943A853ACE460007D3AFE5D45B4C972BF51777ACF4C0E84684DA6A014131 ] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
14:24:07.0583 0x1554  BackupManagerTray - ok
14:24:07.0630 0x1554  [ 934E24CE3AB6C3306C72A2F1C3625518, 2830F6150D3AC24A4813C82A3DFCD44A406EE6E6DCA145C4FEFFDC57D1B6AB3D ] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
14:24:07.0661 0x1554  Hotkey Utility - ok
14:24:07.0692 0x1554  [ EF533F9D1E4F51C783D4349A7C3F518F, 5A4B84CFC96F13AF4B5EC1F693152A37DA37FC08150EE37913EC5D6EEEFD490E ] C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
14:24:07.0692 0x1554  EgisTecLiveUpdate - ok
14:24:07.0723 0x1554  [ 981E539199217491DF663368C02F4B94, BF17C28733E94D986FEA311DCD6D6507A4FD58515FD5F7C6ABA5A2A92045A511 ] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
14:24:07.0755 0x1554  NortonOnlineBackupReminder - ok
14:24:07.0833 0x1554  [ CABF1DF6108BDE0EA1FDFAA67FA02760, 2CEB8E3C2A222C7542B5108DE8280956A12496497FA65709E3830AF8B8141DD5 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
14:24:07.0864 0x1554  StartCCC - detected UnsignedFile.Multi.Generic ( 1 )
14:24:10.0797 0x1554  Detect skipped due to KSN trusted
14:24:10.0797 0x1554  StartCCC - ok
14:24:10.0859 0x1554  [ 9ACE8ECDB1EBC519F48AA65DE5875573, FE46B6E41E5A74FDA001A3AA24C597B39176C3B71EDFF7D5092D330F0DA5A587 ] C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe
14:24:10.0890 0x1554  TkBellExe - ok
14:24:11.0031 0x1554  [ 2589FFE360BED8F824CBC6171CB5B874, 4C532EE4707F9B4314AF7FC88C86B48AFCDE03A2097919F9801BE47EB5CC61EB ] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
14:24:11.0109 0x1554  LogitechQuickCamRibbon - ok
14:24:11.0171 0x1554  [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
14:24:11.0202 0x1554  APSDaemon - ok
14:24:11.0249 0x1554  [ AF43C4F7F3C8BC95DAD95024F96CDC4A, 6348F6D8F301C5F7290B963D6923E389414ADFBCF6AED562A32245BCADC05580 ] C:\Program Files (x86)\QuickTime\QTTask.exe
14:24:11.0296 0x1554  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
14:24:14.0135 0x1554  Detect skipped due to KSN trusted
14:24:14.0135 0x1554  QuickTime Task - ok
14:24:14.0275 0x1554  [ D3AC38E80E928CC61A22650E04423BB8, 8DB324E5BCC2A721EB0C48F0F3ECC21E49D6172A3BF8ACC55244C08FAEB3101C ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
14:24:14.0307 0x1554  EEventManager - ok
14:24:14.0431 0x1554  [ 5374D3363F5B87CF03125F5FB584C8CE, 905C6F08A616A31566C7510EC4B0F02BA66E1928968343FB22ED37C4FB8BABDD ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
14:24:14.0447 0x1554  avgnt - ok
14:24:14.0556 0x1554  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
14:24:14.0587 0x1554  Adobe ARM - ok
14:24:14.0712 0x1554  [ 1AA5F0A2E3E65A9F6B35C19A7C9D7762, AB08124D101C4FE8B6D4A6056783D2EAD5C049BE39A3DE772E008CD43E36F443 ] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe
14:24:14.0743 0x1554  Nikon Message Center 2 - detected UnsignedFile.Multi.Generic ( 1 )
14:24:17.0692 0x1554  Detect skipped due to KSN trusted
14:24:17.0692 0x1554  Nikon Message Center 2 - ok
14:24:17.0754 0x1554  [ D2E3E6D94A9E1CFA1561D9C748136FD0, C8CD851F1872086D18A329B47C7DEFAD2CE2E3A8F4321411247D06D07B2DB1D3 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
14:24:17.0785 0x1554  iTunesHelper - ok
14:24:17.0910 0x1554  [ E379EB6B78739BA5273E880DE1216FEB, D6FCA1D37F9A6F403BD942965E4BF467A9AA46CD0C90A48275C429E3BD1665D2 ] C:\Program Files (x86)\Acer\Registration\GREG.exe
14:24:18.0035 0x1554  Global Registration - ok
14:24:18.0113 0x1554  [ 2287DAEA100837E40232FD9053F635D8, 8E905B8BC72F8DD6C7C71A7E04CD8D8EC1E9AD2B77EF5A48E089E439A75043D6 ] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE
14:24:18.0160 0x1554  EPLTarget\P0000000000000000 - ok
14:24:18.0300 0x1554  [ 8190C737D783DA1F1D03A150BAC03F35, 03C2E2348376A24D269F863F0238975F0C23457BD9F0EFB692DD66EFA0BC6841 ] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe
14:24:18.0347 0x1554  WinPatrol - ok
14:24:18.0347 0x1554  Waiting for KSN requests completion. In queue: 7
14:24:19.0361 0x1554  Waiting for KSN requests completion. In queue: 7
14:24:20.0375 0x1554  Waiting for KSN requests completion. In queue: 7
14:24:21.0529 0x1554  AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.4.620 ), 0x41000 ( enabled : updated )
14:24:21.0561 0x1554  Win FW state via NFP2: enabled
14:24:24.0400 0x1554  ============================================================
14:24:24.0400 0x1554  Scan finished
14:24:24.0400 0x1554  ============================================================
14:24:24.0415 0x14dc  Detected object count: 0
14:24:24.0415 0x14dc  Actual detected object count: 0
14:24:44.0305 0x0394  Deinitialize success
         


