| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: IE-Explorer funktioniert nicht mehrWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
25.10.2015, 18:07
| #1 |
 |  IE-Explorer funktioniert nicht mehr Hallo, habe ein Problem mit meinem IE-Explorer. Er startet zwar, aber meldet sobald ich auf eine Seite wechseln will das aufgrund eines Fehlers der ie nun nicht mehr funktioniert. Kann das ein Virus sein? MBam gibt keinen Fehler aus. Ich hatte schon die Addons im Verdacht. Sind aber jetzt alle deaktiviert. Fehler ist immer noch da. Zurückgesetzt habe ich ihn auch schon mal über die erweiterte Steuerung. Aber auch das hat nichts geholfen. Hier noch die Fehlermeldung: Code:
ATTFilter Beschreibung
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Internet Explorer\iexplore.exe
Problemsignatur
Problemereignisame: APPCRASH
Anwendungsname: iexplore.exe
Anwendungsversion: 9.0.8112.16708
Anwendungszeitstempel: 55f27f71
Fehlermodulname: WININET.dll
Fehlermodulversion: 9.0.8112.16708
Fehlermodulzeitstempel: 55f27fb4
Ausnahmecode: c0000005
Ausnahmeoffset: 0000f8e0
Betriebsystemversion: 6.1.7601.2.1.0.768.3
Gebietsschema-ID: 1031
Zusatzinformation 1: 0a9e
Zusatzinformation 2: 0a9e372d3b4ad19135b953a78882e789
Zusatzinformation 3: 0a9e
Zusatzinformation 4: 0a9e372d3b4ad19135b953a78882e789
Geändert von ebb8924 (25.10.2015 um 18:31 Uhr) |
|
25.10.2015, 18:32
| #2 |
| /// the machine /// TB-Ausbilder    | IE-Explorer funktioniert nicht mehr hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
25.10.2015, 18:51
| #3 |
| | IE-Explorer funktioniert nicht mehr Danke für die schnelle Antwort
__________________Hier die FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:25-10-2015 02 durchgeführt von Heike und Achim (Administrator) auf MUEMMEL (25-10-2015 18:40:33) Gestartet von C:\Users\Heike und Achim\Desktop Geladene Profile: Heike und Achim (Verfügbare Profile: Heike und Achim & Heike) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 9 (Standard-Browser: IE) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe () C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe () C:\ProgramData\DatacardService\HWDeviceService64.exe () C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe (M-Budget) C:\Program Files (x86)\M-Budget\M-Budget Data Manager\DashBoardS.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe (Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (Swisscom) C:\Program Files (x86)\M-Budget\Sesam\BIN\SecMIPService.exe (Sierra Wireless, Inc.) C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe (ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe (Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe (Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe () C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LBTWiz.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe (Sony Corporation) C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe () C:\Users\Heike und Achim\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe (Ruiware LLC) C:\Program Files (x86)\Ruiware\WinPatrol\WinPatrol.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Microsoft Corporation) C:\Program Files (x86)\EMET\EMET_notifier.exe () C:\Program Files (x86)\Sunrise T@KE AWAY\ModemListener.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApntEx.exe (ALPS) C:\Program Files\Apoint\Apvfb.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe (Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe (Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe () C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.6.1008.0\McCSPServiceHost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe (Sony Corporation) C:\Program Files\Sony\VAIO Personalization Manager\VpmIfPav.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe (Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775584 2010-05-31] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-05-31] (Realtek Semiconductor) HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [212480 2010-05-31] (Alps Electric Co., Ltd.) HKLM\...\Run: [Bluetooth Connection Assistant] => LBTWIZ.EXE -silent HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [243216 2008-12-18] (Logitech, Inc.) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation) HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [641504 2015-08-21] (McAfee, Inc.) HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation) HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [650080 2011-03-15] (Sony Corporation) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [102400 2010-09-20] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.) HKLM-x32\...\Run: [EMET Notifier] => C:\Program Files (x86)\EMET\EMET_notifier.exe [152152 2012-05-09] (Microsoft Corporation) HKLM-x32\...\Run: [NSU_agent] => C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe [190768 2012-02-28] () HKLM-x32\...\Run: [ModemListener] => C:\Program Files (x86)\Sunrise T@KE AWAY\ModemListener.exe [98304 2010-06-22] () HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) HKLM\...\Policies\Explorer: [NoControlPanel] 0 HKLM\...\Policies\Explorer: [NoFolderOptions] 0 HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [CAHeadless] => C:\Program Files (x86)\Adobe\Elements Organizer 8.0\CAHeadless\ElementsAutoAnalyzer.exe [615808 2009-10-09] (Adobe Systems Incorporated) HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [Elbserver] => C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe [83344 2010-12-15] (Sony Corporation) HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Heike und Achim\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] () HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-07-30] (Google Inc.) HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [] => [X] HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [WinPatrol] => C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe [1154112 2014-07-21] (Ruiware LLC) HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Policies\Explorer: [NoFolderOptions] 0 HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Policies\Explorer: [NoControlPanel] 0 HKU\S-1-5-21-458901301-3535109335-729799517-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\VAIOSC~1.SCR [21098312 2010-05-18] (Sony Europe) HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-12-16] (Microsoft Corporation) HKU\S-1-5-18\...\Policies\Explorer: [NoFolderOptions] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoControlPanel] 0 Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2010-07-30] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\Users\Heike und Achim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk [2010-12-05] ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{C2741310-DA90-4F6E-B0D6-538D8D4DF85A}: [NameServer] 10.74.210.210 10.74.210.211 Tcpip\..\Interfaces\{C3FA99C0-6D20-46D3-A571-87208C430CB4}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-458901301-3535109335-729799517-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-458901301-3535109335-729799517-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp HKU\S-1-5-21-458901301-3535109335-729799517-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/webhp?nord=1 HKU\S-1-5-21-458901301-3535109335-729799517-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-458901301-3535109335-729799517-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-458901301-3535109335-729799517-1000 -> {2A1AA59A-1480-4557-AFA8-FFD0E71DDBA1} URL = hxxp://de.shopping.com/?linkin_id=8056363 SearchScopes: HKU\S-1-5-21-458901301-3535109335-729799517-1000 -> {420B6614-2385-4F7D-8C38-1559A310E066} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-9/4?satitle={searchTerms} SearchScopes: HKU\S-1-5-21-458901301-3535109335-729799517-1000 -> {8D4CF8E5-CE24-449E-913B-64FBA423FC14} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices BHO: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL => Keine Datei BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-22] (Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Keine Datei BHO-x32: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\Program Files\mcafee\msk\mskapbho.dll [2010-11-25] () BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-10-23] (Oracle Corporation) BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-22] (Google Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-23] (Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-22] (Google Inc.) Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-22] (Google Inc.) Toolbar: HKU\S-1-5-21-458901301-3535109335-729799517-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-22] (Google Inc.) DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-10-16] (McAfee, Inc.) Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-10-16] (McAfee, Inc.) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-10-16] (McAfee, Inc.) Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-10-16] (McAfee, Inc.) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-08-21] (McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-08-21] (McAfee, Inc.) FireFox: ======== FF ProfilePath: C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default FF SearchEngineOrder.1: Sichere Suche FF Keyword.URL: hxxp://de.search.yahoo.com/search?fr=mcafee&type=A111DE649&p= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-16] () FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\Windows\system32\npDeployJava1.dll [2012-07-11] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [Keine Datei] FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-08-21] () FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-16] () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-23] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-23] (Oracle Corporation) FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\Sony\MSS\3.8.130\npMcAfeeMss.dll [Keine Datei] FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-08-21] () FF Plugin-x32: @mcafee.com/MVT -> C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll [2014-12-08] (McAfee, Inc.) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2012-12-21] ( ) FF Plugin-x32: @nosltd.com/getPlus+(R),version=1.6.2.103 -> C:\Program Files (x86)\NOS\bin\np_gp.dll [2011-05-25] (NOS Microsystems Ltd.) FF Plugin-x32: @oberon-media.com/ONCAdapter -> C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll [2012-05-31] (Oberon-Media ) FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2010-11-10] () FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-458901301-3535109335-729799517-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Heike und Achim\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-08-30] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-08-30] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-08-30] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-08-30] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-08-30] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np_gp.dll [2011-05-25] (NOS Microsystems Ltd.) FF SearchPlugin: C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\searchplugins\McSiteAdvisor.xml [2015-10-25] FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2014-06-03] FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\artur.dubovoy@gmail.com [2015-09-24] FF Extension: Kein Name - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\{0e3dbc69-a682-48da-84e1-82c63a5d678e}-trash [2012-01-21] [ist nicht signiert] FF Extension: Flash and Video Download - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2015-09-21] FF Extension: All-in-One Sidebar - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2015-10-05] FF Extension: CookieCuller - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}.xpi [2015-05-30] FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2015-09-07] FF HKLM-x32\...\Firefox\Extensions: [{E4D8AFFF-DA7C-412F-A976-05ED142C7806}] - C:\Program Files (x86)\M-Budget\M-Budget Data Manager\FireFox_Remote FF Extension: M-Budget Data Manager - C:\Program Files (x86)\M-Budget\M-Budget Data Manager\FireFox_Remote [2012-12-17] [ist nicht signiert] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2015-08-14] [ist nicht signiert] Chrome: ======= CHR Profile: C:\Users\Heike und Achim\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (SiteAdvisor) - C:\Users\Heike und Achim\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2013-10-23] CHR Extension: (Chrome In-App Payments service) - C:\Users\Heike und Achim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-04] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-10-23] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-10-23] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.) R2 DeviceManager; C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe [40960 2010-06-17] () [Datei ist nicht signiert] R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [413336 2015-08-26] () R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.) R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2014-01-15] () S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [682064 2014-04-26] () R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [157928 2015-10-16] (McAfee, Inc.) R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [782608 2015-08-21] (McAfee, Inc.) S3 McComponentHostServiceSony; C:\Program Files (x86)\Sony\MSS\3.8.130\McCHSvc.exe [235216 2013-10-16] (McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe [1694152 2015-07-23] (McAfee, Inc.) R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.) R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.) S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [639456 2015-07-17] (McAfee, Inc.) S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.) R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.) R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.) R2 MDM Service; C:\Program Files (x86)\M-Budget\M-Budget Data Manager\DashBoardS.exe [153456 2011-06-16] (M-Budget) R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-06-29] (McAfee, Inc.) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [373704 2015-07-06] (McAfee, Inc.) R2 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-06-29] (McAfee, Inc.) R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.) R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation) S3 nosGetPlusHelper; C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll [53248 2011-05-25] (NOS Microsystems Ltd.) S3 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia) R2 SesamService; C:\Program Files (x86)\M-Budget\Sesam\BIN\SecMIPService.exe [1482240 2011-05-16] (Swisscom) [Datei ist nicht signiert] R2 SwiCardDetectSvc; C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe [307568 2010-09-22] (Sierra Wireless, Inc.) R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.) S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [413336 2015-08-26] () R2 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [960160 2011-12-29] (Sony Corporation) R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [836608 2010-06-08] (Sony Corporation) [Datei ist nicht signiert] R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1653272 2015-07-31] (Sony Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S2 !SASCORE; "C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.) R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [77536 2015-07-02] (McAfee, Inc.) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.) S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [125952 2014-07-25] (Huawei Technologies Co., Ltd.) S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [380672 2014-07-23] (Huawei Technologies Co., Ltd.) S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [10326784 2010-06-24] (Intel Corporation) [Datei ist nicht signiert] S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [271872 2010-06-24] (Intel(R) Corporation) [Datei ist nicht signiert] S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [119680 2010-06-17] (TCT International Mobile Ltd) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-10-25] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [412440 2015-07-02] (McAfee, Inc.) R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [347800 2015-07-02] (McAfee, Inc.) R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496888 2015-07-02] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [875928 2015-07-02] (McAfee, Inc.) R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.) S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.) R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [37960 2015-10-16] (McAfee, Inc.) R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344704 2015-07-02] (McAfee, Inc.) S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-07-03] (Secunia) S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [92160 2010-06-16] (Research In Motion Limited) R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [31744 2009-01-09] (Research in Motion Ltd) R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [29352 2015-10-21] () S3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2015-08-04] () R3 WtSmpAdap; C:\Windows\System32\DRIVERS\wtsmpadap.sys [56688 2011-04-11] (Swisscom) R1 WtSmpFlt; C:\Windows\System32\DRIVERS\wtsmpflt.sys [409456 2011-04-11] (Swisscom) S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-25 18:40 - 2015-10-25 18:41 - 00033962 _____ C:\Users\Heike und Achim\Desktop\FRST.txt 2015-10-25 18:40 - 2015-10-25 18:40 - 00000000 ____D C:\FRST 2015-10-25 18:37 - 2015-10-25 18:37 - 02197504 _____ (Farbar) C:\Users\Heike und Achim\Desktop\FRST64.exe 2015-10-24 11:26 - 2015-10-24 11:26 - 00002052 _____ C:\Users\Public\Desktop\Play Hidden Object - Home Makeover.lnk 2015-10-24 11:25 - 2015-10-24 11:26 - 00000000 ____D C:\Program Files (x86)\Hidden Object - Home Makeover 2015-10-24 11:25 - 2015-10-24 11:25 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hidden Object - Home Makeover 2015-10-24 11:25 - 2015-10-24 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hidden Object - Home Makeover 2015-10-24 11:22 - 2015-10-24 11:26 - 00001288 _____ C:\Users\Public\Desktop\More Great Games.lnk 2015-10-24 11:22 - 2015-10-24 11:22 - 00002328 _____ C:\Users\Public\Desktop\Play Off the Record - The Final Interview Collectors Edition.lnk 2015-10-24 11:19 - 2015-10-24 11:22 - 00000000 ____D C:\Program Files (x86)\Off the Record - The Final Interview Collectors Edition 2015-10-24 11:19 - 2015-10-24 11:19 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Off the Record - The Final Interview Collectors Edition 2015-10-24 11:19 - 2015-10-24 11:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Off the Record - The Final Interview Collectors Edition 2015-10-23 18:44 - 2015-10-23 18:44 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\League of Light - Silent Mountain Strategy Guide 2015-10-22 19:45 - 2015-10-22 19:45 - 00002105 _____ C:\Users\Heike und Achim\Desktop\Happy Empire.lnk 2015-10-21 20:25 - 2015-10-21 20:25 - 00003148 _____ C:\Windows\System32\Tasks\USER_ESRV_SVC 2015-10-21 20:25 - 2015-10-21 20:25 - 00002027 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk 2015-10-21 20:25 - 2015-10-21 20:25 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care 2015-10-21 20:25 - 2015-10-21 20:21 - 00029352 _____ C:\Windows\system32\Drivers\semav6msr64.sys 2015-10-21 20:25 - 2015-10-21 20:21 - 00010324 _____ C:\Windows\system32\Drivers\semav6msr64.cat 2015-10-21 16:59 - 2015-10-21 16:59 - 00001365 _____ C:\Users\Public\Desktop\Solitaire Halloween Story.lnk 2015-10-21 16:57 - 2015-10-21 16:58 - 40896936 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\SolitaireHalloweenStory.exe 2015-10-18 21:24 - 2015-10-18 21:27 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Islands2 realore intenium 2015-10-18 21:23 - 2015-10-18 21:23 - 00001233 _____ C:\Users\Public\Desktop\Island Tribe 2.lnk 2015-10-18 21:19 - 2015-10-18 21:21 - 122944696 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\IslandTribe2.exe 2015-10-16 19:41 - 2015-10-16 19:41 - 00003072 _____ C:\Users\Heike und Achim\AppData\Roaming\.spark_db 2015-10-16 15:33 - 2015-10-16 15:33 - 00000000 ____D C:\Users\Heike und Achim\AppData\LocalLow\Green Sauce Games 2015-10-16 15:30 - 2015-10-17 11:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-10-16 15:30 - 2015-10-16 16:36 - 00000000 ____D C:\Program Files (x86)\Forgotten Tales - Day of the Dead 2015-10-15 19:44 - 2015-10-16 20:19 - 00000000 ____D C:\Program Files (x86)\The Dreamatorium of Dr. Magnus 2 2015-10-15 19:38 - 2015-10-16 18:50 - 00000000 ____D C:\Program Files (x86)\Redemption Cemetery - Clock of Fate Collectors Edition 2015-10-15 16:18 - 2015-09-18 20:22 - 00025432 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2015-10-15 16:18 - 2015-09-18 20:19 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-10-15 16:18 - 2015-09-18 20:19 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-10-15 16:18 - 2015-09-18 20:19 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-10-15 16:18 - 2015-09-18 20:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-10-15 16:18 - 2015-09-18 20:19 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-10-15 16:18 - 2015-09-18 20:09 - 01163776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-10-14 17:43 - 2015-10-14 17:43 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\quickclick 2015-10-14 16:46 - 2015-09-11 08:59 - 17890816 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-10-14 16:46 - 2015-09-11 08:56 - 02349568 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-10-14 16:46 - 2015-09-11 08:52 - 10936832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-10-14 16:46 - 2015-09-11 08:51 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-10-14 16:46 - 2015-09-11 08:51 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-10-14 16:46 - 2015-09-11 08:50 - 02158080 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-10-14 16:46 - 2015-09-11 08:50 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-10-14 16:46 - 2015-09-11 08:50 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-10-14 16:46 - 2015-09-11 08:49 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-10-14 16:46 - 2015-09-11 08:49 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-10-14 16:46 - 2015-09-11 08:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2015-10-14 16:46 - 2015-09-11 08:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2015-10-14 16:46 - 2015-09-11 08:49 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2015-10-14 16:46 - 2015-09-11 08:22 - 01814016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-10-14 16:46 - 2015-09-11 08:21 - 12388352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-10-14 16:46 - 2015-09-11 08:19 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-10-14 16:46 - 2015-09-11 08:17 - 09751552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-10-14 16:46 - 2015-09-11 08:16 - 01139712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-10-14 16:46 - 2015-09-11 08:16 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-10-14 16:46 - 2015-09-11 08:15 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-10-14 16:46 - 2015-09-11 08:15 - 00422912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-10-14 16:46 - 2015-09-11 08:14 - 01804288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00718848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-10-14 16:46 - 2015-09-11 08:14 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2015-10-14 16:46 - 2015-09-11 08:14 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2015-10-14 16:46 - 2015-09-11 08:14 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2015-10-14 16:43 - 2015-10-01 19:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2015-10-14 16:43 - 2015-10-01 19:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2015-10-14 16:43 - 2015-10-01 19:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2015-10-14 16:43 - 2015-10-01 19:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2015-10-14 16:43 - 2015-10-01 19:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2015-10-14 16:43 - 2015-10-01 19:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2015-10-14 16:43 - 2015-10-01 19:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2015-10-14 16:43 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2015-10-14 16:43 - 2015-10-01 18:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2015-10-14 16:43 - 2015-09-29 04:16 - 05569472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-10-14 16:43 - 2015-09-29 04:13 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-10-14 16:43 - 2015-09-29 04:11 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-10-14 16:43 - 2015-09-29 04:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-10-14 16:43 - 2015-09-29 04:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-10-14 16:43 - 2015-09-29 04:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-10-14 16:43 - 2015-09-29 04:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-10-14 16:43 - 2015-09-29 04:11 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-10-14 16:43 - 2015-09-29 04:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-10-14 16:43 - 2015-09-29 04:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-10-14 16:43 - 2015-09-29 04:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-10-14 16:43 - 2015-09-29 04:10 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-10-14 16:43 - 2015-09-29 04:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-10-14 16:43 - 2015-09-29 04:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-10-14 16:43 - 2015-09-29 04:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-10-14 16:43 - 2015-09-29 04:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-10-14 16:43 - 2015-09-29 04:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-10-14 16:43 - 2015-09-29 04:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-10-14 16:43 - 2015-09-29 04:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-10-14 16:43 - 2015-09-29 04:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-10-14 16:43 - 2015-09-29 04:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-10-14 16:43 - 2015-09-29 04:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-10-14 16:43 - 2015-09-29 04:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-10-14 16:43 - 2015-09-29 04:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-10-14 16:43 - 2015-09-29 04:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-10-14 16:43 - 2015-09-29 04:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-10-14 16:43 - 2015-09-29 04:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-10-14 16:43 - 2015-09-29 04:02 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-10-14 16:43 - 2015-09-29 03:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-10-14 16:43 - 2015-09-29 03:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-10-14 16:43 - 2015-09-29 03:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-10-14 16:43 - 2015-09-29 03:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-10-14 16:43 - 2015-09-29 03:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-10-14 16:43 - 2015-09-29 03:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-10-14 16:43 - 2015-09-29 03:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2015-10-14 16:43 - 2015-09-29 03:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-10-14 16:43 - 2015-09-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-10-14 16:43 - 2015-09-29 03:57 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-10-14 16:43 - 2015-09-29 03:57 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-10-14 16:43 - 2015-09-29 03:57 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-10-14 16:43 - 2015-09-29 03:57 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-10-14 16:43 - 2015-09-29 03:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-10-14 16:43 - 2015-09-29 03:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 02:50 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-10-14 16:43 - 2015-09-29 02:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-10-14 16:43 - 2015-09-29 02:49 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-10-14 16:43 - 2015-09-29 02:43 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-10-14 16:43 - 2015-09-29 02:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-10-14 16:43 - 2015-09-29 02:40 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 02:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 02:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-10-14 16:43 - 2015-09-29 02:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-10-14 16:43 - 2015-09-15 19:17 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-10-14 16:43 - 2015-09-15 19:17 - 00097112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-10-14 16:43 - 2015-09-15 19:11 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-10-14 16:43 - 2015-09-15 19:11 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-10-14 16:43 - 2015-09-15 19:11 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-10-14 16:43 - 2015-09-15 19:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-10-14 16:43 - 2015-09-15 19:11 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-10-14 16:43 - 2015-09-15 19:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-10-14 16:43 - 2015-09-15 19:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-10-14 16:43 - 2015-09-15 18:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-10-14 16:43 - 2015-09-15 18:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-10-14 16:43 - 2015-09-15 18:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-10-14 16:43 - 2015-09-15 18:35 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-10-14 16:43 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-10-14 16:43 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2015-10-14 16:43 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-10-14 16:43 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2015-10-14 16:42 - 2015-09-25 19:07 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-10-14 16:42 - 2015-09-25 19:07 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-10-14 16:42 - 2015-09-25 19:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-10-14 16:42 - 2015-09-25 19:07 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-10-14 16:42 - 2015-09-25 19:07 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-10-14 16:42 - 2015-09-25 19:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-10-14 16:42 - 2015-09-25 19:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-10-14 16:42 - 2015-09-25 19:06 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-10-14 16:42 - 2015-09-25 19:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-10-14 16:42 - 2015-09-25 19:06 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-10-14 16:42 - 2015-09-25 19:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-10-14 16:42 - 2015-09-25 18:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-10-14 16:42 - 2015-09-25 18:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-10-14 16:42 - 2015-09-25 18:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-10-14 16:42 - 2015-09-25 18:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-10-14 16:42 - 2015-09-25 18:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-10-14 16:42 - 2015-07-18 14:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2015-10-13 16:51 - 2015-10-13 16:57 - 94066280 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\TravelRiddlesTripToItaly.exe 2015-10-12 16:50 - 2015-10-12 16:53 - 00000000 ____D C:\Program Files (x86)\12 Labours of Hercules IV - Mother Nature 2015-10-11 13:58 - 2015-10-11 13:58 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\LostAmuletsStoneGarden 2015-10-11 11:53 - 2015-10-11 11:53 - 00000717 _____ C:\Users\Heike und Achim\Downloads\Win10ZwangsDL.zip 2015-10-11 11:14 - 2015-10-11 19:22 - 00000000 ____D C:\Program Files (x86)\Mystery Crusaders - Resurgence of the Templars Collectors Edition 2015-10-11 11:01 - 2015-10-16 22:13 - 00000000 ____D C:\Program Files (x86)\Midnight Calling - Anabel Collectors Edition 2015-10-11 10:46 - 2015-10-11 14:53 - 00000000 ____D C:\Program Files (x86)\Lost Amulets - Stone Garden 2015-10-10 09:59 - 2015-10-10 09:59 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Magic Match 2015-10-09 22:24 - 2015-10-09 22:26 - 130119280 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\AladinsWunderlampe.exe 2015-10-09 22:18 - 2015-10-09 22:21 - 00000000 _____ C:\Users\Heike und Achim\Downloads\CaribbeanRiddle.exe 2015-10-09 18:06 - 2015-10-12 18:53 - 00000000 ____D C:\Program Files (x86)\Haunted Hotel - Phoenix 2015-10-08 19:35 - 2015-10-08 19:35 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\fantasy_mosaics_10 2015-10-08 19:34 - 2015-10-08 21:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fantasy Mosaics 10 - Time Travel 2015-10-07 22:09 - 2015-10-07 22:09 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\GWX 2015-10-07 20:09 - 2015-10-07 20:09 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\fantasy_mosaics_11_iwin 2015-10-07 18:20 - 2015-10-07 18:22 - 46098934 _____ C:\Users\Heike und Achim\Downloads\11786663_878788578861876_285410985_n.mp4(1).mp4 2015-10-06 21:51 - 2015-10-06 21:51 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Oracle 2015-10-04 12:57 - 2015-10-04 13:02 - 329789864 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\MeineKleineFarmHauRuck.exe 2015-10-04 11:05 - 2015-10-04 11:07 - 62939664 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\GriddlersStrandsaison.exe 2015-10-04 10:32 - 2015-10-04 10:33 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\RedPanda 2015-10-03 17:59 - 2015-10-03 17:59 - 02048992 _____ C:\Users\Heike und Achim\Downloads\httpsvideo-bru2-1.xx.fbcdn.nethvideo-xpt1vt43.1792-211997595_881816798568214_2676633_n.mp4efg=eyJybHIiOjE1NTIsInJsYSI6MTAyNCwidmVuY29kZV90YWciOiJoZCJ9&rl=1552&vabr=1035&oh=820ed8dc4c6bd27d187928b523d08761&oe=561031E8.mp4 2015-09-30 17:44 - 2015-10-19 20:50 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Cateia Games 2015-09-28 18:52 - 2015-09-28 18:52 - 00148036 _____ C:\Users\Heike und Achim\Documents\adi12.pptx 2015-09-28 18:45 - 2015-09-28 19:16 - 00148005 _____ C:\Users\Heike und Achim\Documents\adi11.pptx 2015-09-28 18:45 - 2015-09-28 18:45 - 00147876 _____ C:\Users\Heike und Achim\Documents\adi1.pptx 2015-09-28 18:31 - 2015-09-28 18:34 - 135395524 _____ C:\Users\Heike und Achim\Downloads\150928_39196_lhe_1456k_p13v11.mp4 2015-09-27 21:32 - 2015-09-27 21:33 - 96391328 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\JagdDurchDenWildenWesten.exe 2015-09-26 20:10 - 2015-09-26 21:32 - 00147624 _____ C:\Users\Heike und Achim\Documents\adi.pptx 2015-09-26 16:49 - 2015-09-26 16:49 - 00051135 _____ C:\Users\Heike und Achim\Documents\Einladung_Adi_Entwurf.pptx ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-25 18:32 - 2010-12-05 10:35 - 01638214 _____ C:\Windows\WindowsUpdate.log 2015-10-25 18:29 - 2012-04-02 16:29 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-10-25 18:18 - 2010-12-05 10:46 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{CC221A39-85F4-4CDD-BC0D-616AC92F41A3} 2015-10-25 18:17 - 2014-02-11 23:09 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf2775ef6295e7.job 2015-10-25 17:21 - 2009-07-14 05:45 - 00013872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-10-25 17:21 - 2009-07-14 05:45 - 00013872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-10-25 17:15 - 2015-02-10 18:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2015-10-25 17:15 - 2010-07-31 00:24 - 00699682 _____ C:\Windows\system32\perfh007.dat 2015-10-25 17:15 - 2010-07-31 00:24 - 00149790 _____ C:\Windows\system32\perfc007.dat 2015-10-25 17:15 - 2009-07-14 06:13 - 01620684 _____ C:\Windows\system32\PerfStringBackup.INI 2015-10-25 17:09 - 2014-07-02 19:15 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-10-25 17:09 - 2010-07-30 14:50 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-25 17:08 - 2013-02-03 20:21 - 00380265 _____ C:\Windows\setupact.log 2015-10-25 17:08 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-10-25 17:05 - 2011-01-13 00:00 - 00007639 _____ C:\Users\Heike und Achim\AppData\Local\Resmon.ResmonCfg 2015-10-25 15:35 - 2013-05-12 10:23 - 00030774 _____ C:\Windows\LkmdfCoInst.log 2015-10-25 15:35 - 2010-12-05 13:48 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys 2015-10-25 05:29 - 2012-12-17 17:04 - 00000000 ____D C:\ProgramData\MDM 2015-10-24 23:28 - 2011-01-25 18:01 - 00000000 ____D C:\ProgramData\TEMP 2015-10-24 17:52 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-10-24 15:18 - 2012-11-07 19:19 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Mad Head Games 2015-10-24 14:33 - 2013-07-08 21:29 - 00000000 ____D C:\BigFishCache 2015-10-24 14:12 - 2013-02-03 20:58 - 00475630 _____ C:\Windows\PFRO.log 2015-10-24 09:54 - 2012-01-27 16:32 - 00585216 ___SH C:\Users\Heike und Achim\Documents\Thumbs.db 2015-10-23 21:12 - 2012-08-10 13:23 - 00000000 ____D C:\ProgramData\DailyMagic 2015-10-23 21:12 - 2011-12-09 16:29 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\DailyMagic 2015-10-23 18:14 - 2011-07-28 17:12 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Mariaglorum 2015-10-23 16:08 - 2011-07-23 14:38 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Elephant Games 2015-10-23 14:59 - 2014-10-26 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-10-23 14:57 - 2015-08-31 16:30 - 00000000 ____D C:\Users\Heike und Achim\.oracle_jre_usage 2015-10-23 14:55 - 2015-01-26 23:02 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2015-10-23 14:54 - 2014-10-26 21:57 - 00000000 ____D C:\Program Files (x86)\Java 2015-10-22 19:51 - 2014-12-09 19:11 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Happy Empire 2015-10-22 19:36 - 2015-07-29 18:13 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\GamesManager 2015-10-21 20:26 - 2010-12-05 11:53 - 00000000 ____D C:\Update 2015-10-21 20:25 - 2010-07-30 14:36 - 00000000 ____D C:\Program Files (x86)\Sony 2015-10-21 20:24 - 2011-01-18 07:04 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation 2015-10-21 20:24 - 2010-07-30 14:37 - 00000000 ____D C:\Program Files\Sony 2015-10-21 19:56 - 2012-09-09 21:35 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Eipix 2015-10-21 16:59 - 2014-04-18 15:40 - 00001091 _____ C:\Users\Public\Desktop\GAME CENTER.lnk 2015-10-21 16:59 - 2013-02-22 22:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DEUTSCHLAND SPIELT 2015-10-21 16:59 - 2012-07-02 18:12 - 00000000 ____D C:\Program Files (x86)\DEUTSCHLAND SPIELT 2015-10-19 17:32 - 2012-08-08 08:46 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\DominiGames 2015-10-17 18:53 - 2011-07-23 21:46 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Vast Studios 2015-10-17 11:58 - 2014-07-02 19:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-10-17 11:58 - 2014-07-02 19:14 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-10-17 11:58 - 2012-06-10 15:16 - 00001062 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-10-17 11:42 - 2012-07-11 19:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-10-16 20:29 - 2012-04-02 16:29 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-10-16 20:29 - 2012-04-02 16:29 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-10-16 20:29 - 2011-05-16 19:53 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-10-16 19:42 - 2014-11-01 15:51 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Two Desperados 2015-10-16 18:18 - 2011-04-15 18:55 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\ERS Game Studios 2015-10-15 19:46 - 2014-11-27 18:51 - 00000000 ____D C:\Users\Heike und Achim\AppData\LocalLow\Seven Sails Ltda 2015-10-15 17:10 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2015-10-15 16:19 - 2015-04-15 17:40 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-10-15 16:19 - 2015-04-15 17:40 - 00000000 ____D C:\Windows\system32\appraiser 2015-10-14 19:13 - 2012-09-04 21:20 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\8floor 2015-10-14 17:18 - 2013-07-22 02:01 - 00000000 ____D C:\Windows\system32\MRT 2015-10-14 17:18 - 2010-12-05 11:16 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-10-14 16:58 - 2010-12-05 11:35 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-10-13 17:27 - 2013-08-16 19:34 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-10-13 17:24 - 2015-01-06 17:32 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-10-12 17:11 - 2011-08-11 22:25 - 00000000 ____D C:\ProgramData\PuzzlesByJoe 2015-10-11 18:47 - 2011-11-13 21:29 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\ChaYoWo Games 2015-10-11 16:32 - 2012-10-31 20:24 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Rumbic Studio 2015-10-11 11:55 - 2012-07-18 18:18 - 00000318 _____ C:\Users\Heike und Achim\Desktop\Nachbar.txt 2015-10-09 19:50 - 2015-08-28 20:32 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\AlawarEntertainment 2015-10-05 08:50 - 2014-07-02 19:14 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-10-05 08:50 - 2014-07-02 19:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-10-05 08:50 - 2012-06-10 15:15 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2015-10-04 16:14 - 2011-12-26 22:03 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Absolutist 2015-09-27 21:36 - 2012-08-07 21:01 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\rokapublish ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-10-16 19:41 - 2015-10-16 19:41 - 0003072 _____ () C:\Users\Heike und Achim\AppData\Roaming\.spark_db 2014-06-11 20:31 - 2015-05-03 16:24 - 0000268 ___RH () C:\Users\Heike und Achim\AppData\Roaming\Galaxy Swirl 2014-06-11 20:31 - 2015-05-03 16:24 - 0000268 ___RH () C:\Users\Heike und Achim\AppData\Roaming\Generic 2015-02-25 17:50 - 2015-02-25 17:50 - 0000000 _____ () C:\Users\Heike und Achim\AppData\Roaming\log.txt 2014-06-16 18:48 - 2014-06-16 18:48 - 0000268 ___RH () C:\Users\Heike und Achim\AppData\Roaming\Pedal Hard 2011-09-26 17:48 - 2011-09-26 21:33 - 0000523 _____ () C:\Users\Heike und Achim\AppData\Roaming\prefsdb.dat 2011-01-07 19:22 - 2011-01-07 19:40 - 0000154 _____ () C:\Users\Heike und Achim\AppData\Roaming\Rim.Desktop.Exception.log 2011-01-07 19:20 - 2011-01-07 19:20 - 0001149 _____ () C:\Users\Heike und Achim\AppData\Roaming\Rim.Desktop.HttpServerSetup.log 2013-04-18 20:30 - 2013-04-18 21:29 - 0247455 _____ () C:\Users\Heike und Achim\AppData\Roaming\SolitaireTwistCollection_save.txt 2011-01-06 19:57 - 2014-05-22 21:36 - 0007680 _____ () C:\Users\Heike und Achim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-12-06 18:27 - 2014-12-06 18:27 - 0020955 _____ () C:\Users\Heike und Achim\AppData\Local\recently-used.xbel 2011-01-13 00:00 - 2015-10-25 17:05 - 0007639 _____ () C:\Users\Heike und Achim\AppData\Local\Resmon.ResmonCfg 2012-05-22 22:35 - 2012-05-22 22:36 - 0013410 _____ () C:\Users\Heike und Achim\AppData\Local\slot1.mm1 2012-04-27 18:48 - 2012-04-27 18:54 - 0003396 _____ () C:\ProgramData\dscraneg_save.log 2015-05-03 16:24 - 2015-05-03 16:24 - 0000268 ___RH () C:\ProgramData\Grapher 2015-05-03 16:24 - 2015-05-03 16:24 - 0000268 ___RH () C:\ProgramData\Guides 2010-12-05 13:33 - 2014-12-01 18:46 - 0000952 ___SH () C:\ProgramData\KGyGaAvL.sys 2014-06-16 18:48 - 2014-06-16 18:48 - 0000268 ___RH () C:\ProgramData\Phaser 2014-06-16 18:44 - 2015-07-23 19:54 - 0000020 ____H () C:\ProgramData\PKP_DLbx.DAT 2014-06-11 20:35 - 2015-05-03 16:15 - 0000000 ____H () C:\ProgramData\PKP_DLes.DAT 2014-06-11 20:31 - 2015-05-03 16:24 - 0000020 ____H () C:\ProgramData\PKP_DLet.DAT 2014-06-11 20:31 - 2015-05-03 16:24 - 0000020 ____H () C:\ProgramData\PKP_DLev.DAT 2013-10-24 20:53 - 2013-10-24 21:20 - 0000150 _____ () C:\ProgramData\zen_msave.log Dateien, die verschoben oder gelöscht werden sollten: ==================== C:\Users\Heike und Achim\grub.exe C:\Users\Heike und Achim\rescue2usb.exe Einige Dateien in TEMP: ==================== C:\Users\Heike und Achim\AppData\Local\Temp\jre-8u60-windows-au.exe C:\Users\Heike und Achim\AppData\Local\Temp\jre-8u65-windows-au.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-10-24 15:45 ==================== Ende von FRST.txt ============================ |
|
25.10.2015, 21:14
| #4 |
| | IE-Explorer funktioniert nicht mehr und die Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:25-10-2015 02
durchgeführt von Heike und Achim (2015-10-25 18:43:25)
Gestartet von C:\Users\Heike und Achim\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2010-12-05 09:33:45)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-458901301-3535109335-729799517-500 - Administrator - Disabled)
Gast (S-1-5-21-458901301-3535109335-729799517-501 - Limited - Disabled)
Heike (S-1-5-21-458901301-3535109335-729799517-1003 - Limited - Enabled) => C:\Users\Heike
Heike und Achim (S-1-5-21-458901301-3535109335-729799517-1000 - Administrator - Enabled) => C:\Users\Heike und Achim
HomeGroupUser$ (S-1-5-21-458901301-3535109335-729799517-1002 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.16 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0916-000001000000}) (Version: 9.16.00.0 - Igor Pavlov)
7-Zip 9.21 (HKLM-x32\...\{23170F69-40C1-2701-0921-000001000000}) (Version: 9.21.00.0 - Igor Pavlov)
Adelantado Trilogy: Book One (HKLM-x32\...\BFG-Adelantado Trilogy - Book One) (Version: - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Adobe Download Manager (HKLM-x32\...\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}) (Version: 1.6.2.103 - NOS Microsystems Ltd.)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Photoshop Elements 8.0 (HKLM-x32\...\Adobe Photoshop Elements 8.0) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 8.0 (HKLM-x32\...\PremElem80) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - ALPS ELECTRIC CO., LTD.)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Another Case Solved (HKLM-x32\...\BFG-Another Case Solved) (Version: - )
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{7BB90344-0647-468E-925A-7F69F7983421}) (Version: 2.0.1.115 - ArcSoft)
ArcSoft WebCam Companion 3 (HKLM-x32\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.390 - ArcSoft)
ATI Catalyst Install Manager (HKLM\...\{5BC83141-83DD-07BE-C940-04B385540F04}) (Version: 3.0.769.0 - ATI Technologies, Inc.)
Audiograbber 1.83 SE (HKLM-x32\...\Audiograbber) (Version: 1.83 SE - Audiograbber)
Audiograbber MP3-Plugin (HKLM-x32\...\Audiograbber-Lame) (Version: 1.0 - AG)
Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.8.9045 - )
Big Fish: Game Manager (HKLM-x32\...\BFGC) (Version: 3.3.0.2 - )
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
BlackBerry Desktop Software 6.0.1 (HKLM-x32\...\BlackBerry_Desktop) (Version: 6.0.1.18 - Research in Motion Ltd.)
BlackBerry Desktop Software 6.0.1 (x32 Version: 6.0.1.18 - Research in Motion Ltd.) Hidden
Build-a-lot World (HKLM-x32\...\BFG-Build-a-lot World) (Version: - )
Capture NX 2 (HKLM\...\Capture NX 2) (Version: 2.4.7 - NIKON CORPORATION)
Capture NX-D (HKLM\...\{794529D3-D489-4CF2-B2ED-CF241809E5EC}) (Version: 1.2.0 - Nikon)
ccc-core-static (x32 Version: 2010.0920.2143.37117 - Ihr Firmenname) Hidden
CDDRV_Installer (Version: 4.60 - Logitech) Hidden
Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.0.6.166 - Corel Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Parables: Der Fluch des Froschkönigs - Sammleredition (HKLM-x32\...\BFG-Dark Parables - Der Fluch des Froschkoenigs - Sammleredition) (Version: - )
DEUTSCHLAND SPIELT GAME CENTER (HKLM-x32\...\DSGPlayer) (Version: 2.4.2.14 - INTENIUM GmbH)
doPDF 7.2 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
EMET (HKLM-x32\...\{DE7A5DDF-47B3-42FF-A082-E158DEA37392}) (Version: 3.0.0 - Microsoft)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Evernote (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 3.5.4.2224 - Evernote Corp.)
Farm Frenzy Inc. (HKLM-x32\...\BFG-Farm Frenzy Inc.) (Version: - )
Fill and Cross: Trick or Treat 2 (HKLM-x32\...\BFG-Fill and Cross - Trick or Treat 2) (Version: - )
Fishdom: Frosty Splash (HKLM-x32\...\Fishdom: Frosty Splash) (Version: - iWin.com)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Free Video to MP3 Converter version 5.0.20.1031 (HKLM-x32\...\Free Video to MP3 Converter_is1) (Version: 5.0.20.1031 - DVDVideoSoft Ltd.)
Free WebM Video Converter version 5.0.33.213 (HKLM-x32\...\Free WebM Video Converter_is1) (Version: 5.0.33.213 - DVDVideoSoft Ltd.)
Games Manager (HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\GamesManager) (Version: 2.1.30.205 - iWin Inc.)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Happy Empire (HKLM-x32\...\Happy Empire) (Version: - iWin.com)
Hidden Object: Home Makeover (HKLM-x32\...\BFG-Hidden Object - Home Makeover) (Version: - )
inSSIDer (HKLM-x32\...\{F8A10A25-D8DD-4661-9A1E-7F6DBAAA3C5E}) (Version: 2.1.5 - MetaGeek)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.02.00.1002 - Intel Corporation)
Internet Manager (HKLM-x32\...\Internet Manager) (Version: 22.001.19.05.55 - Huawei Technologies Co.,Ltd)
Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Island Tribe 2 (HKLM-x32\...\Island Tribe 2) (Version: 0.0.0.0 - INTENIUM GmbH)
Island Tribe 4 (HKLM-x32\...\Island Tribe 4) (Version: - iWin.com)
Island Tribe 5 (HKLM-x32\...\BFG-Island Tribe 5) (Version: - )
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KhalInstallWrapper (Version: 4.72.40 - Logitech) Hidden
Kingdom Chronicles Sammleredition (HKLM-x32\...\BFG-Kingdom Chronicles Sammleredition) (Version: - )
Logitech SetPoint 6.32 (HKLM\...\sp6) (Version: 6.32.20 - Logitech)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
M-Budget Data Manager 1.1.0 (HKLM-x32\...\{DE9A9FFD-2282-487A-9D26-8B3DD7B35C0B}) (Version: 1.1.21186.0 - M-Budget)
McAfee Internet Security (HKLM-x32\...\MSC) (Version: 14.0.4121 - McAfee, Inc.)
McAfee Virtual Technician (HKLM-x32\...\McAfee Virtual Technician) (Version: 7.6.0.202 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.184 - McAfee, Inc.)
Media Gallery (Version: 1.4.0.11300 - Your Company Name) Hidden
Mein CEWE FOTOBUCH (HKLM-x32\...\Mein CEWE FOTOBUCH) (Version: 5.1.7 - CEWE Stiftung u Co. KGaA)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d07b0db5-8dad-40e1-be90-88026298a46b}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{2749c485-3a8b-4533-92ff-7cf6e8221cff}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Moai: Build Your Dream (HKLM-x32\...\Moai: Build Your Dream) (Version: 1.0.0.341 - iWin.com)
Monument Builders - The Big Apple - Double Pack (HKLM-x32\...\510009725) (Version: - Oberon Media)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 41.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 de)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
My Kingdom for the Princess Value Pack (HKLM-x32\...\510009795) (Version: - Oberon Media)
myphotobook.de (HKLM-x32\...\de.myphotobook.creator.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1) (Version: 1.2.2-588 - myphotobook GmbH)
myphotobook.de (x32 Version: 1.2.2 - myphotobook GmbH) Hidden
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.1 - Nikon)
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
Nokia PC Suite (x32 Version: 7.1.180.94 - Nokia) Hidden
Nokia Software Updater (HKLM-x32\...\{7130468A-F53F-4698-8C09-A339EA3B05E6}) (Version: 3.0.655 - Nokia Corporation)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.7.22.0 - Nokia)
Nokia Suite (x32 Version: 3.7.22.0 - Nokia) Hidden
Northern Tale (HKLM-x32\...\BFG-Northern Tale) (Version: - )
Northern Tale 4 (HKLM-x32\...\BFG-Northern Tale 4) (Version: - )
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
NVIDIA PhysX (HKLM-x32\...\{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}) (Version: 9.12.0613 - NVIDIA Corporation)
Off the Record: The Final Interview Collector's Edition (HKLM-x32\...\BFG-Off the Record - The Final Interview Collectors Edition) (Version: - )
OnlineFotoservice (HKLM-x32\...\OnlineFotoservice) (Version: 6.0.4 - CEWE Stiftung u Co. KGaA)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Picture Control Utility 2 (HKLM\...\{D4893C47-704F-4B84-8486-9DE4974ACA6F}) (Version: 2.1.0 - Nikon)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.1 - Nikon)
PlayMemories Home Plug-in (Version: 2.0.00.14170 - Sony Corporation) Hidden
PlayMemories Home/PMB VAIO Edition Plug-in 3D Theme Data (x32 Version: 1.0.00.16130 - Sony Corporation) Hidden
PlayMemories Home/PMB VAIO Edition Plug-in Ver.2.2 Upgrade Program (x32 Version: 2.2.00.18250 - Sony Corporation) Hidden
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.6.02.06173 - Sony Corporation)
PMB VAIO Edition Guide (x32 Version: 1.5.00.03020 - Sony Corporation) Hidden
Quick Web Access (HKLM-x32\...\splashtop) (Version: 1.4.7.0 - Sony Corporation)
Quick Web Access (x32 Version: 1.4.7.0 - Sony Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6098 - Realtek Semiconductor Corp.)