Alt 24.06.2014, 18:58   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Youtube oder Browser-Problem.

Lade dir bitte Emsisoft MBR Master herunter und speichere es auf den Desktop.
  • Führe die mbrmastr.exe aus.
  • Drücke auf Backup MBR und speichere es als emsi auf den Desktop.
  • Schliesse dann das Programm wieder.
  • Packe die erstellte emsi.mbr in ein zip-Archiv (Rechtsklick -> Senden an -> Zip-komprimierten Ordner) und hänge die Datei hier an.
  • Auf dem Desktop wird ebenfalls eine Textdatei MBRMastr_<date>_<time>.txt erstellt. Poste deren Inhalt bitte hier.
__________________
--> Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts

Alt 24.06.2014, 20:06   #7
holly_s
 
Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Hi Schrauber,

Code:
ATTFilter
Detected Windows version: 6.1 Build 7601 Service Pack 1
Installing direct disk access driver ...
Driver connection handle: 0x00000114
1 valid drive(s) found.

Details for Disk 0 - ST310005 28AS Rev CC44:
  Device name              : \\.\PhysicalDrive0
  Geometry (C/H/S)         : 121601/255/63
  Boot loader reputation   : Unknown
  Cross view comparison    : Passed
  Partition table integrity: Passed

  Boot loader hashes
    SHA-1                  : 3183CBF02DD9B39C5FF84F50BA2419D633E30179
    MD5                    : 70E629B51C16B3C007730C6AE57144C9
         
Angehängte Dateien
Dateityp: zip emsi.zip (478 Bytes, 26x aufgerufen)

Alt 25.06.2014, 19:00   #8
schrauber
/// the machine
/// TB-Ausbilder
 

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



emsi.zip bitte bei www.virustotal.com scannen lassen.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 25.06.2014, 20:52   #9
holly_s
 
Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Hallo Schrauber,

Virustotal hat etwas gefunden:

VBA32 suspected of Unknown.BootVirus.I 20140625

Ich sehe keinen logfile bei Virustotal, um ihn hier zu posten. Bei zusätzliche Infos folgt:

Code:
ATTFilter
 File identification
MD5 8032a8e8601de2ebbb4fd7b6ea620a05
SHA1 69a5df4f26e98ce9af439a18f8794e450883dea5
SHA256 db70ed2d4eb2508901d437f05905839b3fc3478c658b9dde44583dcbbdda6f7a
ssdeep
6:5jIqCtCHiD0kCeafjlpdxdXHGPt63eavkblqZ+dQKhtf+Jtu6sbWsour1xxI++lR:5jGokCjblzWPt9OkxqyP/Cu6YFr7TaR

File size 478 Bytes ( 478 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID 	ZIP compressed archive (100.0%)
Tags
zip

VirusTotal metadata
First submission 2014-06-25 18:47:42 UTC ( vor 3 Minuten )
Last submission 2014-06-25 18:47:42 UTC ( vor 3 Minuten )
Dateinamen 	emsi.zip
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xdd206ec9

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
512

ZipCompressedSize
364

FileAccessDate
2014:06:25 19:38:11+01:00

ZipFileName
emsi.mbr

ZipBitFlag
0

FileCreateDate
2014:06:25 19:38:11+01:00

ZipModifyDate
2014:06:24 20:02:28
         

Alt 26.06.2014, 16:18   #10
schrauber
/// the machine
/// TB-Ausbilder
 

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



wieviele der 54 Scanner haben angeschlagen?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 27.06.2014, 11:00   #11
holly_s
 
Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Hi Schrauber,

1 von 54!

Gruß,
holly

Hallo Schrauber,
hatte gestern schon geantwortet, aber da ist wohl was schief gelaufen!
Also 1 von 54 hat angeschlagen!
Gruß

Alt 28.06.2014, 13:48   #12
schrauber
/// the machine
/// TB-Ausbilder
 

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Rechner ist sauber
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 28.06.2014, 15:45   #13
holly_s
 
Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Hallo Schrauber,
ja auch Avira zeigt nun kein verstecktes Objekt mehr an. Vielen vielen Dank für deine Hilfe!!!