Remote Play mit PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.0.2.06212 - Sony Corporation)
Remote Play with PlayStation 3 (x32 Version: 1.0.2.06210 - Sony Corporation) Hidden
Remote-Tastatur mit PlayStation 3 (HKLM-x32\...\{65B138AE-F636-4D4C-BA5D-A06E21E47C53}) (Version: 1.0.2.06170 - Sony Corporation)
Roads of Rome 3 (HKLM-x32\...\Roads of Rome 3) (Version: 1.0.0.0 - iWin.com)
Secunia PSI (3.0.0.7011) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.7011 - Secunia)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SmartSound Quicktracks for Premiere Elements 8.0 (HKLM-x32\...\InstallShield_{4685A344-6718-4923-AA9D-158A0A2E1CFB}) (Version: 3.11.3090 - SmartSound Software Inc)
SmartSound Quicktracks for Premiere Elements 8.0 (x32 Version: 3.11.3090 - SmartSound Software Inc) Hidden
Solitaire Halloween Story (HKLM-x32\...\Solitaire Halloween Story) (Version: 0.0.0.0 - INTENIUM GmbH)
Sunrise T@KE AWAY (HKLM-x32\...\Sunrise T@KE AWAY ALCATEL_is1) (Version: - Alcatel)
Surface: Alone in the Mist (HKLM-x32\...\BFG-Surface - Alone in the Mist) (Version: - )
Tibetan Quest: Beyond the World's End Collector's Edition (HKLM-x32\...\BFG-Tibetan Quest - Beyond the Worlds End Collectors Edition) (Version: - )
VAIO - Media Gallery (HKLM-x32\...\{D9670A80-DED7-44FE-9B8C-94CEA3F7E035}) (Version: 1.4.1.12150 - Sony Corporation)
VAIO - PlayMemories Home Plug-in (HKLM-x32\...\InstallShield_{F9395F3D-4198-476C-8C41-63D0B5B51E35}) (Version: 2.2.00.18250 - Sony Corporation)
VAIO - PMB VAIO Edition Guide (HKLM-x32\...\InstallShield_{339F9B4D-00CB-4C1C-BED8-EC86A9AB602A}) (Version: 1.5.00.03020 - Sony Corporation)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.1.3.06230 - Sony Corporation)
VAIO Care (HKLM\...\{6EEC3E9C-3479-42EB-B93C-E7DF7927DD82}) (Version: 8.4.4.09181 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{6ED1750E-F44F-4635-8F0D-B76B9262B7FB}) (Version: 1.1.1.13230 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.3.0.05310 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.4.0.05240 - Sony Corporation)
VAIO Data Restore Tool (x32 Version: 1.4.0.05240 - Sony Corporation) Hidden
VAIO DVD Menu Data (HKLM-x32\...\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}) (Version: 3.1.00.16130 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.4.1.09230 - Sony Corporation)
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.2.0.07020 - Sony Corporation)
VAIO Hardware Diagnostics (x32 Version: 4.0.0.06230 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}) (Version: 2.1.0.18210 - Sony Corporation)
VAIO Media plus (Version: 2.1.0 - Sony Corporation) Hidden
VAIO Media plus (x32 Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus Opening Movie (HKLM-x32\...\{9238E8A4-BEBA-43A3-B926-769BDBF194C5}) (Version: 2.1.0.13220 - Sony Corporation)
VAIO Movie Story Template Data (HKLM-x32\...\InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 3.1.00.16130 - Sony Corporation)
VAIO Movie Story Template Data (x32 Version: 2.3.00.06040 - Sony Corporation) Hidden
VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.3.0.06041 - Sony Corporation)
VAIO screensaver (HKLM-x32\...\VAIO screensaver) (Version: 1.0.0.0 - Sony Europe)
VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.3.0.06080 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.1.0.08060 - Sony Corporation)
VAIO-Handbuch (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.1.0.05280 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.2.0.06230 - Sony Corporation)
ViewNX-i (HKLM\...\{C67A5551-26C1-4C7B-A9DF-AD148549D482}) (Version: 1.0.0 - Nikon Corporation)
Viking Saga: New World (HKLM-x32\...\BFG-Viking Saga - New World) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.5600 - Broadcom Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows-Treiberpaket - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Windows-Treiberpaket - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinPatrol (HKLM\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 32.0.2014.5 - Ruiware)
Wizard Land (HKLM-x32\...\Wizard Land) (Version: 1.0.0.0 - iWin.com)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
20-10-2015 16:45:52 Windows Update
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2012-10-17 21:49 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0153321C-5395-44B8-924E-6CB8FCE538C3} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2014-06-17] (Sony Corporation)
Task: {02468066-FA1E-47BE-ACF6-368F3F7C1FC3} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate Restart => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2011-09-23] (Sony Corporation)
Task: {0286B20A-77D9-47B4-AB2F-6512F708EF79} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {0CE08D01-C1AD-4A77-9B1E-D23076E74532} - System32\Tasks\{BE17F724-7CDC-4A8D-9E2E-98ACAA8D2ECB} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.7.0.102&LastError=12002
Task: {0D9538B1-4160-4302-ACA5-5463D37C02B1} - System32\Tasks\{65A85751-C32B-4B39-B724-4F78BAC25BF6} => pcalua.exe -a "C:\Users\Heike und Achim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ANU9A2DD\JewelQuestTheSapphireDragon.exe" -d "C:\Users\Heike und Achim\Desktop"
Task: {10FC93C0-1F97-4A91-9179-3288437C02AB} - System32\Tasks\Sony Corporation\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2011-09-23] (Sony Corporation)
Task: {13B9B4D4-CA1C-4F94-BADD-07DB715ABB2E} - System32\Tasks\{88D59A0C-1120-491F-889A-67747405D145} => pcalua.exe -a "C:\Users\Heike und Achim\Downloads\EgyptDasGeheimnisDerFuenfGoetter.exe" -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {2B2990CF-CA0D-4C6F-8B78-BA9F066D0D2E} - System32\Tasks\{9CE80A24-6DD4-4184-B0BE-660D99D2B9AC} => pcalua.exe -a "C:\Program Files (x86)\bfgclient\Uninstall.exe"
Task: {33CB9599-B2AE-4198-9B69-114F69261B90} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {35183DB8-67BB-4E07-86A4-CE5AA0A57041} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {36939516-E090-4DAA-927C-C9CDB7061C21} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {3A2D118B-7497-49FB-9158-98DE9AEB1644} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {4DDF4072-1CB6-4C06-9CB4-5E5399817C32} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {51189B9B-59B1-4FE4-B092-6411E41E36ED} - System32\Tasks\Sony Corporation\VAIO Personalization Manager\VpmLM Task Music Heike und Achim => C:\Program Files\Sony\VAIO Personalization Manager\VpmLM.exe [2010-11-05] (Sony Corporation)
Task: {58855C42-DB17-4AF6-BBD0-BB8C9CCAFB37} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {5A0CE9D2-5906-4B94-A0F8-98D41AB7EC79} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {60F5965F-DF2B-4DFF-8646-15ACE66DF9E3} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {65BC6981-5157-47DE-B71C-ED4DD87A99DB} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2015-07-31] (Sony Corporation)
Task: {6645991C-D34E-4AFC-9C6F-8BD4FCC91711} - System32\Tasks\SONY\SUS-BCF\Level4Daily => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {6A14BD54-29F6-4C52-A663-5A37EE8CDE3B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-16] (Adobe Systems Incorporated)
Task: {6F6B4677-F07F-4815-BC52-7389CE2C196B} - System32\Tasks\USER_ESRV_SVC => Wscript.exe //B //NoLogo "C:\Program Files\Sony\VAIO Care\ESRV\task.vbs"
Task: {7D783C01-F606-4330-9620-702AA6CF48A0} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {8076EC38-67DA-4398-A532-26B54FC5C521} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-10-06] (Oracle Corporation)
Task: {887E1102-3826-4765-8407-9EEA6F3EE000} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2015-07-23] (Sony Corporation)
Task: {88D3BB03-19FC-4A2E-8C47-80CEE39FD1E2} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2011-09-23] (Sony Corporation)
Task: {89B8D83E-36AB-4695-9220-3707B72E12D6} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {94198144-3ED0-4BBF-ADBA-09C226A93D64} - System32\Tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool => C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe
Task: {A7999AD0-75E6-4AE3-9A59-492A1921BA1F} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {B115446C-6FED-4EB0-9B94-AA67260C3A55} - System32\Tasks\SONY\SUS-BCF\Level4Month => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {C857765F-E0BB-48AE-B5AA-0417121BEA88} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2015-08-06] (Sony Corporation)
Task: {DBEE30ED-92A4-4CE1-8A3D-EBD8BC402681} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E22D39B9-ACDA-4594-8A3B-CA1AAB16AEF4} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {E87332A6-56F0-4003-85D1-21691B2E4ED5} - System32\Tasks\GoogleUpdateTaskMachineUA1cf2775ef6295e7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {ECCB41C5-B6E3-4A24-8682-CC02D5640972} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {EEF4E9D7-3463-42CF-B543-CFA9FFF0A714} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2015-02-04] (Sony Corporation)
Task: {F375AD5D-1D42-4A57-963E-0979A48A970E} - System32\Tasks\SONY\Remote Keyboard with PlayStation 3\Remote Keyboard with PlayStation 3 => C:\Program Files\Sony\Remote Keyboard with PlayStation 3\VBTKBUtil.exe [2010-06-17] (Sony Corporation)
Task: {F5955A46-3129-4F84-A9DB-A8F3EFCBA2E0} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {F8993F20-367C-4C4E-BC6F-FB1D49E5AB47} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf2775ef6295e7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-03-13 21:00 - 2010-06-17 16:09 - 00040960 _____ () C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe
2014-01-15 04:42 - 2014-01-15 04:42 - 00351824 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2015-06-13 09:40 - 2014-04-26 07:15 - 00682064 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe
2015-08-26 12:06 - 2015-08-26 12:06 - 00458904 _____ () C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
2015-08-26 12:06 - 2015-08-26 12:06 - 00709272 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_modeler.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00185496 _____ () C:\Program Files\Sony\VAIO Care\ESRV\foreground_window_input.dll
2011-10-07 10:39 - 2011-10-07 10:39 - 01304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
2013-05-22 19:50 - 2013-05-22 19:50 - 00400704 _____ () C:\Users\Heike und Achim\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
2013-03-13 21:00 - 2010-06-22 14:29 - 00098304 _____ () C:\Program Files (x86)\Sunrise T@KE AWAY\ModemListener.exe
2010-08-24 14:39 - 2010-08-24 14:39 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-01-06 22:49 - 2011-01-06 22:49 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00413336 _____ () C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
2015-08-26 12:06 - 2015-08-26 12:06 - 00130712 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_process_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00025752 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_system_power_state_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00059544 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_quality_and_reliability_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00194712 _____ () C:\Program Files\Sony\VAIO Care\ESRV\acpi_battery_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00159896 _____ () C:\Program Files\Sony\VAIO Care\ESRV\sema_thermal_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00158360 _____ () C:\Program Files\Sony\VAIO Care\ESRV\wifi_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00050840 _____ () C:\Program Files\Sony\VAIO Care\ESRV\devices_use_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00032920 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_disktrace_input.dll
2015-09-18 08:53 - 2015-09-18 08:53 - 00245912 _____ () C:\Program Files\Sony\VAIO Care\analyzer.dll
2015-06-13 09:40 - 2013-08-16 07:53 - 00011362 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\mingwm10.dll
2015-06-13 09:40 - 2013-08-16 07:53 - 00043008 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\libgcc_s_dw2-1.dll
2015-06-13 09:40 - 2014-02-15 08:31 - 02416640 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\QtCore4.dll
2015-06-13 09:40 - 2014-02-15 08:33 - 01148416 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\QtNetwork4.dll
2011-05-26 13:34 - 2011-05-26 13:34 - 01011712 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\LIBEAY32.dll
2011-05-26 13:34 - 2011-05-26 13:34 - 00249856 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\SSLEAY32.dll
2010-10-13 09:12 - 2010-10-13 09:12 - 00663552 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_regex-vc80-mt-1_44.dll
2010-10-13 09:13 - 2010-10-13 09:13 - 00057344 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_thread-vc80-mt-1_44.dll
2010-10-13 09:11 - 2010-10-13 09:11 - 00057344 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_date_time-vc80-mt-1_44.dll
2010-10-13 09:12 - 2010-10-13 09:12 - 00233472 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_serialization-vc80-mt-1_44.dll
2010-10-13 09:11 - 2010-10-13 09:11 - 00135168 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_filesystem-vc80-mt-1_44.dll
2010-10-13 09:11 - 2010-10-13 09:11 - 00012288 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_system-vc80-mt-1_44.dll
2011-05-23 22:46 - 2011-05-23 22:46 - 00438272 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\sqlite.dll
2010-10-13 09:13 - 2010-10-13 09:13 - 00057344 ____R () C:\Program Files (x86)\M-Budget\Sesam\BIN\boost_thread-vc80-mt-1_44.dll
2010-10-13 09:11 - 2010-10-13 09:11 - 00057344 ____R () C:\Program Files (x86)\M-Budget\Sesam\BIN\boost_date_time-vc80-mt-1_44.dll
2010-07-30 14:36 - 2010-05-31 18:18 - 00013824 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll
2010-07-30 14:36 - 2010-05-31 18:18 - 00013312 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSubPS.dll
2014-12-18 14:38 - 2014-12-18 14:38 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\3d576cbc4ffc5ad06fd61510c5d8f326\IsdiInterop.ni.dll
2010-07-12 22:29 - 2010-03-04 04:08 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-03-31 20:35 - 2014-03-31 20:35 - 00282304 _____ () C:\Program Files (x86)\Windows Live\Writer\de\WindowsLive.Writer.Localization.resources.dll
2015-10-16 20:29 - 2015-10-16 20:29 - 17599688 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:00A3C892
AlternateDataStreams: C:\ProgramData\TEMP:19803016
AlternateDataStreams: C:\ProgramData\TEMP:1B506EA3
AlternateDataStreams: C:\ProgramData\TEMP:1C662800
AlternateDataStreams: C:\ProgramData\TEMP:20C1C66F
AlternateDataStreams: C:\ProgramData\TEMP:27212462
AlternateDataStreams: C:\ProgramData\TEMP:27C9AEEC
AlternateDataStreams: C:\ProgramData\TEMP:29167D0D
AlternateDataStreams: C:\ProgramData\TEMP:2A26624E
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:2D515C82
AlternateDataStreams: C:\ProgramData\TEMP:2DC3B66B
AlternateDataStreams: C:\ProgramData\TEMP:2DE4F6AE
AlternateDataStreams: C:\ProgramData\TEMP:2E0CD220
AlternateDataStreams: C:\ProgramData\TEMP:309E3827
AlternateDataStreams: C:\ProgramData\TEMP:39743F39
AlternateDataStreams: C:\ProgramData\TEMP:3CC2D8AB
AlternateDataStreams: C:\ProgramData\TEMP:432597DE
AlternateDataStreams: C:\ProgramData\TEMP:44A0FEC3
AlternateDataStreams: C:\ProgramData\TEMP:451EF486
AlternateDataStreams: C:\ProgramData\TEMP:5986FE1C
AlternateDataStreams: C:\ProgramData\TEMP:5A1E97C7
AlternateDataStreams: C:\ProgramData\TEMP:5AF17798
AlternateDataStreams: C:\ProgramData\TEMP:5FEBCE9C
AlternateDataStreams: C:\ProgramData\TEMP:629A9591
AlternateDataStreams: C:\ProgramData\TEMP:6654511C
AlternateDataStreams: C:\ProgramData\TEMP:683689D1
AlternateDataStreams: C:\ProgramData\TEMP:6F6E6036
AlternateDataStreams: C:\ProgramData\TEMP:70AD58E0
AlternateDataStreams: C:\ProgramData\TEMP:75596CFC
AlternateDataStreams: C:\ProgramData\TEMP:75CF6AF0
AlternateDataStreams: C:\ProgramData\TEMP:79EAEF54
AlternateDataStreams: C:\ProgramData\TEMP:7C1271A7
AlternateDataStreams: C:\ProgramData\TEMP:81013054
AlternateDataStreams: C:\ProgramData\TEMP:841E05D6
AlternateDataStreams: C:\ProgramData\TEMP:84618038
AlternateDataStreams: C:\ProgramData\TEMP:8E916279
AlternateDataStreams: C:\ProgramData\TEMP:91742C9B
AlternateDataStreams: C:\ProgramData\TEMP:919D5A07
AlternateDataStreams: C:\ProgramData\TEMP:92B49D9A
AlternateDataStreams: C:\ProgramData\TEMP:9360454E
AlternateDataStreams: C:\ProgramData\TEMP:956AE390
AlternateDataStreams: C:\ProgramData\TEMP:9E3DDF7D
AlternateDataStreams: C:\ProgramData\TEMP:A694F56D
AlternateDataStreams: C:\ProgramData\TEMP:A7856354
AlternateDataStreams: C:\ProgramData\TEMP:A831D641
AlternateDataStreams: C:\ProgramData\TEMP:A9E00757
AlternateDataStreams: C:\ProgramData\TEMP:AEBF3B8E
AlternateDataStreams: C:\ProgramData\TEMP:B39AFC9E
AlternateDataStreams: C:\ProgramData\TEMP:B3A139F8
AlternateDataStreams: C:\ProgramData\TEMP:B57B5F37
AlternateDataStreams: C:\ProgramData\TEMP:B60217B2
AlternateDataStreams: C:\ProgramData\TEMP:B863466F
AlternateDataStreams: C:\ProgramData\TEMP:B935DA62
AlternateDataStreams: C:\ProgramData\TEMP:C25E505B
AlternateDataStreams: C:\ProgramData\TEMP:CA1F3AC3
AlternateDataStreams: C:\ProgramData\TEMP:CD09F4F2
AlternateDataStreams: C:\ProgramData\TEMP:CF2590B2
AlternateDataStreams: C:\ProgramData\TEMP:DA886912
AlternateDataStreams: C:\ProgramData\TEMP:DADACE5D
AlternateDataStreams: C:\ProgramData\TEMP:DC4CC932
AlternateDataStreams: C:\ProgramData\TEMP:DEA42AFB
AlternateDataStreams: C:\ProgramData\TEMP:E3C06B97
AlternateDataStreams: C:\ProgramData\TEMP:E5229D4E
AlternateDataStreams: C:\ProgramData\TEMP:F02D19E7
AlternateDataStreams: C:\ProgramData\TEMP:F074840B
AlternateDataStreams: C:\ProgramData\TEMP:F8CBC5BA
AlternateDataStreams: C:\ProgramData\TEMP:F97CB382
AlternateDataStreams: C:\ProgramData\TEMP:FC136C23
AlternateDataStreams: C:\ProgramData\TEMP:FC367019
AlternateDataStreams: C:\ProgramData\TEMP:FEE94F6D
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-458901301-3535109335-729799517-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Heike und Achim\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupreg: SHTtray.exe => C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{4904EAEC-8863-4D26-9431-98768C1F9808}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{3F20C303-240F-4151-BAA1-1C7D744DF04E}] => (Block) C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe
FirewallRules: [{6664B3BB-055B-43ED-81A8-85983E7A2BB2}] => (Block) C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe
FirewallRules: [{0EF6CEE7-47EB-4156-A8F1-19ED20229BF7}] => (Block) C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe
FirewallRules: [{4583B497-0E3B-4D03-AD8F-D865FDEA749F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{8C3F3855-A66B-41FB-84A1-86A7E3850423}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{CEE995DE-29F3-4998-AC98-0B12C07D1DF8}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{0BC8DDC0-9A90-494C-94EF-D738F5ED21AD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1E63639D-9F6F-4F67-9D13-990168B2083B}] => (Allow) LPort=2869
FirewallRules: [{E8AD59E9-394E-435E-A4AC-12F109692E66}] => (Allow) LPort=1900
FirewallRules: [{B716AE16-704C-463F-B32F-7BB5B3326270}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{3CD039BA-4C12-4FBA-9662-4104A82D27A4}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
FirewallRules: [{0CA929BA-2A4D-4947-A7B5-7DA4297B0109}] => (Allow) C:\Program Files (x86)\Common Files\nokia\service layer\a\nsl_host_process.exe
FirewallRules: [{B30FC8E7-614C-43BC-AE42-1E0F1EC7ECA9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F0B17C7A-B058-44F9-BB55-443B4312260E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B7356D22-C985-4577-BC28-97E764EAB667}] => (Allow) C:\Users\Heike und Achim\AppData\Roaming\McAfee\Supportability\MVTLogs\ProductDetection64.exe
FirewallRules: [{E422E74C-3165-4EDB-B309-8E2F46796587}] => (Allow) C:\Users\Heike und Achim\AppData\Roaming\McAfee\Supportability\MVTLogs\ProductDetection64.exe
FirewallRules: [{CD363267-76D0-43D0-BD43-433D1FEAAD30}] => (Allow) C:\Program Files (x86)\Iplay Games\IplayGames.exe
FirewallRules: [{C1FC0366-267B-4E34-B58B-BFDEB37F8BC5}] => (Allow) C:\Program Files (x86)\Iplay Games\IplayGames.exe
FirewallRules: [{684D42EB-7BD9-47AC-A737-01544E328386}] => (Allow) C:\Program Files (x86)\Iplay Games\WebUpdater.exe
FirewallRules: [{326D0EA9-9F99-400E-BE07-989A0972BE6E}] => (Allow) C:\Program Files (x86)\Iplay Games\WebUpdater.exe
FirewallRules: [TCP Query User{37B001F2-5928-4522-9322-9B8ABA4D9781}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{7446721B-60EC-486D-BC38-F0032300A1E9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{2B893FAC-84DB-42DD-86CC-9067AD970EB1}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAgent.exe
FirewallRules: [{14CD0703-6938-4154-99C2-485FB3EB51F3}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
FirewallRules: [{9C58BC07-1887-486D-A11F-A67DBEF3B006}] => (Allow) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
FirewallRules: [{34FB3F7C-2642-42A6-95E8-68A6F363C199}] => (Allow) C:\Program Files\Sony\VAIO Care\VAIOShell.exe
FirewallRules: [{4919756C-E216-4270-B487-CCCE2709762C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/25/2015 06:26:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x1c78
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (10/25/2015 06:26:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x2424
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (10/25/2015 06:19:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x14a0
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (10/25/2015 06:18:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x1a30
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (10/25/2015 06:18:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x1820
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (10/25/2015 06:15:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x1c4c
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (10/25/2015 06:09:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x1dc0
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (10/25/2015 06:08:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x1b20
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (10/25/2015 06:02:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x1d78
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (10/25/2015 06:01:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e0
ID des fehlerhaften Prozesses: 0x4cc
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Systemfehler:
=============
Error: (10/25/2015 05:13:55 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Energy Server Service" wurde nicht richtig gestartet.
Error: (10/25/2015 05:09:28 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst SysMain erreicht.
Error: (10/25/2015 05:08:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Internet Manager. OUC" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (10/25/2015 05:08:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Internet Manager. OUC erreicht.
Error: (10/25/2015 05:08:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "SAS Core Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/25/2015 05:07:17 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Der Dienst Energy Server Service konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.
Error: (10/25/2015 05:06:40 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {ADA518B9-B7A3-4C36-B4ED-49EB3FA189FC}
Error: (10/25/2015 05:06:03 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {9F070738-F6EA-408A-A6BD-AED405E67A13}
Error: (10/25/2015 05:05:57 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {51FA2736-5DEE-11D4-98E8-006008BF430C}
Error: (10/25/2015 03:34:30 PM) (Source: BTHUSB) (EventID: 16) (User: )
Description: Die beiderseitige Authentifizierung zwischen dem lokalen Bluetooth-Adapter und einem Gerät mit Bluetooth-Adapteradresse (00:1f:20:23:91:53) ist fehlgeschlagen.
CodeIntegrity:
===================================
Date: 2015-03-04 18:02:01.564
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC1A65.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-04 18:02:01.556
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC1A65.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-04 18:02:01.517
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC1A65.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-04 18:02:01.511
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC1A65.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-01-14 17:51:09.953
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSCBFD6.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-01-14 17:51:09.950
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSCBFD6.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-01-14 17:51:09.945
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSCBFD6.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-01-14 17:51:09.942
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSCBFD6.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-11-01 21:10:49.206
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC5E90.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-11-01 21:10:49.204
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC5E90.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5 CPU M 460 @ 2.53GHz
Prozentuale Nutzung des RAM: 45%
Installierter physikalischer RAM: 8046.1 MB
Verfügbarer physikalischer RAM: 4418 MB
Summe virtueller Speicher: 16090.4 MB
Verfügbarer virtueller Speicher: 11822.18 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:452.23 GB) (Free:110.93 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: D2F798B3)
Partition 1: (Not Active) - (Size=13.4 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452.2 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
habe eben noch ein bisschen rumprobiert und folgende Fehlermeldung beim ie erhalten: Die Anweisung in 0x76609c8d verweist auf Speicher 0x0cd00000. Der Vorgang written konnte nicht im Speicher durchgeführt werden. Ist mein Hauptspeicher irgendwie defekt? Hoffentlich nicht |
|
26.10.2015, 18:56
| #5 |
| /// the machine /// TB-Ausbilder | IE-Explorer funktioniert nicht mehr hi, Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
26.10.2015, 19:31
| #6 |
| | IE-Explorer funktioniert nicht mehr Hier schon mal mbar: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2015.10.26.05
rootkit: v2015.10.23.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Heike und Achim :: MUEMMEL [administrator]
26.10.2015 19:08:28
mbar-log-2015-10-26 (19-08-28).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 406756
Time elapsed: 3 minute(s), 52 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
und nun das tdss-log Teil 1 Code:
ATTFilter 19:18:20.0001 0x0f5c TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
19:18:26.0943 0x0f5c ============================================================
19:18:26.0943 0x0f5c Current date / time: 2015/10/26 19:18:26.0943
19:18:26.0943 0x0f5c SystemInfo:
19:18:26.0943 0x0f5c
19:18:26.0943 0x0f5c OS Version: 6.1.7601 ServicePack: 1.0
19:18:26.0943 0x0f5c Product type: Workstation
19:18:26.0943 0x0f5c ComputerName: MUEMMEL
19:18:26.0943 0x0f5c UserName: Heike und Achim
19:18:26.0943 0x0f5c Windows directory: C:\Windows
19:18:26.0943 0x0f5c System windows directory: C:\Windows
19:18:26.0943 0x0f5c Running under WOW64
19:18:26.0943 0x0f5c Processor architecture: Intel x64
19:18:26.0943 0x0f5c Number of processors: 4
19:18:26.0943 0x0f5c Page size: 0x1000
19:18:26.0943 0x0f5c Boot type: Normal boot
19:18:26.0943 0x0f5c ============================================================
19:18:31.0186 0x0f5c KLMD registered as C:\Windows\system32\drivers\48878205.sys
19:18:33.0042 0x0f5c System UUID: {0EF33B5D-CB0F-5CA1-85EE-6E088E3D2CFA}
19:18:35.0944 0x0f5c Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:18:35.0960 0x0f5c ============================================================
19:18:35.0960 0x0f5c \Device\Harddisk0\DR0:
19:18:35.0975 0x0f5c MBR partitions:
19:18:35.0975 0x0f5c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1ADE800, BlocksNum 0x32000
19:18:35.0975 0x0f5c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B10800, BlocksNum 0x38875030
19:18:35.0975 0x0f5c ============================================================
19:18:36.0818 0x0f5c C: <-> \Device\Harddisk0\DR0\Partition2
19:18:36.0818 0x0f5c ============================================================
19:18:36.0818 0x0f5c Initialize success
19:18:36.0818 0x0f5c ============================================================
19:19:09.0749 0x1288 ============================================================
19:19:09.0749 0x1288 Scan started
19:19:09.0749 0x1288 Mode: Manual; SigCheck; TDLFS;
19:19:09.0749 0x1288 ============================================================
19:19:09.0749 0x1288 KSN ping started
19:19:23.0586 0x1288 KSN ping finished: true
19:19:29.0234 0x1288 ================ Scan system memory ========================
19:19:29.0234 0x1288 System memory - ok
19:19:29.0234 0x1288 ================ Scan services =============================
19:19:29.0358 0x1288 !SASCORE - ok
19:19:29.0920 0x1288 0076431445883473mcinstcleanup - ok
19:19:30.0544 0x1288 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:19:30.0716 0x1288 1394ohci - ok
19:19:31.0230 0x1288 [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
19:19:31.0277 0x1288 ACDaemon - ok
19:19:31.0386 0x1288 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:19:31.0433 0x1288 ACPI - ok
19:19:31.0511 0x1288 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:19:31.0636 0x1288 AcpiPmi - ok
19:19:31.0823 0x1288 [ 34400005DE52842C4D6D4EE978B4D7CE, E7C3121812284B9FE6A12910C67C98354BAF5DB74865A5B4E0C2E64852BDB50A ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
19:19:31.0854 0x1288 AdobeActiveFileMonitor8.0 - ok
19:19:31.0948 0x1288 [ F6CEFEF46986DE02A3AE5D93AE32B5DC, 903EC5A7B40F4F6B2F3378EFFE8DF28667B88061CDF681C44F2E4FE39B62959E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:19:31.0979 0x1288 AdobeARMservice - ok
19:20:43.0031 0x1288 [ 8C194A201698B4B4F77D974549819D1F, 081A2496FE1CE519E48677D99A831FF1FEEB1B33C75224CF288FA52F3E0E5FF0 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:20:43.0078 0x1288 AdobeFlashPlayerUpdateSvc - ok
19:20:44.0919 0x1288 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:20:44.0950 0x1288 adp94xx - ok
19:20:45.0075 0x1288 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:20:45.0106 0x1288 adpahci - ok
19:20:45.0231 0x1288 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:20:45.0293 0x1288 adpu320 - ok
19:20:45.0371 0x1288 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:20:45.0433 0x1288 AeLookupSvc - ok
19:20:45.0621 0x1288 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
19:20:45.0667 0x1288 AFD - ok
19:20:45.0730 0x1288 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
19:20:45.0761 0x1288 agp440 - ok
19:20:45.0839 0x1288 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
19:20:45.0886 0x1288 ALG - ok
19:20:45.0979 0x1288 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
19:20:46.0011 0x1288 aliide - ok
19:20:46.0151 0x1288 [ 3F9B03B72577A6A7405BF30801CBD159, BBB2A26136D6F9BBE0D2982689797C6FF89E2026589CCFBB35D9B845C88472DD ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
19:20:46.0198 0x1288 AMD External Events Utility - ok
19:20:46.0291 0x1288 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
19:20:46.0338 0x1288 amdide - ok
19:20:46.0416 0x1288 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:20:46.0494 0x1288 AmdK8 - ok
19:20:48.0585 0x1288 [ EA244A8B88DE8B5986BF3B7903B063AF, 44BB9CCCB9A15BF64494318CE047017AF27B373FB5B57E5D05C88A16AE913672 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
19:20:48.0772 0x1288 amdkmdag - ok
19:20:48.0943 0x1288 [ DCA6E341A4A7C31EA8A14C6166C9B249, 35319D428DD5BC055DC1E9B17BFC56C339E408929E9BC83878975DD01A68D652 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
19:20:49.0021 0x1288 amdkmdap - ok
19:20:49.0099 0x1288 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
19:20:49.0115 0x1288 AmdPPM - ok
19:20:49.0177 0x1288 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:20:49.0224 0x1288 amdsata - ok
19:20:49.0349 0x1288 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
19:20:49.0380 0x1288 amdsbs - ok
19:20:49.0443 0x1288 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:20:49.0458 0x1288 amdxata - ok
19:20:49.0677 0x1288 [ 2D45F2DFBC3D8F53DF7EBEFFA8C9BC38, 916CA4FE1899609AB36E66CB90D69EC487C1913C9C542760564BCFFF1B6E8070 ] ApfiltrService C:\Windows\system32\drivers\Apfiltr.sys
19:20:49.0708 0x1288 ApfiltrService - ok
19:20:49.0770 0x1288 [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys
19:20:49.0848 0x1288 AppID - ok
19:20:49.0895 0x1288 [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:20:49.0957 0x1288 AppIDSvc - ok
19:20:50.0051 0x1288 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
19:20:50.0145 0x1288 Appinfo - ok
19:20:50.0223 0x1288 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
19:20:50.0269 0x1288 arc - ok
19:20:50.0363 0x1288 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:20:50.0410 0x1288 arcsas - ok
19:20:50.0472 0x1288 [ C130BC4A51B1382B2BE8E44579EC4C0A, CC1FD33ED7CAD87A504D8678F8482CAECACD18C727BB97FFB86F39255563EEF2 ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
19:20:50.0519 0x1288 ArcSoftKsUFilter - ok
19:20:51.0034 0x1288 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:20:51.0221 0x1288 aspnet_state - ok
19:20:51.0299 0x1288 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:20:51.0439 0x1288 AsyncMac - ok
19:20:51.0549 0x1288 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
19:20:51.0580 0x1288 atapi - ok
19:20:52.0407 0x1288 [ CCA705CDF038D5BC243203CE4416B345, C907A4022411D9FDFD5FCEA8D067CF1713F786351FAFA739EDC5B5C3E66B1BAD ] athr C:\Windows\system32\DRIVERS\athrx.sys
19:20:52.0500 0x1288 athr - ok
19:20:55.0199 0x1288 [ EA244A8B88DE8B5986BF3B7903B063AF, 44BB9CCCB9A15BF64494318CE047017AF27B373FB5B57E5D05C88A16AE913672 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
19:20:55.0371 0x1288 atikmdag - ok
19:20:55.0620 0x1288 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:20:55.0667 0x1288 AudioEndpointBuilder - ok
19:20:55.0792 0x1288 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:20:55.0823 0x1288 AudioSrv - ok
19:20:55.0885 0x1288 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:20:55.0979 0x1288 AxInstSV - ok
19:20:56.0213 0x1288 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
19:20:56.0291 0x1288 b06bdrv - ok
19:20:56.0447 0x1288 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:20:56.0572 0x1288 b57nd60a - ok
19:20:57.0726 0x1288 [ 47480F4260DAE9AA589BCAF924B3767A, 00C46D6714BE9B24682A953F0BC05004AEAC664073E0418DFF5CB9B738281993 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe
19:20:57.0773 0x1288 BBSvc - ok
19:20:57.0882 0x1288 [ 6BF743CBF3BCD09DAB79245E60E1AE62, AF21BA914790B187ED32FB7A16586E371D803D167EFFC4949047FBAF74A782F3 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe
19:20:57.0929 0x1288 BBUpdate - ok
19:20:57.0991 0x1288 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
19:20:58.0069 0x1288 BDESVC - ok
19:20:58.0101 0x1288 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
19:20:58.0179 0x1288 Beep - ok
19:20:58.0506 0x1288 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
19:20:58.0600 0x1288 BFE - ok
19:20:59.0021 0x1288 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
19:20:59.0193 0x1288 BITS - ok
19:20:59.0255 0x1288 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
19:20:59.0317 0x1288 blbdrive - ok
19:20:59.0395 0x1288 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:20:59.0489 0x1288 bowser - ok
19:20:59.0520 0x1288 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
19:20:59.0583 0x1288 BrFiltLo - ok
19:20:59.0614 0x1288 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
19:20:59.0645 0x1288 BrFiltUp - ok
19:20:59.0707 0x1288 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
19:20:59.0785 0x1288 BridgeMP - ok
19:20:59.0895 0x1288 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
19:20:59.0941 0x1288 Browser - ok
19:20:59.0988 0x1288 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:21:00.0019 0x1288 Brserid - ok
19:21:00.0082 0x1288 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:21:00.0175 0x1288 BrSerWdm - ok
19:21:00.0269 0x1288 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:21:00.0378 0x1288 BrUsbMdm - ok
19:21:00.0409 0x1288 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:21:00.0441 0x1288 BrUsbSer - ok
19:21:00.0519 0x1288 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
19:21:00.0612 0x1288 BthEnum - ok
19:21:00.0659 0x1288 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:21:00.0721 0x1288 BTHMODEM - ok
19:21:00.0799 0x1288 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:21:00.0909 0x1288 BthPan - ok
19:21:01.0143 0x1288 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
19:21:01.0174 0x1288 BTHPORT - ok
19:21:01.0267 0x1288 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
19:21:01.0345 0x1288 bthserv - ok
19:21:01.0392 0x1288 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
19:21:01.0486 0x1288 BTHUSB - ok
19:21:01.0704 0x1288 [ 59E3510784548C6939C1B3B985C232E3, 7284A4A880307A88C431DE8BA9195C2B256C8598757958B02DB6A80EBB57698E ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
19:21:01.0767 0x1288 btwampfl - ok
19:21:01.0845 0x1288 [ 1872074ED0A3FB22E3F1E3197B984BFA, 112F289BFE63B46D1E007E3C6761B5C5C8F499B6638CE896DF528FDDBBC1EA12 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
19:21:01.0891 0x1288 btwaudio - ok
19:21:02.0001 0x1288 [ 691CF076C33AB1C3A5B2FD5450300733, C2C943D42B0A135BD255FA8985A00D36B0DD91546291E2D819FACE7C0B08287D ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
19:21:02.0016 0x1288 btwavdt - ok
19:21:02.0937 0x1288 [ 8BA6E93A182126781952A7895EC1E4B2, C11F7187278BA72016D2168E653D6C904E0DFB5B173E4DFBF7D86AD73631D5A6 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
19:21:02.0983 0x1288 btwdins - ok
19:21:03.0061 0x1288 [ 07096D2BC22CCB6CEA5A532DF0BE8A75, A9B7F2EFFDF1E4EC0A5DC098F0ED2BE44E271844A4F1CBAD2FA1655DE1E03F6E ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
19:21:03.0093 0x1288 btwl2cap - ok
19:21:03.0202 0x1288 [ C9273B20DEC8CE38DBCE5D29DE63C907, 71D67A1A2EDA81351E8D8129824565E2ECA0CFA4DC844CE12F90AB7906ABA737 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
19:21:03.0373 0x1288 btwrchid - ok
19:21:03.0420 0x1288 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:21:03.0498 0x1288 cdfs - ok
19:21:03.0607 0x1288 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:21:03.0685 0x1288 cdrom - ok
19:21:03.0795 0x1288 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
19:21:03.0888 0x1288 CertPropSvc - ok
19:21:04.0216 0x1288 [ 4ECA59628D074CF45633EC7A3D7954D3, 054B4AE94920A06ECF8C65A66DC949B65665679B15733D021120159F6E2460DA ] cfwids C:\Windows\system32\drivers\cfwids.sys
19:21:04.0247 0x1288 cfwids - ok
19:21:04.0294 0x1288 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
19:21:04.0325 0x1288 circlass - ok
19:21:04.0497 0x1288 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
19:21:04.0559 0x1288 CLFS - ok
19:21:04.0824 0x1288 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:21:04.0840 0x1288 clr_optimization_v2.0.50727_32 - ok
19:21:05.0074 0x1288 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:21:05.0105 0x1288 clr_optimization_v2.0.50727_64 - ok
19:21:05.0355 0x1288 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:21:05.0464 0x1288 clr_optimization_v4.0.30319_32 - ok
19:21:05.0526 0x1288 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:21:05.0620 0x1288 clr_optimization_v4.0.30319_64 - ok
19:21:05.0682 0x1288 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
19:21:05.0713 0x1288 CmBatt - ok
19:21:05.0776 0x1288 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:21:05.0791 0x1288 cmdide - ok
19:21:06.0025 0x1288 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
19:21:06.0057 0x1288 CNG - ok
19:21:06.0103 0x1288 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
19:21:06.0119 0x1288 Compbatt - ok
19:21:06.0213 0x1288 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:21:06.0275 0x1288 CompositeBus - ok
19:21:06.0291 0x1288 COMSysApp - ok
19:21:06.0337 0x1288 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:21:06.0369 0x1288 crcdisk - ok
19:21:06.0509 0x1288 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:21:06.0556 0x1288 CryptSvc - ok
19:21:06.0712 0x1288 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:21:06.0821 0x1288 DcomLaunch - ok
19:21:07.0024 0x1288 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
19:21:07.0133 0x1288 defragsvc - ok
19:21:07.0351 0x1288 DeviceManager - ok
19:21:07.0414 0x1288 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:21:07.0507 0x1288 DfsC - ok
19:21:07.0804 0x1288 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
19:21:07.0944 0x1288 Dhcp - ok
19:21:08.0319 0x1288 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
19:21:08.0443 0x1288 DiagTrack - ok
19:21:08.0537 0x1288 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
19:21:08.0615 0x1288 discache - ok
19:21:08.0662 0x1288 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
19:21:08.0693 0x1288 Disk - ok
19:21:08.0787 0x1288 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:21:08.0896 0x1288 Dnscache - ok
19:21:08.0958 0x1288 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
19:21:09.0083 0x1288 dot3svc - ok
19:21:09.0223 0x1288 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
19:21:09.0286 0x1288 DPS - ok
19:21:09.0411 0x1288 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:21:09.0504 0x1288 drmkaud - ok
19:21:09.0707 0x1288 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:21:09.0754 0x1288 DXGKrnl - ok
19:21:09.0816 0x1288 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
19:21:09.0879 0x1288 EapHost - ok
19:21:10.0815 0x1288 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
19:21:10.0939 0x1288 ebdrv - ok
19:21:10.0986 0x1288 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] EFS C:\Windows\System32\lsass.exe
19:21:11.0049 0x1288 EFS - ok
19:21:11.0392 0x1288 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:21:11.0439 0x1288 ehRecvr - ok
19:21:11.0907 0x1288 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
19:21:11.0969 0x1288 ehSched - ok
19:21:12.0484 0x1288 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:21:12.0531 0x1288 elxstor - ok
19:21:12.0796 0x1288 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:21:12.0921 0x1288 ErrDev - ok
19:21:13.0342 0x1288 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
19:21:13.0435 0x1288 EventSystem - ok
19:21:13.0451 0x1288 ewusbnet - ok
19:21:13.0513 0x1288 [ 7230F4CF9F20DCD1DBF4BB3296EEED68, 0B9EAA411271AAB9C84680AAF8910854124D8A318A7388E0E356869126BE533D ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
19:21:13.0732 0x1288 ew_hwusbdev - ok
19:21:13.0872 0x1288 [ 5222D99C7E3245882E864D2EA7011387, 184E36074C765243783F69B7073FB2FAFC53BB18209ECD5030514CC513A47C8B ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
19:21:13.0935 0x1288 ew_usbenumfilter - ok
19:21:13.0981 0x1288 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
19:21:14.0106 0x1288 exfat - ok
19:21:14.0184 0x1288 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:21:14.0325 0x1288 fastfat - ok
19:21:14.0637 0x1288 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
19:21:14.0730 0x1288 Fax - ok
19:21:14.0777 0x1288 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
19:21:14.0855 0x1288 fdc - ok
19:21:14.0917 0x1288 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
19:21:14.0995 0x1288 fdPHost - ok
19:21:15.0027 0x1288 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
19:21:15.0120 0x1288 FDResPub - ok
19:21:15.0198 0x1288 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:21:15.0214 0x1288 FileInfo - ok
19:21:15.0245 0x1288 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:21:15.0339 0x1288 Filetrace - ok
19:21:15.0744 0x1288 [ ABEDFD48AC042C6AAAD32452E77217A1, BC45A1C36BDBC20EF4E7D3CFB5368912382D964CB34D050ED255F56307F4C910 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:21:15.0791 0x1288 FLEXnet Licensing Service - ok
19:21:15.0853 0x1288 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
19:21:16.0119 0x1288 flpydisk - ok
19:21:16.0493 0x1288 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:21:16.0555 0x1288 FltMgr - ok
19:21:16.0977 0x1288 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
19:21:17.0039 0x1288 FontCache - ok
19:21:17.0148 0x1288 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:21:17.0179 0x1288 FontCache3.0.0.0 - ok
19:21:17.0304 0x1288 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:21:17.0335 0x1288 FsDepends - ok
19:21:17.0413 0x1288 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:21:17.0476 0x1288 Fs_Rec - ok
19:21:17.0585 0x1288 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:21:17.0616 0x1288 fvevol - ok
19:21:17.0694 0x1288 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:21:17.0741 0x1288 gagp30kx - ok
19:21:18.0115 0x1288 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
19:21:18.0209 0x1288 gpsvc - ok
19:21:18.0412 0x1288 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:21:18.0459 0x1288 gupdate - ok
19:21:18.0505 0x1288 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:21:18.0537 0x1288 gupdatem - ok
19:21:18.0615 0x1288 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:21:18.0661 0x1288 gusvc - ok
19:21:18.0755 0x1288 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:21:18.0802 0x1288 hcw85cir - ok
19:21:18.0989 0x1288 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:21:19.0051 0x1288 HdAudAddService - ok
19:21:19.0098 0x1288 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:21:19.0161 0x1288 HDAudBus - ok
19:21:19.0254 0x1288 [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\Windows\system32\drivers\HECIx64.sys
19:21:19.0285 0x1288 HECIx64 - ok
19:21:19.0379 0x1288 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
19:21:19.0426 0x1288 HidBatt - ok
19:21:19.0473 0x1288 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:21:19.0535 0x1288 HidBth - ok
19:21:19.0566 0x1288 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
19:21:19.0597 0x1288 HidIr - ok
19:21:19.0660 0x1288 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
19:21:19.0785 0x1288 hidserv - ok
19:21:19.0863 0x1288 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
19:21:19.0956 0x1288 HidUsb - ok
19:21:20.0143 0x1288 [ E7AF59F1E0352F5EBEC4ECD32103D405, 0E02E031799F407A1BCE926D46471E7EFB8820359CBDE73759219B86C1882EB8 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
19:21:20.0175 0x1288 HipShieldK - ok
19:21:20.0237 0x1288 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:21:20.0315 0x1288 hkmsvc - ok
19:21:20.0471 0x1288 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:21:20.0565 0x1288 HomeGroupListener - ok
19:21:20.0689 0x1288 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:21:20.0752 0x1288 HomeGroupProvider - ok
19:21:21.0454 0x1288 [ 08CCC7622DDDFD649F75F9CFA53E4229, 257C8C285DDAA1CB1AAD3F799235972D0FF9577BE97859337437D4562B7CE4E4 ] HomeNetSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
19:21:21.0501 0x1288 HomeNetSvc - ok
19:21:21.0547 0x1288 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:21:21.0563 0x1288 HpSAMD - ok
19:21:21.0844 0x1288 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:21:21.0937 0x1288 HTTP - ok
19:21:21.0984 0x1288 [ D49D4E7B70AD6B1D04771AC1F7DB79C7, 093D8343CF769FC805308ED357EEF30E3D78569B817A20FE9884863A1FDBC028 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
19:21:22.0047 0x1288 huawei_enumerator - ok
19:21:22.0140 0x1288 [ 7C24AD1FC015CD4D1B64959D13640EC3, 2D376F9B9E5C9073F1F84B1F74712C982CF995F00A7D54FB0C6ECD81BCA17030 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
19:21:22.0187 0x1288 hwdatacard - ok
19:21:22.0936 0x1288 [ C08814014290BF3AD581C0E9C5919269, 9C16822AC6B8977AAEFDB54C2B4295546461DD888060B62223EF20151790C934 ] HWDeviceService64.exe C:\ProgramData\DatacardService\HWDeviceService64.exe
19:21:22.0967 0x1288 HWDeviceService64.exe - ok
19:21:23.0029 0x1288 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:21:23.0076 0x1288 hwpolicy - ok
19:21:23.0154 0x1288 [ 26DA38304822C347DC65A9218C84A376, C765543D6EDDFFBAA7B262C484BAFD75993EDCF42C4FC9A0D945A63AF8708CCC ] hwusb_cdcacm C:\Windows\system32\DRIVERS\ew_cdcacm.sys
19:21:23.0217 0x1288 hwusb_cdcacm - ok
19:21:23.0482 0x1288 [ 8B1D65B96AA5D97C5C883279ABABD97B, EA2B804E67335352F4B318B01D334FF357CCAF0535059F1C4D57C1BD5C62AFAC ] hwusb_wwanecm C:\Windows\system32\DRIVERS\ew_wwanecm.sys
19:21:23.0591 0x1288 hwusb_wwanecm - ok
19:21:23.0778 0x1288 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:21:23.0825 0x1288 i8042prt - ok
19:21:24.0075 0x1288 [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor C:\Windows\system32\drivers\iaStor.sys
19:21:24.0106 0x1288 iaStor - ok
19:21:24.0402 0x1288 [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
19:21:24.0418 0x1288 IAStorDataMgrSvc - ok
19:21:24.0589 0x1288 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:21:24.0636 0x1288 iaStorV - ok
19:21:24.0979 0x1288 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:21:25.0026 0x1288 idsvc - ok
19:21:27.0741 0x1288 [ 2A22AB054F4630D2EF4BAB2853F6D5F6, 9CD7A5FFB7E25B51E9D311531EE5EC20CEAC356C7A27D52B61DA810DB412437B ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
19:21:28.0037 0x1288 igfx - detected UnsignedFile.Multi.Generic ( 1 )
19:21:30.0814 0x1288 Detect skipped due to KSN trusted
19:21:30.0814 0x1288 igfx - ok
19:21:30.0876 0x1288 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:21:30.0923 0x1288 iirsp - ok
19:21:31.0344 0x1288 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
19:21:31.0422 0x1288 IKEEXT - ok
19:21:31.0500 0x1288 [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd C:\Windows\system32\drivers\Impcd.sys
19:21:31.0578 0x1288 Impcd - ok
19:21:32.0670 0x1288 [ 526E482AFB586CB1CDD687869DECF686, DCF1D4772181AD14E8846C9B34387ADB6A8D56BE305A8926896AE35D3496A49F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:21:32.0733 0x1288 IntcAzAudAddService - ok
19:21:32.0873 0x1288 [ 58CF58DEE26C909BD6F977B61D246295, 0CE27B81C091961A22B75478449D654F9C1A68E43DF80C699DB8DD3D1B288461 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
19:21:32.0935 0x1288 IntcDAud - detected UnsignedFile.Multi.Generic ( 1 )
19:21:35.0712 0x1288 Detect skipped due to KSN trusted
19:21:35.0712 0x1288 IntcDAud - ok
19:21:35.0790 0x1288 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
19:21:35.0821 0x1288 intelide - ok
19:21:35.0915 0x1288 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
19:21:35.0962 0x1288 intelppm - ok
19:21:36.0601 0x1288 [ 477BE2027FB0E5F50A6CD424BFDB3BAA, B9311F9F9685D13FA83B1E168EB6D3555ABAA8C402B4C47EB2629BA6F11444E8 ] Internet Manager. RunOuc C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe
19:21:36.0648 0x1288 Internet Manager. RunOuc - ok
19:21:36.0742 0x1288 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:21:36.0867 0x1288 IPBusEnum - ok
19:21:36.0991 0x1288 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:21:37.0085 0x1288 IpFilterDriver - ok
19:21:37.0397 0x1288 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:21:37.0475 0x1288 iphlpsvc - ok
19:21:37.0522 0x1288 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:21:37.0569 0x1288 IPMIDRV - ok
19:21:37.0678 0x1288 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:21:37.0740 0x1288 IPNAT - ok
19:21:37.0787 0x1288 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:21:37.0850 0x1288 IRENUM - ok
19:21:37.0928 0x1288 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:21:37.0959 0x1288 isapnp - ok
19:21:38.0052 0x1288 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:21:38.0084 0x1288 iScsiPrt - ok