Nach der Malware-Geschichte vor 2 Wochen hatte ich Eure Ratschläge beherzigt und mir neben den bereits installierten Avira und MBAM noch zusätzlich WinPatrol, SpywareBlaster und WOT installiert sowie die Add ONs AdblockPlus für Firefox aktiviert.
Doch obwohl ich mich nur auf m. E. "ganz normalen" Internetseiten herumgetrieben habe (keine Spiele oder Filmdownloads), wurde wieder ein verstecktes Objekt gefunden, allerdings nur von Avira, welches übrigens ca. 3-4 Stunden braucht, um schon mal nur den Festplattenteil C auf Viren etc. zu durchsuchen. MBAM hat noch nicht einmal Alarm geschlagen bei dem letzten versteckten Objekt!

Hast du noch weitere Ratschläge wie ich mich noch besser vor Angriffen dieser Art schützen kann und vor allem, was tun, wenn Avira dennoch versteckte Objekte meldet (löschen/in Quarantäne verschieben geht ja bei versteckten Objekten nicht), ohne jedes Mal Eure Hilfe in Anspruch nehmen zu müssen?

Viele Grüße und THANK YOU SO MUCH
holly_s

Alt 29.06.2014, 11:58   #14
schrauber
/// the machine
/// TB-Ausbilder
 

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Standard

Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts



Versteckte Objekte in Avira heisst nicht Malware. Das heisst nur Avira is unfähig das zu scannen. Avira ist eh nicht zu empfehlen. Ich empfehle immer Emsisoft.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts
antivir, antivirus, association, avira, bonjour, branding, combofix, converter, desktop, dvdvideosoft ltd., excel, firefox, flash player, home, homepage, iexplore.exe, mozilla, realtek, registry, scan, security, siteadvisor, svchost.exe, symantec, system, viren, vista, windows



Ähnliche Themen: Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts


  1. Windows XP: Nach fehlgeschlagener Programminstallation fehlen 2 GB Speicherplatz und Avira meldet „Verstecktes Objekt“ C:\windows\system32\
    Log-Analyse und Auswertung - 11.06.2015 (13)
  2. Avira hat unbekanntes Objekt gefunden
    Log-Analyse und Auswertung - 15.11.2014 (9)
  3. Avira hat unbekanntes Objekt gefunden
    Mülltonne - 11.11.2014 (0)
  4. Antivir meldet verstecktes Objekt
    Plagegeister aller Art und deren Bekämpfung - 10.08.2014 (7)
  5. Fehler beim Laden des Moduls (OhijAxok.dat) und 1 verstecktes Objekt
    Plagegeister aller Art und deren Bekämpfung - 14.06.2014 (9)
  6. Absturz während Antimaleware
    Plagegeister aller Art und deren Bekämpfung - 13.10.2013 (13)
  7. verstecktes Objekt gefunden
    Antiviren-, Firewall- und andere Schutzprogramme - 30.08.2013 (2)
  8. flsx.sys (AVG) Verstecktes Objekt
    Log-Analyse und Auswertung - 30.05.2013 (11)
  9. Avira findet ein verstecktes Objekt
    Plagegeister aller Art und deren Bekämpfung - 13.01.2013 (3)
  10. Avira findet Malware und verstecktes Programm - Bitte um Logauswertung
    Log-Analyse und Auswertung - 02.10.2012 (3)
  11. Avira: 1 verstecktes Objekt, 4 Warnungen, 1 Hinweis, aber kein Fund
    Log-Analyse und Auswertung - 22.05.2012 (4)
  12. 1 Verstecktes objekt gefunden schaedlich oder nicht ?
    Plagegeister aller Art und deren Bekämpfung - 07.02.2012 (10)
  13. Hatte Trojaner, habe ihn entfernt. AntiVir bringt jetzt Meldung "verstecktes Objekt" = Trojaner?
    Plagegeister aller Art und deren Bekämpfung - 11.02.2011 (21)
  14. Avira meldet verstecktes Objekt
    Plagegeister aller Art und deren Bekämpfung - 11.02.2011 (0)
  15. Avira AntiVir was ist ein "verstecktes Objekt" & wie kann ich das Problem lösen ?
    Plagegeister aller Art und deren Bekämpfung - 09.10.2010 (17)
  16. ABSTURZ während Ad-aware / VUNDO?
    Plagegeister aller Art und deren Bekämpfung - 09.07.2006 (4)
  17. System Absturz während Virenscan
    Alles rund um Windows - 08.11.2005 (5)

Zum Thema Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts - Hallo Ihr Lieben, nachdem ich erst vor gut einer Wocher Eure Hilfe in Anspruch nehmen musste, hat Avira schon wieder 1 verstecktes Objekt gemeldet. MBAM hingegen nicht! Während ich eben - Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts...
Archiv
Du betrachtest: Avira meldet 1 verstecktes Objekt - PC-Absturz während dieses Posts auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.