19:21:38.0130 0x1288 [ 213822072085B5BBAD9AF30AB577D817, 2C373B804D840933EC3A5F3ABFC43E47C2636CDB2431AB51846C565077B7C468 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
19:21:38.0162 0x1288 IviRegMgr - ok
19:21:38.0333 0x1288 [ 2D967BC62A651FEA616EF787F787D796, 842BEFACD1AC6E4569F8F23AFA6C3B2BB2174E4D326B5D548BEE4256A1D61160 ] jrdusbser C:\Windows\system32\DRIVERS\jrdusbser.sys
19:21:38.0380 0x1288 jrdusbser - ok
19:21:38.0411 0x1288 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:21:38.0442 0x1288 kbdclass - ok
19:21:38.0474 0x1288 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:21:38.0536 0x1288 kbdhid - ok
19:21:38.0552 0x1288 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] KeyIso C:\Windows\system32\lsass.exe
19:21:38.0583 0x1288 KeyIso - ok
19:21:38.0645 0x1288 [ 3A8C03156C3E31E70EF84E48CA179B46, E25E43D53BB6EE1B5F34C95B4FAD111B37A36367B8D047B10FC614DEE13658E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:21:38.0692 0x1288 KSecDD - ok
19:21:38.0723 0x1288 [ C6330F7C2E92A00E6773E82F79078AFC, D8B851BF4FCE85F2A269F0B46BC7EC5A118FCFDACE8460E7B54C1A7CE306774A ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:21:38.0754 0x1288 KSecPkg - ok
19:21:38.0786 0x1288 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:21:38.0879 0x1288 ksthunk - ok
19:21:39.0035 0x1288 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
19:21:39.0144 0x1288 KtmRm - ok
19:21:39.0191 0x1288 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
19:21:39.0269 0x1288 LanmanServer - ok
19:21:39.0347 0x1288 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:21:39.0410 0x1288 LanmanWorkstation - ok
19:21:39.0784 0x1288 [ 7772DFAB22611050B79504E671B06E6E, 331FE235EDBCF48EE96A5A9D5D0560457CD85FA3FD7BEACD3700055F815D9F13 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
19:21:39.0815 0x1288 LBTServ - ok
19:21:39.0909 0x1288 [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
19:21:39.0940 0x1288 LHidFilt - ok
19:21:39.0987 0x1288 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:21:40.0065 0x1288 lltdio - ok
19:21:40.0236 0x1288 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:21:40.0314 0x1288 lltdsvc - ok
19:21:40.0377 0x1288 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:21:40.0470 0x1288 lmhosts - ok
19:21:40.0502 0x1288 [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
19:21:40.0517 0x1288 LMouFilt - ok
19:21:40.0782 0x1288 [ 3D23191672D83E90D1CF63927EE98136, 90EC8E0E0FCC838B7D258C76A5C92335A2F2B7AE36BD87B3BB4BCF187770B6DE ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:21:40.0814 0x1288 LMS - ok
19:21:40.0923 0x1288 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:21:40.0970 0x1288 LSI_FC - ok
19:21:41.0016 0x1288 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:21:41.0048 0x1288 LSI_SAS - ok
19:21:41.0141 0x1288 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
19:21:41.0172 0x1288 LSI_SAS2 - ok
19:21:41.0266 0x1288 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:21:41.0313 0x1288 LSI_SCSI - ok
19:21:41.0406 0x1288 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
19:21:41.0516 0x1288 luafv - ok
19:21:41.0781 0x1288 [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:21:41.0812 0x1288 MBAMProtector - ok
19:21:42.0779 0x1288 [ AB176B9E59C0435499D83047D84EDD59, 85B826A3972CE9AD885313B69B9C60328B850257667D0EB65DDE890D0BB06361 ] MBAMScheduler C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
19:21:42.0857 0x1288 MBAMScheduler - ok
19:21:43.0434 0x1288 [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
19:21:43.0497 0x1288 MBAMService - ok
19:21:43.0731 0x1288 [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
19:21:43.0762 0x1288 MBAMSwissArmy - ok
19:21:44.0168 0x1288 [ D61070CFAD43038DC56AEAD9BFE9CE2A, BD77AEF60E7FD2015CB14A464799304359547146C14A47F8D25274ACFA2E42D5 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
19:21:44.0199 0x1288 MBAMWebAccessControl - ok
19:21:44.0745 0x1288 [ 5F98481CD07C003290BFDD172328F7EC, 3443EEB712DA3D56C3E6727D7D2F7FD5A1C9B8868580CBDC0D20271A476831AA ] McAfee SiteAdvisor Service C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
19:21:44.0776 0x1288 McAfee SiteAdvisor Service - ok
19:21:45.0416 0x1288 [ 6BE500A77E653B3E621F280BA544AA0B, 2AFE3221EC6EABA1C085022555AD349996026E6883952833CF0A69F280E9C8EE ] McAPExe C:\Program Files\McAfee\MSC\McAPExe.exe
19:21:45.0462 0x1288 McAPExe - ok
19:21:45.0868 0x1288 [ 77AB66599EAFF797744D17C502FECDB9, E3A356AC3D6958B08C126D2C4231F2F7A655348606AE53FB95C6DA17908B32D1 ] McComponentHostServiceSony C:\Program Files (x86)\Sony\MSS\3.8.130\McCHSvc.exe
19:21:45.0915 0x1288 McComponentHostServiceSony - ok
19:21:46.0305 0x1288 mccspsvc - ok
19:21:46.0508 0x1288 [ 08CCC7622DDDFD649F75F9CFA53E4229, 257C8C285DDAA1CB1AAD3F799235972D0FF9577BE97859337437D4562B7CE4E4 ] McMPFSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
19:21:46.0539 0x1288 McMPFSvc - ok
19:21:46.0554 0x1288 [ 08CCC7622DDDFD649F75F9CFA53E4229, 257C8C285DDAA1CB1AAD3F799235972D0FF9577BE97859337437D4562B7CE4E4 ] McNaiAnn C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
19:21:46.0586 0x1288 McNaiAnn - ok
19:21:46.0944 0x1288 [ C32F9DAFD27557A53ED44915075B5658, 3C14A497021BA51AD8200D94B898ABA039666ED971C3AE4EB4859A35BDFFD564 ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
19:21:46.0991 0x1288 McODS - ok
19:21:47.0163 0x1288 [ F928E5E72BBA15DD0CE9A26E0413D236, D63EFA1408084F524464729C2F3BE16550E07ACE2BF8A00699A8438079AD381B ] McOobeSv C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
19:21:47.0194 0x1288 McOobeSv - ok
19:21:47.0319 0x1288 [ 08CCC7622DDDFD649F75F9CFA53E4229, 257C8C285DDAA1CB1AAD3F799235972D0FF9577BE97859337437D4562B7CE4E4 ] mcpltsvc C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
19:21:47.0350 0x1288 mcpltsvc - ok
19:21:47.0444 0x1288 [ 08CCC7622DDDFD649F75F9CFA53E4229, 257C8C285DDAA1CB1AAD3F799235972D0FF9577BE97859337437D4562B7CE4E4 ] McProxy C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
19:21:47.0475 0x1288 McProxy - ok
19:21:47.0553 0x1288 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:21:47.0615 0x1288 Mcx2Svc - ok
19:21:48.0036 0x1288 [ AD9CC6F825AA36231ECB6E3804D6691D, B74523AA669870AB32054F19F3AAB46768E790690FDED2CFFC27E21B74ACAECD ] MDM Service C:\Program Files (x86)\M-Budget\M-Budget Data Manager\DashBoardS.exe
19:21:48.0068 0x1288 MDM Service - ok
19:21:48.0161 0x1288 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
19:21:48.0192 0x1288 megasas - ok
19:21:48.0380 0x1288 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
19:21:48.0442 0x1288 MegaSR - ok
19:21:48.0754 0x1288 [ B57322E3BC44A1F0A9C97B68A9EFF495, 2C967B0E965DF834BDC92E3D12E372CB47BA88CB02B0B12FA2AE7B94C2AD80A1 ] mfeaack C:\Windows\system32\drivers\mfeaack.sys
19:21:48.0801 0x1288 mfeaack - ok
19:21:49.0019 0x1288 [ 2BD453B97EF1B1DB5AA195A261F926F8, 47582D78B3ADD1D77F98C5D4EC89B1EC1EE7A79677691FAE543DECA2EE5ACF79 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
19:21:49.0050 0x1288 mfeavfk - ok
19:21:49.0440 0x1288 [ B58B438EE841934F0425AC91560D13F4, 3D6FAFB2E7EB3616E2A4827D713DB95795AFA0D50140F8DDF08C102838776277 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
19:21:49.0487 0x1288 mfefire - ok
19:21:49.0752 0x1288 [ 9F9BC4DBB610F1AD600F619416A6144D, DE957B0CEF45A4DFD5280DFF8EC4D3EDFBE00E1CB920262D2F6B86E19DDAD7C6 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
19:21:49.0784 0x1288 mfefirek - ok
19:21:50.0252 0x1288 [ B98911F49EA2F83A9079315846BE1E53, 2335ED3F166D5B10F2DBECE330C1FE8D50E1DEE4EA7D523AB6AC79E99A26C206 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
19:21:50.0345 0x1288 mfehidk - ok
19:21:50.0579 0x1288 [ 172F71DAFD8D139CB12D20A2A9986676, 9B2CBCE81C7EE0A150CDC4F68370D0B75E9AE57BDB82A4D1B74F4F9F09329240 ] mfemms C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
19:21:50.0610 0x1288 mfemms - ok
19:21:50.0751 0x1288 [ 759ABC713BCA60F5508FC1455046670D, 1E8E903982B04D66ACBA0251B5256189F1BA4BD024A1C5F2E37E24D6CD1F96F3 ] mfencbdc C:\Windows\system32\DRIVERS\mfencbdc.sys
19:21:50.0798 0x1288 mfencbdc - ok
19:21:50.0891 0x1288 [ 3924A68351C527CCB1AEF2DF486F0C35, C308C472DCB370D10935B1B00368C27F9F66B650F64D9B454495CD1CC5ABF3B6 ] mfencrk C:\Windows\system32\DRIVERS\mfencrk.sys
19:21:50.0922 0x1288 mfencrk - ok
19:21:51.0078 0x1288 [ 3AD42CAF7ABF5BA78AD66C1B351FD0F2, 9336BA42A3D14BCC3032A961BA1C4EE32F266E35040B81EB3C0660DFFE10C8E7 ] mfesapsn C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys
19:21:51.0110 0x1288 mfesapsn - ok
19:21:51.0437 0x1288 [ E2082E1EF67506041CAD66D905494B43, B577E1D37D16A9FDA9818317D4A8DB0FF49F1099D983F014FFDB697A3FC889F7 ] mfevtp C:\Windows\system32\mfevtps.exe
19:21:51.0468 0x1288 mfevtp - ok
19:21:51.0702 0x1288 [ 34CA0FA858BC45FA83247AAD4976CCE7, 676ED2E7EE58D2316F2DC05AB4BD9F9CFE75570E9919D568ACC992B4F9152514 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
19:21:51.0734 0x1288 mfewfpk - ok
19:21:51.0858 0x1288 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
19:21:51.0999 0x1288 MMCSS - ok
19:21:52.0124 0x1288 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
19:21:52.0202 0x1288 Modem - ok
19:21:52.0326 0x1288 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:21:52.0389 0x1288 monitor - ok
19:21:52.0482 0x1288 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:21:52.0514 0x1288 mouclass - ok
19:21:52.0607 0x1288 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:21:52.0670 0x1288 mouhid - ok
19:21:52.0732 0x1288 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:21:52.0763 0x1288 mountmgr - ok
19:21:52.0857 0x1288 [ C34AB4280614658903BE848CE79ACDB5, 9A943D9B3CF941DAE4EA4E2771B5EC5DA37AB16AD43095EF092B4259D62FF810 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:21:52.0888 0x1288 MozillaMaintenance - ok
19:21:53.0044 0x1288 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
19:21:53.0060 0x1288 mpio - ok
19:21:53.0153 0x1288 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:21:53.0247 0x1288 mpsdrv - ok
19:21:53.0356 0x1288 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:21:53.0434 0x1288 MpsSvc - ok
19:21:53.0543 0x1288 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:21:53.0637 0x1288 MRxDAV - ok
19:21:53.0715 0x1288 [ ACB6782973BD93760D597FC7BB37E692, 9B6EC2858D236DCE61FD5E0247F4D947A5DC484C9C0AABFDAF8270ABA392E787 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:21:53.0840 0x1288 mrxsmb - ok
19:21:53.0933 0x1288 [ 262BF7BB7D0E44CFAA9B12A1E0A6EDF1, CCC3A4CE929C7C8B07C1038BBE8425590CE14F5C37E1D5608978A3AD2F41519C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:21:53.0996 0x1288 mrxsmb10 - ok
19:21:54.0042 0x1288 [ 8C0376974AA28398FF501E78C04ACB30, 81CE67BE933F67F760A72BF9B581F33BC151D98970765FE4425450A2EF450409 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:21:54.0089 0x1288 mrxsmb20 - ok
19:21:54.0167 0x1288 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
19:21:54.0198 0x1288 msahci - ok
19:21:54.0230 0x1288 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:21:54.0261 0x1288 msdsm - ok
19:21:54.0339 0x1288 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
19:21:54.0386 0x1288 MSDTC - ok
19:21:54.0495 0x1288 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:21:54.0604 0x1288 Msfs - ok
19:21:54.0682 0x1288 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:21:54.0776 0x1288 mshidkmdf - ok
19:21:54.0822 0x1288 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:21:54.0854 0x1288 msisadrv - ok
19:21:54.0994 0x1288 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:21:55.0056 0x1288 MSiSCSI - ok
19:21:55.0072 0x1288 msiserver - ok
19:21:55.0290 0x1288 [ 08CCC7622DDDFD649F75F9CFA53E4229, 257C8C285DDAA1CB1AAD3F799235972D0FF9577BE97859337437D4562B7CE4E4 ] MSK80Service C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
19:21:55.0322 0x1288 MSK80Service - ok
19:21:55.0353 0x1288 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:21:55.0415 0x1288 MSKSSRV - ok
19:21:55.0493 0x1288 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:21:55.0556 0x1288 MSPCLOCK - ok
19:21:55.0587 0x1288 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:21:55.0680 0x1288 MSPQM - ok
19:21:55.0805 0x1288 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:21:55.0883 0x1288 MsRPC - ok
19:21:55.0946 0x1288 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:21:55.0992 0x1288 mssmbios - ok
19:21:56.0086 0x1288 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:21:56.0164 0x1288 MSTEE - ok
19:21:56.0242 0x1288 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
19:21:56.0304 0x1288 MTConfig - ok
19:21:56.0367 0x1288 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
19:21:56.0414 0x1288 Mup - ok
19:21:56.0601 0x1288 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
19:21:56.0710 0x1288 napagent - ok
19:21:56.0804 0x1288 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:21:56.0866 0x1288 NativeWifiP - ok
|
|
26.10.2015, 19:31
| #7 |
| | IE-Explorer funktioniert nicht mehr Teil 2: Code:
ATTFilter 19:21:57.0178 0x1288 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
19:21:57.0225 0x1288 NDIS - ok
19:21:57.0272 0x1288 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:21:57.0334 0x1288 NdisCap - ok
19:21:57.0365 0x1288 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:21:57.0443 0x1288 NdisTapi - ok
19:21:57.0537 0x1288 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:21:57.0630 0x1288 Ndisuio - ok
19:21:57.0786 0x1288 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:21:57.0896 0x1288 NdisWan - ok
19:21:57.0958 0x1288 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:21:58.0036 0x1288 NDProxy - ok
19:21:58.0114 0x1288 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:21:58.0208 0x1288 NetBIOS - ok
19:21:58.0301 0x1288 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:21:58.0395 0x1288 NetBT - ok
19:21:58.0457 0x1288 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] Netlogon C:\Windows\system32\lsass.exe
19:21:58.0488 0x1288 Netlogon - ok
19:21:58.0660 0x1288 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
19:21:58.0722 0x1288 Netman - ok
19:22:00.0126 0x1288 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:22:00.0173 0x1288 NetMsmqActivator - ok
19:22:00.0204 0x1288 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:22:00.0236 0x1288 NetPipeActivator - ok
19:22:00.0423 0x1288 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
19:22:00.0532 0x1288 netprofm - ok
19:22:00.0610 0x1288 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:22:00.0641 0x1288 NetTcpActivator - ok
19:22:00.0672 0x1288 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:22:00.0704 0x1288 NetTcpPortSharing - ok
19:22:00.0782 0x1288 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:22:00.0797 0x1288 nfrd960 - ok
19:22:01.0000 0x1288 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
19:22:01.0047 0x1288 NlaSvc - ok
19:22:01.0203 0x1288 [ 1381E95D4E0F94F22DD484B5F8C1D61D, E91C10A62E3B5A610063F48354C6F4A1AAB7300A69EAD59E89ED8EEFDBD99062 ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
19:22:01.0281 0x1288 nmwcd - ok
19:22:01.0390 0x1288 [ 205510CDB7B6084BF31760B5D06F9242, F3EAC6A7127DC5A0FEE7A9AFA561A8CA9B6E83FECCD731C890E85C33514B533B ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
19:22:01.0421 0x1288 nmwcdc - ok
19:22:02.0482 0x1288 [ 5839A8027D6D324A7CD494051A96628C, 474F2D0BB463ABE68D7C4D2C630860AED4B722EC62C616C91EE00AA965378382 ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
19:22:02.0576 0x1288 NOBU - ok
19:22:02.0732 0x1288 [ 1ACF98D80E95ADD298832C7A8996B48C, 33A0CF9C12271160A4F96A56A318166D23807E45782FB11EF897DFA40358132B ] nosGetPlusHelper C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll
19:22:02.0763 0x1288 nosGetPlusHelper - ok
19:22:02.0841 0x1288 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:22:02.0919 0x1288 Npfs - ok
19:22:02.0997 0x1288 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
19:22:03.0106 0x1288 nsi - ok
19:22:03.0153 0x1288 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:22:03.0200 0x1288 nsiproxy - ok
19:22:03.0621 0x1288 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:22:03.0699 0x1288 Ntfs - ok
19:22:03.0761 0x1288 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
19:22:03.0886 0x1288 Null - ok
19:22:03.0980 0x1288 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:22:04.0026 0x1288 nvraid - ok
19:22:04.0089 0x1288 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:22:04.0120 0x1288 nvstor - ok
19:22:04.0182 0x1288 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:22:04.0214 0x1288 nv_agp - ok
19:22:04.0276 0x1288 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:22:04.0323 0x1288 ohci1394 - ok
19:22:04.0510 0x1288 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:22:04.0541 0x1288 ose - ok
19:22:06.0008 0x1288 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:22:06.0132 0x1288 osppsvc - ok
19:22:06.0288 0x1288 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:22:06.0366 0x1288 p2pimsvc - ok
19:22:06.0476 0x1288 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
19:22:06.0554 0x1288 p2psvc - ok
19:22:06.0632 0x1288 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
19:22:06.0710 0x1288 Parport - ok
19:22:06.0788 0x1288 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:22:06.0834 0x1288 partmgr - ok
19:22:06.0928 0x1288 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:22:06.0975 0x1288 PcaSvc - ok
19:22:07.0068 0x1288 [ 3FDE033DFB0D07F8B7D5C9A3044AA121, 2C23B4FA34BA3060884B0168A830DD395A3853855CD6DF4065FBB303DFB4A87E ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
19:22:07.0115 0x1288 pccsmcfd - ok
19:22:07.0224 0x1288 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
19:22:07.0271 0x1288 pci - ok
19:22:07.0349 0x1288 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
19:22:07.0365 0x1288 pciide - ok
19:22:07.0505 0x1288 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:22:07.0536 0x1288 pcmcia - ok
19:22:07.0583 0x1288 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
19:22:07.0614 0x1288 pcw - ok
19:22:07.0739 0x1288 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:22:07.0817 0x1288 PEAUTH - ok
19:22:59.0328 0x1288 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:22:59.0406 0x1288 PerfHost - ok
19:23:00.0592 0x1288 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
19:23:00.0686 0x1288 pla - ok
19:23:00.0966 0x1288 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:23:00.0998 0x1288 PlugPlay - ok
19:23:01.0715 0x1288 [ E9605A180001A6B5551112D91DE92CA1, D888DAFC74A6E39A54A6B0330B243850BAF6FE1224294E5BEEA101C5FD6B4907 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
19:23:01.0840 0x1288 PMBDeviceInfoProvider - ok
19:23:01.0887 0x1288 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:23:01.0934 0x1288 PNRPAutoReg - ok
19:23:02.0043 0x1288 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:23:02.0074 0x1288 PNRPsvc - ok
19:23:02.0183 0x1288 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:23:02.0277 0x1288 PolicyAgent - ok
19:23:02.0339 0x1288 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
19:23:02.0402 0x1288 Power - ok
19:23:02.0573 0x1288 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:23:02.0682 0x1288 PptpMiniport - ok
19:23:02.0760 0x1288 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
19:23:02.0838 0x1288 Processor - ok
19:23:03.0010 0x1288 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
19:23:03.0072 0x1288 ProfSvc - ok
19:23:03.0135 0x1288 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:23:03.0182 0x1288 ProtectedStorage - ok
19:23:03.0244 0x1288 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:23:03.0338 0x1288 Psched - ok
19:23:03.0572 0x1288 [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
19:23:03.0603 0x1288 PSI - ok
19:23:03.0790 0x1288 [ A6A7AD767BF5141665F5C675F671B3E1, 11D43F732C3B82679E53516F83E675B60B0EFEDE3F4EE3C42AC752AD8D5155AF ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
19:23:03.0837 0x1288 PSI_SVC_2 - ok
19:23:03.0899 0x1288 [ FBF4DB6D53585437E41A113300002A2B, A0145CE87A95DA3775B28A00E741660C26ADE34BBCC7FC502ED809931482C8F2 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
19:23:03.0946 0x1288 PxHlpa64 - ok
19:23:04.0414 0x1288 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:23:04.0461 0x1288 ql2300 - ok
19:23:04.0601 0x1288 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:23:04.0632 0x1288 ql40xx - ok
19:23:04.0710 0x1288 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
19:23:04.0773 0x1288 QWAVE - ok
19:23:04.0820 0x1288 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:23:04.0898 0x1288 QWAVEdrv - ok
19:23:04.0944 0x1288 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:23:05.0007 0x1288 RasAcd - ok
19:23:05.0100 0x1288 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:23:05.0194 0x1288 RasAgileVpn - ok
19:23:05.0225 0x1288 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
19:23:05.0303 0x1288 RasAuto - ok
19:23:05.0350 0x1288 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:23:05.0428 0x1288 Rasl2tp - ok
19:23:05.0568 0x1288 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
19:23:05.0631 0x1288 RasMan - ok
19:23:05.0724 0x1288 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:23:05.0787 0x1288 RasPppoe - ok
19:23:05.0802 0x1288 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:23:05.0880 0x1288 RasSstp - ok
19:23:06.0036 0x1288 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:23:06.0130 0x1288 rdbss - ok
19:23:06.0224 0x1288 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
19:23:06.0286 0x1288 rdpbus - ok
19:23:06.0333 0x1288 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:23:06.0426 0x1288 RDPCDD - ok
19:23:06.0473 0x1288 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:23:06.0582 0x1288 RDPENCDD - ok
19:23:06.0614 0x1288 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:23:06.0676 0x1288 RDPREFMP - ok
19:23:06.0863 0x1288 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:23:06.0910 0x1288 RdpVideoMiniport - ok
19:23:06.0972 0x1288 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:23:07.0035 0x1288 RDPWD - ok
19:23:07.0097 0x1288 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:23:07.0128 0x1288 rdyboost - ok
19:23:07.0222 0x1288 [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6, A0E808EA9A58FC99D694A9EBF1F7248B79CAA44D9E6E30A07CDEDBC72A8F3610 ] regi C:\Windows\system32\drivers\regi.sys
19:23:07.0253 0x1288 regi - ok
19:23:07.0362 0x1288 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:23:07.0472 0x1288 RemoteAccess - ok
19:23:07.0628 0x1288 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:23:07.0737 0x1288 RemoteRegistry - ok
19:23:07.0877 0x1288 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:23:07.0955 0x1288 RFCOMM - ok
19:23:08.0049 0x1288 [ FA6ABC06B629DA29634D31F1FE0347BD, 6469EB5C43CFBF9D774DE09042E3E0B4A08B8A146A43450F591725418BF5104E ] rimspci C:\Windows\system32\drivers\rimssne64.sys
19:23:08.0096 0x1288 rimspci - ok
19:23:08.0205 0x1288 [ 71700B4C5797DA5412E9250E26894586, 7812BA46F429588C3B9726C886077BB9FA0565D2F0928040FAB2033938DB3E06 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
19:23:08.0283 0x1288 RimUsb - ok
19:23:08.0361 0x1288 [ C903D49655B4AAE46673F0AAA6BE0F58, 0F861775323CC1792A4A4B43D6375532D982FBC9FCC03184B55101A2A579A832 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
19:23:08.0439 0x1288 RimVSerPort - ok
19:23:08.0532 0x1288 [ 8F8539A7F5C117D4407B2985995671F2, D598C2F1F7B20E88386EADAFCA2616C3E4277521DDADF05C54933CCD9F5CA39B ] risdsnpe C:\Windows\system32\drivers\risdsne64.sys
19:23:08.0595 0x1288 risdsnpe - ok
19:23:08.0642 0x1288 [ 388D3DD1A6457280F3BADBA9F3ACD6B1, 5C534EA15195B1301C917904627AF09FE2ABA3FEE1641B5C87E8F3191BC49058 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
19:23:08.0751 0x1288 ROOTMODEM - ok
19:23:08.0844 0x1288 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:23:08.0891 0x1288 RpcEptMapper - ok
19:23:08.0938 0x1288 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
19:23:08.0985 0x1288 RpcLocator - ok
19:23:09.0203 0x1288 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
19:23:09.0250 0x1288 RpcSs - ok
19:23:09.0328 0x1288 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:23:09.0437 0x1288 rspndr - ok
19:23:09.0562 0x1288 [ D6D381B76056C668679723938F06F16C, A26C35EB588BF32F5CD22554BE5A05380D50FF1B7D399687EE50DC24C32DA341 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
19:23:09.0609 0x1288 RTHDMIAzAudService - ok
19:23:09.0624 0x1288 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] SamSs C:\Windows\system32\lsass.exe
19:23:09.0656 0x1288 SamSs - ok
19:23:09.0780 0x1288 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:23:09.0812 0x1288 sbp2port - ok
19:23:09.0936 0x1288 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:23:09.0999 0x1288 SCardSvr - ok
19:23:10.0046 0x1288 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:23:10.0124 0x1288 scfilter - ok
19:23:10.0404 0x1288 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
19:23:10.0529 0x1288 Schedule - ok
19:23:10.0607 0x1288 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
19:23:10.0654 0x1288 SCPolicySvc - ok
19:23:10.0716 0x1288 [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus C:\Windows\system32\drivers\sdbus.sys
19:23:10.0794 0x1288 sdbus - ok
19:23:10.0904 0x1288 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:23:10.0966 0x1288 SDRSVC - ok
19:23:11.0060 0x1288 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:23:11.0122 0x1288 secdrv - ok
19:23:11.0184 0x1288 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
19:23:11.0262 0x1288 seclogon - ok
19:23:11.0996 0x1288 [ 05E383849FA1FBBBC160612B0080618C, 43A33CC6BD24635EE849E89DB4391AB36292DDC0AC407E1B480B6E1DF7FC3BC5 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
19:23:12.0027 0x1288 Secunia PSI Agent - ok
19:23:12.0417 0x1288 [ F8173F1454F21C451439CB47EF75830A, CF87917CD061686CD956884D4ED73AA8C0B04B0B7B5BA36BAA4CC4A03C8C0263 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
19:23:12.0448 0x1288 Secunia Update Agent - ok
19:23:12.0604 0x1288 [ D13D7CEEDE2C4E79A82FA88FC7CD4608, 9027C644F038CC198AC6A0767E027F6E403903E52AE7F6A2C0707B9E48D77408 ] semav6msr64 C:\Windows\system32\drivers\semav6msr64.sys
19:23:12.0651 0x1288 semav6msr64 - ok
19:23:12.0807 0x1288 [ 1ED7A8574A28357097A5CB4063C96B00, 4E248CA66B7DE930AEC501A85F507AB813FC3CEBCBA347DFF3B05CE6CB8E496B ] semav6thermal64ro C:\Windows\system32\drivers\semav6thermal64ro.sys
19:23:12.0838 0x1288 semav6thermal64ro - ok
19:23:12.0947 0x1288 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
19:23:13.0056 0x1288 SENS - ok
19:23:13.0088 0x1288 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:23:13.0103 0x1288 SensrSvc - ok
19:23:13.0166 0x1288 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
19:23:13.0197 0x1288 Serenum - ok
19:23:13.0228 0x1288 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
19:23:13.0244 0x1288 Serial - ok
19:23:13.0290 0x1288 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:23:13.0322 0x1288 sermouse - ok
19:23:13.0587 0x1288 [ 78F7BB9F4924BE164294C59B8C3FC096, 75051A6A8B0DBB16CD70855A408134270EEAF0C127BAAE5B592DB53BB87C085B ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
19:23:13.0634 0x1288 ServiceLayer - ok
19:23:14.0164 0x1288 [ 1E26803454642E2C6E3C03E8E42854EC, FF4E2678E06FC2558C4C3BAA48C61BD77D381764467BC176D7ED201F6E6DD68E ] SesamService C:\Program Files (x86)\M-Budget\Sesam\BIN\SecMIPService.exe
19:23:14.0211 0x1288 SesamService - detected UnsignedFile.Multi.Generic ( 1 )
19:23:16.0941 0x1288 Detect skipped due to KSN trusted
19:23:16.0941 0x1288 SesamService - ok
19:23:17.0034 0x1288 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
19:23:17.0112 0x1288 SessionEnv - ok
19:23:17.0190 0x1288 [ 286D3889E6AB5589646FF8A63CB928AE, 98D9D34521328F4F0B0B7C2CAB97BA0EC998B9F3F996B5ED08E17292F1CD9452 ] SFEP C:\Windows\system32\drivers\SFEP.sys
19:23:17.0237 0x1288 SFEP - ok
19:23:17.0315 0x1288 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:23:17.0393 0x1288 sffdisk - ok
19:23:17.0456 0x1288 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:23:17.0518 0x1288 sffp_mmc - ok
19:23:17.0534 0x1288 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:23:17.0596 0x1288 sffp_sd - ok
19:23:17.0690 0x1288 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:23:17.0736 0x1288 sfloppy - ok
19:23:18.0064 0x1288 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:23:18.0158 0x1288 SharedAccess - ok
19:23:18.0423 0x1288 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:23:18.0501 0x1288 ShellHWDetection - ok
19:23:18.0626 0x1288 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
19:23:18.0657 0x1288 SiSRaid2 - ok
19:23:18.0735 0x1288 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:23:18.0782 0x1288 SiSRaid4 - ok
19:23:18.0969 0x1288 [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:23:18.0984 0x1288 SkypeUpdate - ok
19:23:19.0062 0x1288 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:23:19.0172 0x1288 Smb - ok
19:23:19.0281 0x1288 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:23:19.0328 0x1288 SNMPTRAP - ok
19:23:19.0640 0x1288 [ C3E69DB0A4E59564230E053232F39AC7, D7E4AC42C0731F69869E96F3AE9021ABD968E17C92283A54F265E73E6BD60ED5 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
19:23:19.0655 0x1288 SOHCImp - ok
19:23:19.0905 0x1288 [ 65CC4779A29C3E82B987BD4961790DFF, 91D072ADBCD4AEB2E10D0CC97E89E92099E8061A601F1A88425B4A20FC50FF78 ] SOHDms C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
19:23:19.0952 0x1288 SOHDms - ok
19:23:19.0983 0x1288 [ F47D75CEE1844EEF4A9EA6EE768828FB, 242550EB5879476DD2CFC0E38FAF3C6D0263FEA7504BD73ED3B004E274D7CDF6 ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
19:23:19.0998 0x1288 SOHDs - ok
19:23:20.0529 0x1288 [ C03E480E63A80D73FABE28D24D3B6B47, F8C68DC63A5492587F9343158348ADD99A99AF34DC7ED29E5562EE90C0AB8F25 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
19:23:20.0576 0x1288 SpfService - ok
19:23:20.0716 0x1288 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
19:23:20.0763 0x1288 spldr - ok
19:23:21.0106 0x1288 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
19:23:21.0200 0x1288 Spooler - ok
19:23:22.0572 0x1288 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
19:23:22.0728 0x1288 sppsvc - ok
19:23:22.0900 0x1288 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:23:22.0962 0x1288 sppuinotify - ok
19:23:23.0212 0x1288 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:23:23.0306 0x1288 srv - ok
19:23:23.0555 0x1288 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:23:23.0618 0x1288 srv2 - ok
19:23:23.0727 0x1288 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:23:23.0805 0x1288 srvnet - ok
19:23:24.0023 0x1288 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:23:24.0117 0x1288 SSDPSRV - ok
19:23:24.0257 0x1288 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:23:24.0320 0x1288 SstpSvc - ok
19:23:24.0413 0x1288 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
19:23:24.0444 0x1288 stexstor - ok
19:23:24.0663 0x1288 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
19:23:24.0725 0x1288 stisvc - ok
19:23:24.0834 0x1288 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
19:23:24.0866 0x1288 swenum - ok
19:23:25.0146 0x1288 [ 19BB7EED330F5736064CC84F6B45037A, 1170F7E6A3A42F89930CF6A7B9B300D398403C3B43B54773BCCDE70EE4AB4F64 ] SwiCardDetectSvc C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe
19:23:25.0178 0x1288 SwiCardDetectSvc - ok
19:23:25.0490 0x1288 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
19:23:25.0568 0x1288 swprv - ok
19:23:26.0098 0x1288 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
19:23:26.0207 0x1288 SysMain - ok
19:23:26.0301 0x1288 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:23:26.0348 0x1288 TabletInputService - ok
19:23:26.0597 0x1288 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
19:23:26.0660 0x1288 TapiSrv - ok
19:23:26.0784 0x1288 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
19:23:26.0847 0x1288 TBS - ok
19:23:27.0736 0x1288 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:23:27.0798 0x1288 Tcpip - ok
19:23:28.0017 0x1288 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:23:28.0079 0x1288 TCPIP6 - ok
19:23:28.0157 0x1288 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:23:28.0251 0x1288 tcpipreg - ok
19:23:28.0329 0x1288 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:23:28.0376 0x1288 TDPIPE - ok
19:23:28.0422 0x1288 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:23:28.0485 0x1288 TDTCP - ok
19:23:28.0532 0x1288 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:23:28.0610 0x1288 tdx - ok
19:23:28.0656 0x1288 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
19:23:28.0688 0x1288 TermDD - ok
19:23:28.0781 0x1288 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
19:23:28.0844 0x1288 TermService - ok
19:23:28.0953 0x1288 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
19:23:29.0015 0x1288 Themes - ok
19:23:29.0062 0x1288 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
19:23:29.0124 0x1288 THREADORDER - ok
19:23:29.0218 0x1288 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
19:23:29.0312 0x1288 TrkWks - ok
19:23:29.0514 0x1288 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:23:29.0608 0x1288 TrustedInstaller - ok
19:23:29.0686 0x1288 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:23:29.0717 0x1288 tssecsrv - ok
19:23:29.0780 0x1288 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:23:29.0826 0x1288 TsUsbFlt - ok
19:23:29.0904 0x1288 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:23:29.0998 0x1288 tunnel - ok
19:23:30.0092 0x1288 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:23:30.0123 0x1288 uagp35 - ok
19:23:30.0372 0x1288 [ 63F6D08C54D5B3C1B12A6172032055C7, 87D872731D2C85E1A0ED3128CB7AB91AF00D830B0E4307054ABFD1D3900C990D ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
19:23:30.0404 0x1288 uCamMonitor - ok
19:23:30.0560 0x1288 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:23:30.0653 0x1288 udfs - ok
19:23:30.0762 0x1288 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:23:30.0809 0x1288 UI0Detect - ok
19:23:30.0872 0x1288 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:23:30.0887 0x1288 uliagpkx - ok
19:23:30.0950 0x1288 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
19:23:31.0012 0x1288 umbus - ok
19:23:31.0090 0x1288 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
19:23:31.0106 0x1288 UmPass - ok
19:23:31.0777 0x1288 [ 11A559E0F10CC5E788984023DF400A6F, B16B6C2305B421402C2FA4D4D32A8359C4A5B5F14D14C04A1AE7BEC7EEA13047 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
19:23:31.0870 0x1288 UNS - ok
19:23:32.0057 0x1288 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
19:23:32.0120 0x1288 upnphost - ok
19:23:32.0229 0x1288 [ 311C90F0767A63000AC35DD0A7078A30, DB80E10015DCC595F90C31CE61590DB07E84F8B13DA904B2D59233678C366A2D ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
19:23:32.0276 0x1288 upperdev - ok
19:23:32.0354 0x1288 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:23:32.0432 0x1288 usbccgp - ok
19:23:32.0494 0x1288 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:23:32.0525 0x1288 usbcir - ok
19:23:32.0603 0x1288 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:23:32.0650 0x1288 usbehci - ok
19:23:32.0806 0x1288 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:23:32.0837 0x1288 usbhub - ok
19:23:32.0900 0x1288 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:23:32.0962 0x1288 usbohci - ok
19:23:33.0040 0x1288 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
19:23:33.0118 0x1288 usbprint - ok
19:23:33.0181 0x1288 [ B57B4F0BEC4270A281B9F8537EB2FA04, 554273482EE85F010DC62E412C9933E65BD63AA09911BD25D86F86D2618EF382 ] usbser C:\Windows\system32\drivers\usbser.sys
19:23:33.0227 0x1288 usbser - ok
19:23:33.0337 0x1288 [ C03DA998E412D69D18DD11D835229AF0, DD43E370EF370767588A6D56A51A4ADF99B5E063C7AA0528F91FD431DE7C2932 ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
19:23:33.0399 0x1288 UsbserFilt - ok
19:23:33.0477 0x1288 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:23:33.0539 0x1288 USBSTOR - ok
19:23:33.0602 0x1288 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:23:33.0633 0x1288 usbuhci - ok
19:23:33.0773 0x1288 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
19:23:33.0851 0x1288 usbvideo - ok
19:23:34.0803 0x1288 [ 22BF25D9A5B403675358B2D8D9984894, 5F37BD18DBA68D3958B6225CFB06ADD28A5AF5448ECBFF93D8637A4E662607D9 ] USER_ESRV_SVC C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
19:23:34.0850 0x1288 USER_ESRV_SVC - ok
19:23:34.0943 0x1288 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
19:23:35.0068 0x1288 UxSms - ok
19:23:35.0177 0x1288 [ A60605FC66552B421EE1F3D4EBB9A4E0, DCAC76EACAABD38E3896F78B56F51D08ECCC46E360DC29857526929900455E07 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
19:23:35.0209 0x1288 VAIO Event Service - ok
19:23:35.0567 0x1288 [ D469BE2723F79CF4B384680B1FDC577D, 8967D83D7A59E1C04F1A252246ABD7B64ABEC36BF02E3CA5BD672ABCA36E2BE0 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
19:23:35.0599 0x1288 VAIO Power Management - ok
19:23:35.0630 0x1288 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] VaultSvc C:\Windows\system32\lsass.exe
19:23:35.0661 0x1288 VaultSvc - ok
19:23:36.0379 0x1288 [ ADD5A5BA64D0710E1C764A8D4DAD510E, 77A56EDAB6FEBB684E2F6B91DB4E5363D40930CCC3F44DA681BEBB9201851B1C ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
19:23:36.0425 0x1288 VCFw - ok
19:23:36.0862 0x1288 [ EEE5AD6FB40B35F7867C3A49B98BB4EF, BEB7A8261C627E4FC8A57386700D25F78257B8CCA720174FEBC7DC53E871B6FF ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
19:23:36.0909 0x1288 VcmIAlzMgr - ok
19:23:37.0127 0x1288 [ CBB9F0D1017E0BED4CB5BBC0EBF26DC1, C64F9DE0A48A56EDDAB6FEB58F6EEE0A792DE5C669A2DB0776E9E374724F0AFE ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
19:23:37.0159 0x1288 VcmINSMgr - ok
19:23:37.0330 0x1288 [ 9BC1F203C5604C24F345BCFCD6956BAE, 44D277B041FD6902AE61CCA0C96E5555EAC35E356EC91E22485781D66C68009D ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
19:23:37.0361 0x1288 VcmXmlIfHelper - ok
19:23:37.0564 0x1288 [ B430617858DBA164F64E7974D80EBEB9, DE69180925B971901C1AEDD864020B4F1ECEA3094EDAFC408F5865690F2E7D1E ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
19:23:37.0689 0x1288 VCService - ok
19:23:37.0720 0x1288 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:23:37.0751 0x1288 vdrvroot - ok
19:23:37.0907 0x1288 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
19:23:37.0970 0x1288 vds - ok
19:23:38.0079 0x1288 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:23:38.0126 0x1288 vga - ok
19:23:38.0188 0x1288 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
19:23:38.0282 0x1288 VgaSave - ok
19:23:38.0391 0x1288 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:23:38.0422 0x1288 vhdmp - ok
19:23:38.0500 0x1288 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
19:23:38.0547 0x1288 viaide - ok
19:23:38.0578 0x1288 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:23:38.0609 0x1288 volmgr - ok
19:23:38.0734 0x1288 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:23:38.0797 0x1288 volmgrx - ok
19:23:38.0921 0x1288 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:23:38.0968 0x1288 volsnap - ok
19:23:39.0093 0x1288 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:23:39.0124 0x1288 vsmraid - ok
19:23:39.0670 0x1288 [ A7EB62C664A03901165290A714BD48D0, 983BA71FE311FEBB21A0AE9A42FD128DFA787A47905E5533D192039A9609FCF1 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
19:23:39.0717 0x1288 VSNService - detected UnsignedFile.Multi.Generic ( 1 )
19:23:49.0810 0x1288 VSNService ( UnsignedFile.Multi.Generic ) - warning
19:23:53.0882 0x1288 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
19:23:53.0991 0x1288 VSS - ok
19:23:56.0971 0x1288 [ 24D6F6D7AE866A6875965EFE9D8EE3F3, 344DFC1BFA1026B2AC3C883F5DAA78EB142299B717035444CE0DD8A548BEF10C ] VUAgent C:\Program Files\Sony\VAIO Update\vuagent.exe
19:23:57.0049 0x1288 VUAgent - ok
19:23:57.0095 0x1288 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:23:57.0127 0x1288 vwifibus - ok
19:23:57.0173 0x1288 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:23:57.0220 0x1288 vwififlt - ok
19:23:57.0267 0x1288 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:23:57.0329 0x1288 vwifimp - ok
19:23:57.0485 0x1288 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
19:23:57.0548 0x1288 W32Time - ok
19:23:57.0641 0x1288 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:23:57.0719 0x1288 WacomPen - ok
19:23:57.0829 0x1288 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:23:57.0953 0x1288 WANARP - ok
19:23:57.0985 0x1288 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:23:58.0031 0x1288 Wanarpv6 - ok
19:23:58.0250 0x1288 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:23:58.0297 0x1288 WatAdminSvc - ok
19:23:58.0780 0x1288 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
19:23:58.0921 0x1288 wbengine - ok
19:23:58.0999 0x1288 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:23:59.0077 0x1288 WbioSrvc - ok
19:23:59.0264 0x1288 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:23:59.0373 0x1288 wcncsvc - ok
19:23:59.0435 0x1288 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:23:59.0482 0x1288 WcsPlugInService - ok
19:23:59.0607 0x1288 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
19:23:59.0654 0x1288 Wd - ok
19:23:59.0810 0x1288 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:23:59.0888 0x1288 Wdf01000 - ok
19:23:59.0950 0x1288 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:24:00.0028 0x1288 WdiServiceHost - ok
19:24:00.0044 0x1288 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:24:00.0075 0x1288 WdiSystemHost - ok
19:24:00.0122 0x1288 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
19:24:00.0153 0x1288 WebClient - ok
19:24:00.0340 0x1288 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:24:00.0418 0x1288 Wecsvc - ok
19:24:00.0481 0x1288 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:24:00.0543 0x1288 wercplsupport - ok
19:24:00.0605 0x1288 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
19:24:00.0683 0x1288 WerSvc - ok
19:24:00.0777 0x1288 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:24:00.0855 0x1288 WfpLwf - ok
19:24:00.0902 0x1288 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:24:00.0933 0x1288 WIMMount - ok
19:24:01.0011 0x1288 WinDefend - ok
19:24:01.0089 0x1288 WinHttpAutoProxySvc - ok
19:24:01.0432 0x1288 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:24:01.0510 0x1288 Winmgmt - ok
19:24:02.0119 0x1288 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
19:24:02.0228 0x1288 WinRM - ok
19:24:02.0399 0x1288 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
19:24:02.0415 0x1288 WinUsb - ok
19:24:02.0540 0x1288 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:24:02.0665 0x1288 Wlansvc - ok
19:24:03.0585 0x1288 [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:24:03.0679 0x1288 wlidsvc - ok
19:24:03.0788 0x1288 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:24:03.0835 0x1288 WmiAcpi - ok
19:24:04.0006 0x1288 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:24:04.0037 0x1288 wmiApSrv - ok
19:24:04.0147 0x1288 WMPNetworkSvc - ok
19:24:04.0240 0x1288 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:24:04.0303 0x1288 WPCSvc - ok
19:24:04.0365 0x1288 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:24:04.0412 0x1288 WPDBusEnum - ok
19:24:04.0505 0x1288 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:24:04.0583 0x1288 ws2ifsl - ok
19:24:04.0646 0x1288 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
19:24:04.0755 0x1288 wscsvc - ok
19:24:04.0771 0x1288 WSearch - ok
19:24:04.0833 0x1288 [ 345D6738E3C10805E9923D15ABE3F34B, 8AA94D88911A656281F30C2F16D97F595610AF65625946D6C7493517005A74FC ] WtSmpAdap C:\Windows\system32\DRIVERS\wtsmpadap.sys
19:24:04.0849 0x1288 WtSmpAdap - ok
19:24:04.0895 0x1288 [ EB932C4EAC84928DC62683E41D0C6F68, D33E61B5568FDEE2D58C6E1DF729080D84D244077C8B858E8BC62BB4A65D5592 ] WtSmpFlt C:\Windows\system32\DRIVERS\wtsmpflt.sys
19:24:04.0927 0x1288 WtSmpFlt - ok
19:24:05.0348 0x1288 [ 291778E1A36716182AFBC1731B2DFEAB, C0B928CCCE8C496C90C42E0D294BAB51DC67C02B0D20CFB6A16B0AE1F51CC497 ] wuauserv C:\Windows\system32\wuaueng.dll
19:24:05.0426 0x1288 wuauserv - ok
19:24:05.0519 0x1288 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:24:05.0566 0x1288 WudfPf - ok
19:24:05.0629 0x1288 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:24:05.0707 0x1288 WUDFRd - ok
19:24:05.0800 0x1288 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:24:05.0847 0x1288 wudfsvc - ok
19:24:05.0894 0x1288 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
19:24:05.0972 0x1288 WwanSvc - ok
19:24:06.0175 0x1288 [ 5250193EF8E173AA7491250F00EB367F, FF33B5112C5702CBD8EF2B0B5E49428973054B961F3B105419F7A47E2057B8A6 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
19:24:06.0206 0x1288 yukonw7 - ok
19:24:06.0284 0x1288 ================ Scan global ===============================
19:24:06.0533 0x1288 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
19:24:06.0643 0x1288 [ 4AD1C61152A0199E3D7F9A82C07AC629, A4A42C7757EB084EE368A6BC4EBAB0C47BE41B0B4119A6AECD1B8E3332A7C5D5 ] C:\Windows\system32\winsrv.dll
19:24:06.0658 0x1288 [ 4AD1C61152A0199E3D7F9A82C07AC629, A4A42C7757EB084EE368A6BC4EBAB0C47BE41B0B4119A6AECD1B8E3332A7C5D5 ] C:\Windows\system32\winsrv.dll
19:24:06.0783 0x1288 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
19:24:06.0955 0x1288 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
19:24:06.0970 0x1288 [ Global ] - ok
19:24:06.0970 0x1288 ================ Scan MBR ==================================
19:24:07.0001 0x1288 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:24:11.0666 0x1288 \Device\Harddisk0\DR0 - ok
19:24:11.0666 0x1288 ================ Scan VBR ==================================
19:24:11.0681 0x1288 [ AFB50AC67B2958360CAE28BAC7BD7F1B ] \Device\Harddisk0\DR0\Partition1
19:24:11.0744 0x1288 \Device\Harddisk0\DR0\Partition1 - ok
19:24:11.0775 0x1288 [ 8A6DC18BA0564A73262625F882328FAE ] \Device\Harddisk0\DR0\Partition2
19:24:11.0853 0x1288 \Device\Harddisk0\DR0\Partition2 - ok
19:24:11.0853 0x1288 ================ Scan generic autorun ======================
19:24:15.0893 0x1288 [ CAF4777D51A4DC6B62219A0C579F8723, 84BBF7625656BB3B10C0C4CEDEE539F044335CEEEFECFDD78CE908DBFF13F9A3 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
19:24:16.0143 0x1288 RtHDVCpl - ok
19:24:16.0923 0x1288 [ 1A87CB56BB2385657C7808F876902C20, 277A36F3262BEF0B6FA24381BA09685B1C9E3B1A75C47D6E7C96DBBA4CAB41D1 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
19:24:16.0985 0x1288 RtHDVBg - ok
19:24:16.0985 0x1288 Apoint - ok
19:24:17.0001 0x1288 Bluetooth Connection Assistant - ok
19:24:17.0079 0x1288 [ 4B1BE6FAC94468559DD75B49CB1BED87, A691059DDE76F83B9776DD5D672C9CF9E7D53C7BBF9284973C72FF105EDA9966 ] C:\Windows\KHALMNPR.EXE
19:24:17.0126 0x1288 Kernel and Hardware Abstraction Layer - ok
19:24:17.0828 0x1288 [ DF72D700CC33611206675B8A2FD4D4F9, AB3AF6FD92140A1432FEAFFF2015CFAD5E9362F0018EA1D859A2DA349E95847D ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
19:24:17.0875 0x1288 EvtMgr6 - ok
19:24:18.0187 0x1288 [ 25107F58D1B8F60D67D1EE95798C0DE8, C3B5205E8818576EBF33E3B9FD8664A498714B823D9128FC1CA0A64F81499263 ] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
19:24:18.0218 0x1288 IAStorIcon - ok
19:24:18.0686 0x1288 [ E6928B91664E7C61D66E95E320308E34, 8D2AB63D9D4A7D67728DC3DED4836E782FCFE706192AC6117E51CF400BFD8177 ] C:\Program Files\McAfee.com\Agent\mcagent.exe
19:24:18.0733 0x1288 mcui_exe - ok
19:24:19.0169 0x1288 [ D3E69D500466C17498AAF7F83D12FFF0, F5723FC28396489EADDDCAD67A0E46B56D859590823E3CFA7254BA6709DC5AE6 ] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
19:24:19.0216 0x1288 Norton Online Backup - ok
19:24:19.0747 0x1288 [ 1144F1A221F756E05525179B5E1682C1, 8D956AEC3C19F07762AF050F8040A23DFC9A25CD7EDBA51CE7793EDD61A5DDE1 ] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
19:24:19.0856 0x1288 PMBVolumeWatcher - ok
19:24:20.0137 0x1288 [ A02446E78561CEC8EB18A93B193144D6, 5C78D3D4E07DD5DC42349C811A8A135ECCC257D910DE8D1AC501C164F94B0D29 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
19:24:20.0168 0x1288 StartCCC - detected UnsignedFile.Multi.Generic ( 1 )
19:24:23.0647 0x1288 Detect skipped due to KSN trusted
19:24:23.0647 0x1288 StartCCC - ok
19:24:23.0803 0x1288 [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
19:24:23.0834 0x1288 APSDaemon - ok
19:24:23.0927 0x1288 [ A915E9E86853E86AAF0216675556B890, D0579457A225BFEE2740D3AE8C77AD853BD571D20203DF331EBBCF05214DCDDF ] C:\Program Files (x86)\EMET\EMET_notifier.exe
19:24:23.0959 0x1288 EMET Notifier - ok
19:24:24.0255 0x1288 [ 6FFB5DF3DEDAD9D814E0FFE1089C1E9B, 0B516EEEF409892A9525946AD15B93718DE258A4B83FAABB3DD5D6F9D08B72CF ] C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe
19:24:24.0286 0x1288 NSU_agent - ok
19:24:24.0411 0x1288 [ 16A8629CEF8D16AF8363CA5397F9B0A1, 4941D3872F840688224273ABD91DFD8877DA4495A8A0A133B644DBEC33C4F48D ] C:\Program Files (x86)\Sunrise T@KE AWAY\ModemListener.exe
19:24:24.0442 0x1288 ModemListener - detected UnsignedFile.Multi.Generic ( 1 )
19:24:27.0203 0x1288 ModemListener ( UnsignedFile.Multi.Generic ) - warning
19:24:30.0167 0x1288 [ 5183EC20A788D7A78C7B408FDEA6F303, E93956ED56889FC0EA736A1787CF44CE09D21022B12DBDCD47A754EAB5A1A797 ] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe
19:24:30.0214 0x1288 Nikon Message Center 2 - detected UnsignedFile.Multi.Generic ( 1 )
19:24:32.0960 0x1288 Detect skipped due to KSN trusted
19:24:32.0960 0x1288 Nikon Message Center 2 - ok
19:24:33.0194 0x1288 [ F655E4A1AED366E96E5D5AA397E0F255, F8573CCA72FA25079B8CE2FC5D30379487E2905B109C73C741FAB31589FA49E1 ] C:\Program Files (x86)\QuickTime\QTTask.exe
19:24:33.0256 0x1288 QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
19:24:36.0017 0x1288 Detect skipped due to KSN trusted
19:24:36.0017 0x1288 QuickTime Task - ok
19:24:36.0314 0x1288 [ FCEC6F664FA7E5FE323165FBC9314470, 4E5AB1E6C3D2881D95E74F2F28649A7DBC4919CA249829A0E4CD9804E401A025 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
19:24:36.0361 0x1288 SunJavaUpdateSched - ok
19:24:37.0234 0x1288 [ 16DEFCB5F3FAC44D5EB35B19DA337FE5, CE8531B8FBA4896D4A1AB0C5CCEFC5DF0C74063D717EC9BA386B4E25D7F93651 ] C:\Program Files (x86)\Adobe\Elements Organizer 8.0\CAHeadless\ElementsAutoAnalyzer.exe
19:24:37.0265 0x1288 CAHeadless - ok
19:24:37.0515 0x1288 [ 187FC921C69FACF0E85B55C1D763F6A2, AAC1F0B00EEE8714290AA4338F5DF0E937474E36CAC020383CC27AF8EF6D0BA8 ] C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe
19:24:37.0546 0x1288 Elbserver - ok
19:24:38.0311 0x1288 [ E8405C87CD06FF5D69BC6F3B24D766D0, C82171BEDBFE593A04D09C2E20B0528AA3CEC722D6919F8A5C70C6EFFB9EFEAE ] C:\Users\Heike und Achim\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
19:24:38.0342 0x1288 AmazonMP3DownloaderHelper - ok
19:24:38.0498 0x1288 [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
19:24:38.0513 0x1288 swg - ok
19:24:39.0137 0x1288 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
19:24:39.0200 0x1288 Sidebar - ok
19:24:39.0200 0x1288 Adobe Speed Launcher - ok
19:24:39.0200 0x1288 Waiting for KSN requests completion. In queue: 6
19:24:40.0214 0x1288 Waiting for KSN requests completion. In queue: 6
19:24:41.0228 0x1288 Waiting for KSN requests completion. In queue: 6
19:24:42.0320 0x1288 AV detected via SS2: McAfee Anti-Virus und Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 14.0.0.0 ), 0x51000 ( enabled : updated )
19:24:42.0320 0x1288 FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 14.0.0.0 ), 0x51010 ( enabled )
19:24:45.0081 0x1288 ============================================================
19:24:45.0081 0x1288 Scan finished
19:24:45.0081 0x1288 ============================================================
19:24:45.0097 0x097c Detected object count: 2
19:24:45.0097 0x097c Actual detected object count: 2
19:25:58.0838 0x097c VSNService ( UnsignedFile.Multi.Generic ) - skipped by user
19:25:58.0838 0x097c VSNService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:25:58.0838 0x097c ModemListener ( UnsignedFile.Multi.Generic ) - skipped by user
19:25:58.0838 0x097c ModemListener ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:26:15.0031 0x068c Deinitialize success
|
|
27.10.2015, 19:31
| #8 |
| /// the machine /// TB-Ausbilder | IE-Explorer funktioniert nicht mehr Bitte Windows Repair laufen lassen: Windows reparieren - so geht's - Anleitungen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
27.10.2015, 23:07
| #9 |
| | IE-Explorer funktioniert nicht mehr Habe die Rep gemacht und jetzt scheint der IE wieder einwandfrei zu laufen. Vielen lieben Dank für die Hilfe  .Muss ich jetzt noch was tun. Zu früh gefreut. Eben ist ie wieder abgestürzt und zwar wenn ich einen neuen Tab aufmachen will. Und nun geht er wieder garnicht mehr. Geändert von ebb8924 (27.10.2015 um 23:16 Uhr) |
|
28.10.2015, 20:16
| #10 |
| /// the machine /// TB-Ausbilder | IE-Explorer funktioniert nicht mehr nachmal das Tool, dann IE ohne Addons starten.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
28.10.2015, 23:18
| #11 |
| | IE-Explorer funktioniert nicht mehr Hallo Schrauber, so nun habe ich das Tool noch einmal durchlaufen lassen. Leider nur mit bedingtem Erfolg. Ie startet zwar ohne addons, aber wenn ich mehr als 3 Seiten aufmachen will stürzt der ie wieder ab. Das bleibt bei Neustart des ie auch so. Die ersten drei Tabs gehen. Der vierte stürzt wieder den ie ab.  Was ich mich dazu frage ist: Hat vielleicht mein Hauptspeicher eine Macke? |
|
29.10.2015, 19:41
| #12 |
| /// the machine /// TB-Ausbilder | IE-Explorer funktioniert nicht mehr FRST öffnen, Haken setzen bei Addition und scannen, poste bitte beide Logs.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
29.10.2015, 20:50
| #13 |
| | IE-Explorer funktioniert nicht mehr FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-10-2015
durchgeführt von Heike und Achim (Administrator) auf MUEMMEL (29-10-2015 20:41:48)
Gestartet von C:\Users\Heike und Achim\Desktop
Geladene Profile: Heike und Achim (Verfügbare Profile: Heike und Achim & Heike)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 9 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
() C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(M-Budget) C:\Program Files (x86)\M-Budget\M-Budget Data Manager\DashBoardS.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Swisscom) C:\Program Files (x86)\M-Budget\Sesam\BIN\SecMIPService.exe
(Sierra Wireless, Inc.) C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LBTWiz.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Sony Corporation) C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe
() C:\Users\Heike und Achim\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Ruiware LLC) C:\Program Files (x86)\Ruiware\WinPatrol\WinPatrol.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(Microsoft Corporation) C:\Program Files (x86)\EMET\EMET_notifier.exe
() C:\Program Files (x86)\Sunrise T@KE AWAY\ModemListener.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApntEx.exe
(ALPS) C:\Program Files\Apoint\Apvfb.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
() C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Personalization Manager\VpmIfPav.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\Core\mchost.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.6.1180.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Windows\System32\perfmon.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe
() C:\Program Files (x86)\bfgclient\bfgclient.exe
() C:\Program Files (x86)\bfgclient\bfgclient.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Sony Corporation) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
(Sony Corporation) C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775584 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [212480 2010-05-31] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Bluetooth Connection Assistant] => LBTWIZ.EXE -silent
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [243216 2008-12-18] (Logitech, Inc.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [641504 2015-09-28] (McAfee, Inc.)
HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [650080 2011-03-15] (Sony Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [102400 2010-09-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [EMET Notifier] => C:\Program Files (x86)\EMET\EMET_notifier.exe [152152 2012-05-09] (Microsoft Corporation)
HKLM-x32\...\Run: [NSU_agent] => C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe [190768 2012-02-28] ()
HKLM-x32\...\Run: [ModemListener] => C:\Program Files (x86)\Sunrise T@KE AWAY\ModemListener.exe [98304 2010-06-22] ()
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [CAHeadless] => C:\Program Files (x86)\Adobe\Elements Organizer 8.0\CAHeadless\ElementsAutoAnalyzer.exe [615808 2009-10-09] (Adobe Systems Incorporated)
HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [Elbserver] => C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe [83344 2010-12-15] (Sony Corporation)
HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Heike und Achim\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-07-30] (Google Inc.)
HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [] => [X]
HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Run: [WinPatrol] => C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe [1154112 2014-07-21] (Ruiware LLC)
HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-458901301-3535109335-729799517-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\VAIOSC~1.SCR [21098312 2010-05-18] (Sony Europe)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-12-16] (Microsoft Corporation)
HKU\S-1-5-18\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoControlPanel] 0
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2010-07-30]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Heike und Achim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk [2010-12-05]
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{C2741310-DA90-4F6E-B0D6-538D8D4DF85A}: [NameServer] 10.74.210.210 10.74.210.211
Tcpip\..\Interfaces\{C3FA99C0-6D20-46D3-A571-87208C430CB4}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\S-1-5-21-458901301-3535109335-729799517-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-458901301-3535109335-729799517-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-458901301-3535109335-729799517-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKU\S-1-5-21-458901301-3535109335-729799517-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/webhp?nord=1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-458901301-3535109335-729799517-1000 -> {2A1AA59A-1480-4557-AFA8-FFD0E71DDBA1} URL = hxxp://de.shopping.com/?linkin_id=8056363
SearchScopes: HKU\S-1-5-21-458901301-3535109335-729799517-1000 -> {420B6614-2385-4F7D-8C38-1559A310E066} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-9/4?satitle={searchTerms}
SearchScopes: HKU\S-1-5-21-458901301-3535109335-729799517-1000 -> {8D4CF8E5-CE24-449E-913B-64FBA423FC14} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
BHO: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL => Keine Datei
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-22] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Keine Datei
BHO-x32: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\Program Files\mcafee\msk\mskapbho.dll [2010-11-25] ()
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-10-23] (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-22] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-23] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-22] (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-22] (Google Inc.)
Toolbar: HKU\S-1-5-21-458901301-3535109335-729799517-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-22] (Google Inc.)
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-10-16] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-10-16] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-10-16] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-10-16] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-09-28] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-09-28] (McAfee, Inc.)
FireFox:
========
FF ProfilePath: C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default
FF SearchEngineOrder.1: Sichere Suche
FF Keyword.URL: hxxp://de.search.yahoo.com/search?fr=mcafee&type=A111DE649&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-16] ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\Windows\system32\npDeployJava1.dll [2012-07-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [Keine Datei]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-09-28] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-16] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-23] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\Sony\MSS\3.8.130\npMcAfeeMss.dll [Keine Datei]
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-09-28] ()
FF Plugin-x32: @mcafee.com/MVT -> C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll [2014-12-08] (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2012-12-21] ( )
FF Plugin-x32: @nosltd.com/getPlus+(R),version=1.6.2.103 -> C:\Program Files (x86)\NOS\bin\np_gp.dll [2011-05-25] (NOS Microsystems Ltd.)
FF Plugin-x32: @oberon-media.com/ONCAdapter -> C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll [2012-05-31] (Oberon-Media )
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2010-11-10] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-458901301-3535109335-729799517-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Heike und Achim\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-08-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-08-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-08-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-08-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-08-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np_gp.dll [2011-05-25] (NOS Microsystems Ltd.)
FF SearchPlugin: C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\searchplugins\McSiteAdvisor.xml [2015-10-28]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2014-06-03]
FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\artur.dubovoy@gmail.com [2015-09-24]
FF Extension: Kein Name - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\{0e3dbc69-a682-48da-84e1-82c63a5d678e}-trash [2012-01-21] [ist nicht signiert]
FF Extension: Flash and Video Download - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2015-10-28]
FF Extension: All-in-One Sidebar - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2015-10-05]
FF Extension: CookieCuller - C:\Users\Heike und Achim\AppData\Roaming\Mozilla\Firefox\Profiles\8yc8mqnr.default\Extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}.xpi [2015-05-30]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2015-09-07]
FF HKLM-x32\...\Firefox\Extensions: [{E4D8AFFF-DA7C-412F-A976-05ED142C7806}] - C:\Program Files (x86)\M-Budget\M-Budget Data Manager\FireFox_Remote
FF Extension: M-Budget Data Manager - C:\Program Files (x86)\M-Budget\M-Budget Data Manager\FireFox_Remote [2012-12-17] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2015-10-28] [ist nicht signiert]
Chrome:
=======
CHR Profile: C:\Users\Heike und Achim\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (SiteAdvisor) - C:\Users\Heike und Achim\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2013-10-23]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Heike und Achim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-04]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-10-23]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-10-23]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 0222291446068558mcinstcleanup; C:\Windows\TEMP\022229~1.EXE [882000 2015-07-23] (McAfee, Inc.)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 DeviceManager; C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe [40960 2010-06-17] () [Datei ist nicht signiert]
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [413336 2015-08-26] ()
S2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2014-01-15] ()
S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [682064 2014-04-26] ()
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [157928 2015-10-16] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [783120 2015-09-28] (McAfee, Inc.)
S3 McComponentHostServiceSony; C:\Program Files (x86)\Sony\MSS\3.8.130\McCHSvc.exe [235216 2013-10-16] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.6.1180.0\McCSPServiceHost.exe [1694152 2015-09-01] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [639456 2015-08-11] (McAfee, Inc.)
S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
S2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 MDM Service; C:\Program Files (x86)\M-Budget\M-Budget Data Manager\DashBoardS.exe [153456 2011-06-16] (M-Budget)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-07-31] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [376264 2015-08-10] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-07-31] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
S3 nosGetPlusHelper; C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll [53248 2011-05-25] (NOS Microsystems Ltd.)
S3 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia)
R2 SesamService; C:\Program Files (x86)\M-Budget\Sesam\BIN\SecMIPService.exe [1482240 2011-05-16] (Swisscom) [Datei ist nicht signiert]
R2 SwiCardDetectSvc; C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe [307568 2010-09-22] (Sierra Wireless, Inc.)
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [413336 2015-08-26] ()
S2 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [960160 2011-12-29] (Sony Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [836608 2010-06-08] (Sony Corporation) [Datei ist nicht signiert]
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1653272 2015-07-31] (Sony Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 !SASCORE; "C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [80768 2015-08-10] (McAfee, Inc.)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)
S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [125952 2014-07-25] (Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [380672 2014-07-23] (Huawei Technologies Co., Ltd.)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [10326784 2010-06-24] (Intel Corporation) [Datei ist nicht signiert]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [271872 2010-06-24] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [119680 2010-06-17] (TCT International Mobile Ltd)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [413432 2015-08-10] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [349096 2015-08-10] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [495856 2015-08-10] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [839376 2015-08-10] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [537408 2015-08-12] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [111256 2015-08-12] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [37960 2015-10-16] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [244024 2015-08-10] (McAfee, Inc.)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-07-03] (Secunia)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [92160 2010-06-16] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [31744 2009-01-09] (Research in Motion Ltd)
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [29352 2015-10-21] ()
S3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2015-08-04] ()
R3 WtSmpAdap; C:\Windows\System32\DRIVERS\wtsmpadap.sys [56688 2011-04-11] (Swisscom)
R1 WtSmpFlt; C:\Windows\System32\DRIVERS\wtsmpflt.sys [409456 2011-04-11] (Swisscom)
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-29 20:41 - 2015-10-29 20:41 - 00000000 ____D C:\Users\Heike und Achim\Desktop\FRST-OlderVersion
2015-10-29 19:38 - 2015-10-29 19:38 - 00001437 _____ C:\Users\Public\Desktop\Save Halloween - Die Stadt der Hexen.lnk
2015-10-29 18:52 - 2015-10-29 18:56 - 264124936 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\SaveHalloweenDieStadtDerHexen.exe
2015-10-29 17:45 - 2015-10-29 18:49 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Jewel Match Twilight
2015-10-29 17:44 - 2015-10-29 17:44 - 00001274 _____ C:\Users\Public\Desktop\More Great Games.lnk
2015-10-28 18:42 - 2015-10-28 18:42 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\fantasy_mosaics_11
2015-10-27 20:43 - 2015-10-27 20:43 - 00000000 ____D C:\Users\Heike und Achim\Downloads\tweaking.com_windows_repair_aio
2015-10-27 20:35 - 2015-10-27 20:40 - 18332210 _____ C:\Users\Heike und Achim\Downloads\tweaking.com_windows_repair_aio.zip
2015-10-26 20:00 - 2015-10-26 20:00 - 00001401 _____ C:\Users\Public\Desktop\Halloweenrätsel - Nonogramme.lnk
2015-10-26 19:58 - 2015-10-26 19:59 - 39853720 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\HalloweenraetselNonogramme.exe
2015-10-26 19:08 - 2015-10-26 19:12 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-10-26 19:07 - 2015-10-26 19:12 - 00000000 ____D C:\Users\Heike und Achim\Desktop\mbar
2015-10-26 19:03 - 2015-10-26 19:04 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Heike und Achim\Desktop\tdsskiller.exe
2015-10-26 19:01 - 2015-10-26 19:02 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Heike und Achim\Desktop\mbar-1.09.3.1001.exe
2015-10-25 22:07 - 2015-10-25 22:07 - 00659968 _____ C:\Users\Heike und Achim\Downloads\MicrosoftFixit50195.msi
2015-10-25 18:43 - 2015-10-25 18:44 - 00060638 _____ C:\Users\Heike und Achim\Desktop\Addition.txt
2015-10-25 18:40 - 2015-10-29 20:44 - 00033866 _____ C:\Users\Heike und Achim\Desktop\FRST.txt
2015-10-25 18:40 - 2015-10-29 20:41 - 00000000 ____D C:\FRST
2015-10-25 18:37 - 2015-10-29 20:41 - 02198016 _____ (Farbar) C:\Users\Heike und Achim\Desktop\FRST64.exe
2015-10-24 11:26 - 2015-10-24 11:26 - 00002052 _____ C:\Users\Public\Desktop\Play Hidden Object - Home Makeover.lnk
2015-10-24 11:25 - 2015-10-24 11:26 - 00000000 ____D C:\Program Files (x86)\Hidden Object - Home Makeover
2015-10-24 11:25 - 2015-10-24 11:25 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hidden Object - Home Makeover
2015-10-24 11:25 - 2015-10-24 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hidden Object - Home Makeover
2015-10-24 11:22 - 2015-10-24 11:22 - 00002328 _____ C:\Users\Public\Desktop\Play Off the Record - The Final Interview Collectors Edition.lnk
2015-10-24 11:19 - 2015-10-24 11:22 - 00000000 ____D C:\Program Files (x86)\Off the Record - The Final Interview Collectors Edition
2015-10-24 11:19 - 2015-10-24 11:19 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Off the Record - The Final Interview Collectors Edition
2015-10-24 11:19 - 2015-10-24 11:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Off the Record - The Final Interview Collectors Edition
2015-10-23 18:44 - 2015-10-23 18:44 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\League of Light - Silent Mountain Strategy Guide
2015-10-21 20:25 - 2015-10-21 20:25 - 00003148 _____ C:\Windows\System32\Tasks\USER_ESRV_SVC
2015-10-21 20:25 - 2015-10-21 20:25 - 00002027 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk
2015-10-21 20:25 - 2015-10-21 20:25 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2015-10-21 20:25 - 2015-10-21 20:21 - 00029352 _____ C:\Windows\system32\Drivers\semav6msr64.sys
2015-10-21 20:25 - 2015-10-21 20:21 - 00010324 _____ C:\Windows\system32\Drivers\semav6msr64.cat
2015-10-21 16:59 - 2015-10-21 16:59 - 00001365 _____ C:\Users\Public\Desktop\Solitaire Halloween Story.lnk
2015-10-21 16:57 - 2015-10-21 16:58 - 40896936 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\SolitaireHalloweenStory.exe
2015-10-18 21:24 - 2015-10-18 21:27 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Islands2 realore intenium
2015-10-18 21:23 - 2015-10-18 21:23 - 00001233 _____ C:\Users\Public\Desktop\Island Tribe 2.lnk
2015-10-18 21:19 - 2015-10-18 21:21 - 122944696 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\IslandTribe2.exe
2015-10-16 19:41 - 2015-10-16 19:41 - 00003072 _____ C:\Users\Heike und Achim\AppData\Roaming\.spark_db
2015-10-16 15:33 - 2015-10-16 15:33 - 00000000 ____D C:\Users\Heike und Achim\AppData\LocalLow\Green Sauce Games
2015-10-16 15:30 - 2015-10-17 11:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-16 15:30 - 2015-10-16 16:36 - 00000000 ____D C:\Program Files (x86)\Forgotten Tales - Day of the Dead
2015-10-15 19:44 - 2015-10-16 20:19 - 00000000 ____D C:\Program Files (x86)\The Dreamatorium of Dr. Magnus 2
2015-10-15 19:38 - 2015-10-16 18:50 - 00000000 ____D C:\Program Files (x86)\Redemption Cemetery - Clock of Fate Collectors Edition
2015-10-15 16:18 - 2015-09-18 20:22 - 00025432 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-15 16:18 - 2015-09-18 20:19 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-15 16:18 - 2015-09-18 20:19 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-15 16:18 - 2015-09-18 20:19 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-15 16:18 - 2015-09-18 20:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-15 16:18 - 2015-09-18 20:19 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-15 16:18 - 2015-09-18 20:09 - 01163776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-14 17:43 - 2015-10-14 17:43 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\quickclick
2015-10-14 16:46 - 2015-09-11 08:59 - 17890816 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 16:46 - 2015-09-11 08:56 - 02349568 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 16:46 - 2015-09-11 08:52 - 10936832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 16:46 - 2015-09-11 08:51 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-10-14 16:46 - 2015-09-11 08:51 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-10-14 16:46 - 2015-09-11 08:50 - 02158080 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-10-14 16:46 - 2015-09-11 08:50 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-14 16:46 - 2015-09-11 08:50 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-10-14 16:46 - 2015-09-11 08:49 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-10-14 16:46 - 2015-09-11 08:49 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-10-14 16:46 - 2015-09-11 08:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-10-14 16:46 - 2015-09-11 08:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-10-14 16:46 - 2015-09-11 08:49 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-10-14 16:46 - 2015-09-11 08:22 - 01814016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-10-14 16:46 - 2015-09-11 08:21 - 12388352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-10-14 16:46 - 2015-09-11 08:19 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-10-14 16:46 - 2015-09-11 08:17 - 09751552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-10-14 16:46 - 2015-09-11 08:16 - 01139712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-10-14 16:46 - 2015-09-11 08:16 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-10-14 16:46 - 2015-09-11 08:15 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-10-14 16:46 - 2015-09-11 08:15 - 00422912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-10-14 16:46 - 2015-09-11 08:14 - 01804288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00718848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-10-14 16:46 - 2015-09-11 08:14 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-10-14 16:46 - 2015-09-11 08:14 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-10-14 16:46 - 2015-09-11 08:14 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-10-14 16:43 - 2015-10-01 19:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-10-14 16:43 - 2015-10-01 19:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-10-14 16:43 - 2015-10-01 19:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 16:43 - 2015-10-01 19:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-14 16:43 - 2015-10-01 19:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-14 16:43 - 2015-10-01 19:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-14 16:43 - 2015-10-01 19:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 16:43 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-10-14 16:43 - 2015-10-01 18:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-14 16:43 - 2015-09-29 04:16 - 05569472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 16:43 - 2015-09-29 04:13 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-14 16:43 - 2015-09-29 04:11 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-10-14 16:43 - 2015-09-29 04:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-10-14 16:43 - 2015-09-29 04:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-10-14 16:43 - 2015-09-29 04:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-10-14 16:43 - 2015-09-29 04:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-10-14 16:43 - 2015-09-29 04:11 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-10-14 16:43 - 2015-09-29 04:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-10-14 16:43 - 2015-09-29 04:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-10-14 16:43 - 2015-09-29 04:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-10-14 16:43 - 2015-09-29 04:10 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-10-14 16:43 - 2015-09-29 04:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-14 16:43 - 2015-09-29 04:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-10-14 16:43 - 2015-09-29 04:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-10-14 16:43 - 2015-09-29 04:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-10-14 16:43 - 2015-09-29 04:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-10-14 16:43 - 2015-09-29 04:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-10-14 16:43 - 2015-09-29 04:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-10-14 16:43 - 2015-09-29 04:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-10-14 16:43 - 2015-09-29 04:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-10-14 16:43 - 2015-09-29 04:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-10-14 16:43 - 2015-09-29 04:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-10-14 16:43 - 2015-09-29 04:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-10-14 16:43 - 2015-09-29 04:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-10-14 16:43 - 2015-09-29 04:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-10-14 16:43 - 2015-09-29 04:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-10-14 16:43 - 2015-09-29 04:02 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-10-14 16:43 - 2015-09-29 03:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-10-14 16:43 - 2015-09-29 03:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-10-14 16:43 - 2015-09-29 03:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-10-14 16:43 - 2015-09-29 03:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-10-14 16:43 - 2015-09-29 03:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-10-14 16:43 - 2015-09-29 03:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-10-14 16:43 - 2015-09-29 03:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-10-14 16:43 - 2015-09-29 03:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-10-14 16:43 - 2015-09-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-10-14 16:43 - 2015-09-29 03:57 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-10-14 16:43 - 2015-09-29 03:57 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-10-14 16:43 - 2015-09-29 03:57 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-10-14 16:43 - 2015-09-29 03:57 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-10-14 16:43 - 2015-09-29 03:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-10-14 16:43 - 2015-09-29 03:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 02:50 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-10-14 16:43 - 2015-09-29 02:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-10-14 16:43 - 2015-09-29 02:49 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-10-14 16:43 - 2015-09-29 02:43 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-10-14 16:43 - 2015-09-29 02:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-10-14 16:43 - 2015-09-29 02:40 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 02:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 02:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-10-14 16:43 - 2015-09-29 02:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-10-14 16:43 - 2015-09-15 19:17 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-10-14 16:43 - 2015-09-15 19:17 - 00097112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-10-14 16:43 - 2015-09-15 19:11 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-10-14 16:43 - 2015-09-15 19:11 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-10-14 16:43 - 2015-09-15 19:11 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-10-14 16:43 - 2015-09-15 19:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-10-14 16:43 - 2015-09-15 19:11 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-10-14 16:43 - 2015-09-15 19:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-10-14 16:43 - 2015-09-15 19:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-10-14 16:43 - 2015-09-15 18:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-10-14 16:43 - 2015-09-15 18:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-10-14 16:43 - 2015-09-15 18:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-10-14 16:43 - 2015-09-15 18:35 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-10-14 16:43 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 16:43 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-14 16:43 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-10-14 16:43 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-10-14 16:42 - 2015-09-25 19:07 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-10-14 16:42 - 2015-09-25 19:07 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-14 16:42 - 2015-09-25 19:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-10-14 16:42 - 2015-09-25 19:07 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-10-14 16:42 - 2015-09-25 19:07 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-10-14 16:42 - 2015-09-25 19:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-10-14 16:42 - 2015-09-25 19:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-10-14 16:42 - 2015-09-25 19:06 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-10-14 16:42 - 2015-09-25 19:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-10-14 16:42 - 2015-09-25 19:06 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-10-14 16:42 - 2015-09-25 19:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-10-14 16:42 - 2015-09-25 18:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-10-14 16:42 - 2015-09-25 18:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-10-14 16:42 - 2015-09-25 18:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-10-14 16:42 - 2015-09-25 18:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-10-14 16:42 - 2015-09-25 18:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-10-14 16:42 - 2015-07-18 14:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 16:42 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-13 16:51 - 2015-10-13 16:57 - 94066280 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\TravelRiddlesTripToItaly.exe
2015-10-12 16:50 - 2015-10-12 16:53 - 00000000 ____D C:\Program Files (x86)\12 Labours of Hercules IV - Mother Nature
2015-10-11 13:58 - 2015-10-11 13:58 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\LostAmuletsStoneGarden
2015-10-11 11:53 - 2015-10-11 11:53 - 00000717 _____ C:\Users\Heike und Achim\Downloads\Win10ZwangsDL.zip
2015-10-11 11:14 - 2015-10-11 19:22 - 00000000 ____D C:\Program Files (x86)\Mystery Crusaders - Resurgence of the Templars Collectors Edition
2015-10-11 11:01 - 2015-10-16 22:13 - 00000000 ____D C:\Program Files (x86)\Midnight Calling - Anabel Collectors Edition
2015-10-11 10:46 - 2015-10-11 14:53 - 00000000 ____D C:\Program Files (x86)\Lost Amulets - Stone Garden
2015-10-10 09:59 - 2015-10-10 09:59 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Magic Match
2015-10-09 22:24 - 2015-10-09 22:26 - 130119280 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\AladinsWunderlampe.exe
2015-10-09 22:18 - 2015-10-09 22:21 - 00000000 _____ C:\Users\Heike und Achim\Downloads\CaribbeanRiddle.exe
2015-10-09 18:06 - 2015-10-12 18:53 - 00000000 ____D C:\Program Files (x86)\Haunted Hotel - Phoenix
2015-10-08 19:35 - 2015-10-08 19:35 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\fantasy_mosaics_10
2015-10-08 19:34 - 2015-10-08 21:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fantasy Mosaics 10 - Time Travel
2015-10-07 22:09 - 2015-10-07 22:09 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\GWX
2015-10-07 20:09 - 2015-10-07 20:09 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\fantasy_mosaics_11_iwin
2015-10-07 18:20 - 2015-10-07 18:22 - 46098934 _____ C:\Users\Heike und Achim\Downloads\11786663_878788578861876_285410985_n.mp4(1).mp4
2015-10-06 21:51 - 2015-10-06 21:51 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Oracle
2015-10-04 12:57 - 2015-10-04 13:02 - 329789864 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\MeineKleineFarmHauRuck.exe
2015-10-04 11:05 - 2015-10-04 11:07 - 62939664 _____ (INTENIUM GmbH) C:\Users\Heike und Achim\Downloads\GriddlersStrandsaison.exe
2015-10-04 10:32 - 2015-10-04 10:33 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\RedPanda
2015-10-03 17:59 - 2015-10-03 17:59 - 02048992 _____ C:\Users\Heike und Achim\Downloads\httpsvideo-bru2-1.xx.fbcdn.nethvideo-xpt1vt43.1792-211997595_881816798568214_2676633_n.mp4efg=eyJybHIiOjE1NTIsInJsYSI6MTAyNCwidmVuY29kZV90YWciOiJoZCJ9&rl=1552&vabr=1035&oh=820ed8dc4c6bd27d187928b523d08761&oe=561031E8.mp4
2015-09-30 17:44 - 2015-10-19 20:50 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Cateia Games
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-29 20:29 - 2012-04-02 16:29 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-29 20:28 - 2010-12-05 10:35 - 01749824 _____ C:\Windows\WindowsUpdate.log
2015-10-29 20:17 - 2014-02-11 23:09 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf2775ef6295e7.job
2015-10-29 19:38 - 2014-04-18 15:40 - 00001091 _____ C:\Users\Public\Desktop\GAME CENTER.lnk
2015-10-29 19:38 - 2013-02-22 22:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DEUTSCHLAND SPIELT
2015-10-29 19:38 - 2012-07-02 18:12 - 00000000 ____D C:\Program Files (x86)\DEUTSCHLAND SPIELT
2015-10-29 19:20 - 2010-12-05 10:46 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{CC221A39-85F4-4CDD-BC0D-616AC92F41A3}
2015-10-29 18:51 - 2013-09-01 11:19 - 00004640 _____ C:\Windows\wininit.ini
2015-10-29 18:51 - 2011-01-25 18:01 - 00000000 ____D C:\ProgramData\TEMP
2015-10-29 18:51 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-10-29 17:17 - 2009-07-14 05:45 - 00013872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-29 17:17 - 2009-07-14 05:45 - 00013872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-29 17:04 - 2010-07-31 00:24 - 00645354 _____ C:\Windows\system32\perfh007.dat
2015-10-29 17:04 - 2010-07-31 00:24 - 00130892 _____ C:\Windows\system32\perfc007.dat
2015-10-29 17:04 - 2009-07-14 06:13 - 01516610 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-28 23:17 - 2010-07-30 14:50 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-28 22:43 - 2015-02-10 18:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-10-28 22:29 - 2010-12-05 10:33 - 00097960 _____ C:\Users\Heike und Achim\AppData\Local\GDIPFONTCACHEV1.DAT
2015-10-28 22:26 - 2009-07-14 05:45 - 00369752 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-28 22:24 - 2013-02-03 20:21 - 00380601 _____ C:\Windows\setupact.log
2015-10-28 22:24 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-28 22:23 - 2013-02-03 20:58 - 00478102 _____ C:\Windows\PFRO.log
2015-10-28 22:18 - 2009-07-14 03:34 - 00000471 _____ C:\Windows\win.ini
2015-10-28 20:23 - 2010-07-30 14:35 - 00000000 ____D C:\Program Files\Common Files\mcafee
2015-10-28 18:40 - 2013-07-08 21:29 - 00000000 ____D C:\BigFishCache
2015-10-28 18:27 - 2015-07-29 18:13 - 00000000 ____D C:\Users\Heike und Achim\AppData\Local\GamesManager
2015-10-27 22:37 - 2009-07-14 03:34 - 00000855 _____ C:\Windows\system32\Drivers\etc\hosts_bak_356
2015-10-27 20:56 - 2014-07-02 19:15 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-27 20:46 - 2011-01-13 00:00 - 00007639 _____ C:\Users\Heike und Achim\AppData\Local\Resmon.ResmonCfg
2015-10-27 19:06 - 2012-12-17 17:04 - 00000000 ____D C:\ProgramData\MDM
2015-10-26 22:11 - 2010-12-06 22:23 - 00000000 ____D C:\Users\Heike und Achim\Documents\2_Tabellen
2015-10-26 19:28 - 2010-07-30 14:35 - 00000000 ____D C:\ProgramData\McAfee
2015-10-26 19:07 - 2014-07-02 19:14 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-10-25 21:28 - 2014-06-16 18:44 - 00000020 ____H C:\ProgramData\PKP_DLbx.DAT
2015-10-25 15:35 - 2013-05-12 10:23 - 00030774 _____ C:\Windows\LkmdfCoInst.log
2015-10-25 15:35 - 2010-12-05 13:48 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2015-10-24 15:18 - 2012-11-07 19:19 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Mad Head Games
2015-10-24 09:54 - 2012-01-27 16:32 - 00585216 ___SH C:\Users\Heike und Achim\Documents\Thumbs.db
2015-10-23 21:12 - 2012-08-10 13:23 - 00000000 ____D C:\ProgramData\DailyMagic
2015-10-23 21:12 - 2011-12-09 16:29 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\DailyMagic
2015-10-23 18:14 - 2011-07-28 17:12 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Mariaglorum
2015-10-23 16:08 - 2011-07-23 14:38 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Elephant Games
2015-10-23 14:59 - 2014-10-26 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-23 14:57 - 2015-08-31 16:30 - 00000000 ____D C:\Users\Heike und Achim\.oracle_jre_usage
2015-10-23 14:55 - 2015-01-26 23:02 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-10-23 14:54 - 2014-10-26 21:57 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-22 19:51 - 2014-12-09 19:11 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Happy Empire
2015-10-21 20:26 - 2010-12-05 11:53 - 00000000 ____D C:\Update
2015-10-21 20:25 - 2010-07-30 14:36 - 00000000 ____D C:\Program Files (x86)\Sony
2015-10-21 20:24 - 2011-01-18 07:04 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation
2015-10-21 20:24 - 2010-07-30 14:37 - 00000000 ____D C:\Program Files\Sony
2015-10-21 19:56 - 2012-09-09 21:35 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Eipix
2015-10-19 17:32 - 2012-08-08 08:46 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\DominiGames
2015-10-17 18:53 - 2011-07-23 21:46 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Vast Studios
2015-10-17 11:58 - 2014-07-02 19:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2015-10-17 11:58 - 2014-07-02 19:14 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2015-10-17 11:58 - 2012-06-10 15:16 - 00001062 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-10-17 11:42 - 2012-07-11 19:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-16 20:29 - 2012-04-02 16:29 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-10-16 20:29 - 2012-04-02 16:29 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-10-16 20:29 - 2011-05-16 19:53 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-16 19:42 - 2014-11-01 15:51 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Two Desperados
2015-10-16 18:18 - 2011-04-15 18:55 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\ERS Game Studios
2015-10-15 19:46 - 2014-11-27 18:51 - 00000000 ____D C:\Users\Heike und Achim\AppData\LocalLow\Seven Sails Ltda
2015-10-15 17:10 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2015-10-15 16:19 - 2015-04-15 17:40 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-15 16:19 - 2015-04-15 17:40 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-14 19:13 - 2012-09-04 21:20 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\8floor
2015-10-14 17:18 - 2013-07-22 02:01 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 17:18 - 2010-12-05 11:16 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 16:58 - 2010-12-05 11:35 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-13 17:27 - 2013-08-16 19:34 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-13 17:24 - 2015-01-06 17:32 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-12 17:11 - 2011-08-11 22:25 - 00000000 ____D C:\ProgramData\PuzzlesByJoe
2015-10-11 18:47 - 2011-11-13 21:29 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\ChaYoWo Games
2015-10-11 16:32 - 2012-10-31 20:24 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Rumbic Studio
2015-10-11 11:55 - 2012-07-18 18:18 - 00000318 _____ C:\Users\Heike und Achim\Desktop\Nachbar.txt
2015-10-09 19:50 - 2015-08-28 20:32 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\AlawarEntertainment
2015-10-05 08:50 - 2014-07-02 19:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-10-05 08:50 - 2012-06-10 15:15 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-10-04 16:14 - 2011-12-26 22:03 - 00000000 ____D C:\Users\Heike und Achim\AppData\Roaming\Absolutist
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-10-16 19:41 - 2015-10-16 19:41 - 0003072 _____ () C:\Users\Heike und Achim\AppData\Roaming\.spark_db
2014-06-11 20:31 - 2015-05-03 16:24 - 0000268 ___RH () C:\Users\Heike und Achim\AppData\Roaming\Galaxy Swirl
2014-06-11 20:31 - 2015-05-03 16:24 - 0000268 ___RH () C:\Users\Heike und Achim\AppData\Roaming\Generic
2015-02-25 17:50 - 2015-02-25 17:50 - 0000000 _____ () C:\Users\Heike und Achim\AppData\Roaming\log.txt
2014-06-16 18:48 - 2014-06-16 18:48 - 0000268 ___RH () C:\Users\Heike und Achim\AppData\Roaming\Pedal Hard
2011-09-26 17:48 - 2011-09-26 21:33 - 0000523 _____ () C:\Users\Heike und Achim\AppData\Roaming\prefsdb.dat
2011-01-07 19:22 - 2011-01-07 19:40 - 0000154 _____ () C:\Users\Heike und Achim\AppData\Roaming\Rim.Desktop.Exception.log
2011-01-07 19:20 - 2011-01-07 19:20 - 0001149 _____ () C:\Users\Heike und Achim\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2013-04-18 20:30 - 2013-04-18 21:29 - 0247455 _____ () C:\Users\Heike und Achim\AppData\Roaming\SolitaireTwistCollection_save.txt
2011-01-06 19:57 - 2014-05-22 21:36 - 0007680 _____ () C:\Users\Heike und Achim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-06 18:27 - 2014-12-06 18:27 - 0020955 _____ () C:\Users\Heike und Achim\AppData\Local\recently-used.xbel
2011-01-13 00:00 - 2015-10-27 20:46 - 0007639 _____ () C:\Users\Heike und Achim\AppData\Local\Resmon.ResmonCfg
2012-05-22 22:35 - 2012-05-22 22:36 - 0013410 _____ () C:\Users\Heike und Achim\AppData\Local\slot1.mm1
2012-04-27 18:48 - 2012-04-27 18:54 - 0003396 _____ () C:\ProgramData\dscraneg_save.log
2015-05-03 16:24 - 2015-05-03 16:24 - 0000268 ___RH () C:\ProgramData\Grapher
2015-05-03 16:24 - 2015-05-03 16:24 - 0000268 ___RH () C:\ProgramData\Guides
2010-12-05 13:33 - 2014-12-01 18:46 - 0000952 ___SH () C:\ProgramData\KGyGaAvL.sys
2014-06-16 18:48 - 2014-06-16 18:48 - 0000268 ___RH () C:\ProgramData\Phaser
2014-06-16 18:44 - 2015-10-25 21:28 - 0000020 ____H () C:\ProgramData\PKP_DLbx.DAT
2014-06-11 20:35 - 2015-05-03 16:15 - 0000000 ____H () C:\ProgramData\PKP_DLes.DAT
2014-06-11 20:31 - 2015-05-03 16:24 - 0000020 ____H () C:\ProgramData\PKP_DLet.DAT
2014-06-11 20:31 - 2015-05-03 16:24 - 0000020 ____H () C:\ProgramData\PKP_DLev.DAT
2013-10-24 20:53 - 2013-10-24 21:20 - 0000150 _____ () C:\ProgramData\zen_msave.log
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Heike und Achim\grub.exe
C:\Users\Heike und Achim\rescue2usb.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-10-24 15:45
==================== Ende von FRST.txt ============================
|
|
29.10.2015, 20:58
| #14 |
| | IE-Explorer funktioniert nicht mehr addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-10-2015
durchgeführt von Heike und Achim (2015-10-29 20:47:00)
Gestartet von C:\Users\Heike und Achim\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2010-12-05 09:33:45)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-458901301-3535109335-729799517-500 - Administrator - Disabled)
Gast (S-1-5-21-458901301-3535109335-729799517-501 - Limited - Disabled)
Heike (S-1-5-21-458901301-3535109335-729799517-1003 - Limited - Enabled) => C:\Users\Heike
Heike und Achim (S-1-5-21-458901301-3535109335-729799517-1000 - Administrator - Enabled) => C:\Users\Heike und Achim
HomeGroupUser$ (S-1-5-21-458901301-3535109335-729799517-1002 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
12 Labours of Hercules IV - Mother Nature (HKLM-x32\...\12 Labours of Hercules IV - Mother Nature) (Version: 1.0.0.0 - iWin.com)
7-Zip 9.16 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0916-000001000000}) (Version: 9.16.00.0 - Igor Pavlov)
7-Zip 9.21 (HKLM-x32\...\{23170F69-40C1-2701-0921-000001000000}) (Version: 9.21.00.0 - Igor Pavlov)
Adelantado Trilogy: Book One (HKLM-x32\...\BFG-Adelantado Trilogy - Book One) (Version: - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Adobe Download Manager (HKLM-x32\...\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}) (Version: 1.6.2.103 - NOS Microsystems Ltd.)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Photoshop Elements 8.0 (HKLM-x32\...\Adobe Photoshop Elements 8.0) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 8.0 (HKLM-x32\...\PremElem80) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - ALPS ELECTRIC CO., LTD.)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Another Case Solved (HKLM-x32\...\BFG-Another Case Solved) (Version: - )
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{7BB90344-0647-468E-925A-7F69F7983421}) (Version: 2.0.1.115 - ArcSoft)
ArcSoft WebCam Companion 3 (HKLM-x32\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.390 - ArcSoft)
ATI Catalyst Install Manager (HKLM\...\{5BC83141-83DD-07BE-C940-04B385540F04}) (Version: 3.0.769.0 - ATI Technologies, Inc.)
Audiograbber 1.83 SE (HKLM-x32\...\Audiograbber) (Version: 1.83 SE - Audiograbber)
Audiograbber MP3-Plugin (HKLM-x32\...\Audiograbber-Lame) (Version: 1.0 - AG)
Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.8.9045 - )
Big Fish: Game Manager (HKLM-x32\...\BFGC) (Version: 3.3.0.2 - )
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
BlackBerry Desktop Software 6.0.1 (HKLM-x32\...\BlackBerry_Desktop) (Version: 6.0.1.18 - Research in Motion Ltd.)
BlackBerry Desktop Software 6.0.1 (x32 Version: 6.0.1.18 - Research in Motion Ltd.) Hidden
Build-a-lot World (HKLM-x32\...\BFG-Build-a-lot World) (Version: - )
Capture NX 2 (HKLM\...\Capture NX 2) (Version: 2.4.7 - NIKON CORPORATION)
Capture NX-D (HKLM\...\{794529D3-D489-4CF2-B2ED-CF241809E5EC}) (Version: 1.2.0 - Nikon)
ccc-core-static (x32 Version: 2010.0920.2143.37117 - Ihr Firmenname) Hidden
CDDRV_Installer (Version: 4.60 - Logitech) Hidden
Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.0.6.166 - Corel Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Parables: Der Fluch des Froschkönigs - Sammleredition (HKLM-x32\...\BFG-Dark Parables - Der Fluch des Froschkoenigs - Sammleredition) (Version: - )
DEUTSCHLAND SPIELT GAME CENTER (HKLM-x32\...\DSGPlayer) (Version: 2.4.2.14 - INTENIUM GmbH)
doPDF 7.2 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
EMET (HKLM-x32\...\{DE7A5DDF-47B3-42FF-A082-E158DEA37392}) (Version: 3.0.0 - Microsoft)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Evernote (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 3.5.4.2224 - Evernote Corp.)
Farm Frenzy Inc. (HKLM-x32\...\BFG-Farm Frenzy Inc.) (Version: - )
Fill and Cross: Trick or Treat 2 (HKLM-x32\...\BFG-Fill and Cross - Trick or Treat 2) (Version: - )
Fishdom: Frosty Splash (HKLM-x32\...\Fishdom: Frosty Splash) (Version: - iWin.com)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Free Video to MP3 Converter version 5.0.20.1031 (HKLM-x32\...\Free Video to MP3 Converter_is1) (Version: 5.0.20.1031 - DVDVideoSoft Ltd.)
Free WebM Video Converter version 5.0.33.213 (HKLM-x32\...\Free WebM Video Converter_is1) (Version: 5.0.33.213 - DVDVideoSoft Ltd.)
Games Manager (HKU\S-1-5-21-458901301-3535109335-729799517-1000\...\GamesManager) (Version: 2.1.30.205 - iWin Inc.)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Halloweenrätsel: Nonogramme (HKLM-x32\...\Halloweenrätsel: Nonogramme) (Version: 0.0.0.0 - INTENIUM GmbH)
Hidden Object: Home Makeover (HKLM-x32\...\BFG-Hidden Object - Home Makeover) (Version: - )
inSSIDer (HKLM-x32\...\{F8A10A25-D8DD-4661-9A1E-7F6DBAAA3C5E}) (Version: 2.1.5 - MetaGeek)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.02.00.1002 - Intel Corporation)
Internet Manager (HKLM-x32\...\Internet Manager) (Version: 22.001.19.05.55 - Huawei Technologies Co.,Ltd)
Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Island Tribe 2 (HKLM-x32\...\Island Tribe 2) (Version: 0.0.0.0 - INTENIUM GmbH)
Island Tribe 4 (HKLM-x32\...\Island Tribe 4) (Version: - iWin.com)
Island Tribe 5 (HKLM-x32\...\BFG-Island Tribe 5) (Version: - )
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KhalInstallWrapper (Version: 4.72.40 - Logitech) Hidden
Kingdom Chronicles Sammleredition (HKLM-x32\...\BFG-Kingdom Chronicles Sammleredition) (Version: - )
Logitech SetPoint 6.32 (HKLM\...\sp6) (Version: 6.32.20 - Logitech)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
M-Budget Data Manager 1.1.0 (HKLM-x32\...\{DE9A9FFD-2282-487A-9D26-8B3DD7B35C0B}) (Version: 1.1.21186.0 - M-Budget)
McAfee Internet Security (HKLM-x32\...\MSC) (Version: 14.0.5120 - McAfee, Inc.)
McAfee Virtual Technician (HKLM-x32\...\McAfee Virtual Technician) (Version: 7.6.0.202 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.184 - McAfee, Inc.)
Media Gallery (Version: 1.4.0.11300 - Your Company Name) Hidden
Mein CEWE FOTOBUCH (HKLM-x32\...\Mein CEWE FOTOBUCH) (Version: 5.1.7 - CEWE Stiftung u Co. KGaA)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d07b0db5-8dad-40e1-be90-88026298a46b}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{2749c485-3a8b-4533-92ff-7cf6e8221cff}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Moai: Build Your Dream (HKLM-x32\...\Moai: Build Your Dream) (Version: 1.0.0.341 - iWin.com)
Monument Builders - The Big Apple - Double Pack (HKLM-x32\...\510009725) (Version: - Oberon Media)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 41.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 de)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
My Kingdom for the Princess Value Pack (HKLM-x32\...\510009795) (Version: - Oberon Media)
myphotobook.de (HKLM-x32\...\de.myphotobook.creator.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1) (Version: 1.2.2-588 - myphotobook GmbH)
myphotobook.de (x32 Version: 1.2.2 - myphotobook GmbH) Hidden
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.1 - Nikon)
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
Nokia PC Suite (x32 Version: 7.1.180.94 - Nokia) Hidden
Nokia Software Updater (HKLM-x32\...\{7130468A-F53F-4698-8C09-A339EA3B05E6}) (Version: 3.0.655 - Nokia Corporation)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.7.22.0 - Nokia)
Nokia Suite (x32 Version: 3.7.22.0 - Nokia) Hidden
Northern Tale (HKLM-x32\...\BFG-Northern Tale) (Version: - )
Northern Tale 4 (HKLM-x32\...\BFG-Northern Tale 4) (Version: - )
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
NVIDIA PhysX (HKLM-x32\...\{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}) (Version: 9.12.0613 - NVIDIA Corporation)
Off the Record: The Final Interview Collector's Edition (HKLM-x32\...\BFG-Off the Record - The Final Interview Collectors Edition) (Version: - )
OnlineFotoservice (HKLM-x32\...\OnlineFotoservice) (Version: 6.0.4 - CEWE Stiftung u Co. KGaA)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Picture Control Utility 2 (HKLM\...\{D4893C47-704F-4B84-8486-9DE4974ACA6F}) (Version: 2.1.0 - Nikon)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.1 - Nikon)
PlayMemories Home Plug-in (Version: 2.0.00.14170 - Sony Corporation) Hidden
PlayMemories Home/PMB VAIO Edition Plug-in 3D Theme Data (x32 Version: 1.0.00.16130 - Sony Corporation) Hidden
PlayMemories Home/PMB VAIO Edition Plug-in Ver.2.2 Upgrade Program (x32 Version: 2.2.00.18250 - Sony Corporation) Hidden
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.6.02.06173 - Sony Corporation)
PMB VAIO Edition Guide (x32 Version: 1.5.00.03020 - Sony Corporation) Hidden
Quick Web Access (HKLM-x32\...\splashtop) (Version: 1.4.7.0 - Sony Corporation)
Quick Web Access (x32 Version: 1.4.7.0 - Sony Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6098 - Realtek Semiconductor Corp.)
Remote Play mit PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.0.2.06212 - Sony Corporation)
Remote Play with PlayStation 3 (x32 Version: 1.0.2.06210 - Sony Corporation) Hidden
Remote-Tastatur mit PlayStation 3 (HKLM-x32\...\{65B138AE-F636-4D4C-BA5D-A06E21E47C53}) (Version: 1.0.2.06170 - Sony Corporation)
Roads of Rome 3 (HKLM-x32\...\Roads of Rome 3) (Version: 1.0.0.0 - iWin.com)
Royal Envoy 2 (HKLM-x32\...\Royal Envoy 2) (Version: - iWin.com)
Save Halloween: Die Stadt der Hexen (HKLM-x32\...\Save Halloween: Die Stadt der Hexen) (Version: 0.0.0.0 - INTENIUM GmbH)
Secunia PSI (3.0.0.7011) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.7011 - Secunia)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SmartSound Quicktracks for Premiere Elements 8.0 (HKLM-x32\...\InstallShield_{4685A344-6718-4923-AA9D-158A0A2E1CFB}) (Version: 3.11.3090 - SmartSound Software Inc)
SmartSound Quicktracks for Premiere Elements 8.0 (x32 Version: 3.11.3090 - SmartSound Software Inc) Hidden
Solitaire Halloween Story (HKLM-x32\...\Solitaire Halloween Story) (Version: 0.0.0.0 - INTENIUM GmbH)
Sunrise T@KE AWAY (HKLM-x32\...\Sunrise T@KE AWAY ALCATEL_is1) (Version: - Alcatel)
Surface: Alone in the Mist (HKLM-x32\...\BFG-Surface - Alone in the Mist) (Version: - )
Tibetan Quest: Beyond the World's End Collector's Edition (HKLM-x32\...\BFG-Tibetan Quest - Beyond the Worlds End Collectors Edition) (Version: - )
VAIO - Media Gallery (HKLM-x32\...\{D9670A80-DED7-44FE-9B8C-94CEA3F7E035}) (Version: 1.4.1.12150 - Sony Corporation)
VAIO - PlayMemories Home Plug-in (HKLM-x32\...\InstallShield_{F9395F3D-4198-476C-8C41-63D0B5B51E35}) (Version: 2.2.00.18250 - Sony Corporation)
VAIO - PMB VAIO Edition Guide (HKLM-x32\...\InstallShield_{339F9B4D-00CB-4C1C-BED8-EC86A9AB602A}) (Version: 1.5.00.03020 - Sony Corporation)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.1.3.06230 - Sony Corporation)
VAIO Care (HKLM\...\{6EEC3E9C-3479-42EB-B93C-E7DF7927DD82}) (Version: 8.4.4.09181 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{6ED1750E-F44F-4635-8F0D-B76B9262B7FB}) (Version: 1.1.1.13230 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.3.0.05310 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.4.0.05240 - Sony Corporation)
VAIO Data Restore Tool (x32 Version: 1.4.0.05240 - Sony Corporation) Hidden
VAIO DVD Menu Data (HKLM-x32\...\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}) (Version: 3.1.00.16130 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.4.1.09230 - Sony Corporation)
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.2.0.07020 - Sony Corporation)
VAIO Hardware Diagnostics (x32 Version: 4.0.0.06230 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}) (Version: 2.1.0.18210 - Sony Corporation)
VAIO Media plus (Version: 2.1.0 - Sony Corporation) Hidden
VAIO Media plus (x32 Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus Opening Movie (HKLM-x32\...\{9238E8A4-BEBA-43A3-B926-769BDBF194C5}) (Version: 2.1.0.13220 - Sony Corporation)
VAIO Movie Story Template Data (HKLM-x32\...\InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 3.1.00.16130 - Sony Corporation)
VAIO Movie Story Template Data (x32 Version: 2.3.00.06040 - Sony Corporation) Hidden
VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.3.0.06041 - Sony Corporation)
VAIO screensaver (HKLM-x32\...\VAIO screensaver) (Version: 1.0.0.0 - Sony Europe)
VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.3.0.06080 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.1.0.08060 - Sony Corporation)
VAIO-Handbuch (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.1.0.05280 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.2.0.06230 - Sony Corporation)
ViewNX-i (HKLM\...\{C67A5551-26C1-4C7B-A9DF-AD148549D482}) (Version: 1.0.0 - Nikon Corporation)
Viking Saga: New World (HKLM-x32\...\BFG-Viking Saga - New World) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.5600 - Broadcom Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows-Treiberpaket - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Windows-Treiberpaket - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinPatrol (HKLM\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 32.0.2014.5 - Ruiware)
Wizard Land (HKLM-x32\...\Wizard Land) (Version: 1.0.0.0 - iWin.com)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
20-10-2015 16:45:52 Windows Update
27-10-2015 17:43:29 Windows Update
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2015-10-28 22:18 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0153321C-5395-44B8-924E-6CB8FCE538C3} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2014-06-17] (Sony Corporation)
Task: {02468066-FA1E-47BE-ACF6-368F3F7C1FC3} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate Restart => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2011-09-23] (Sony Corporation)
Task: {0286B20A-77D9-47B4-AB2F-6512F708EF79} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {0CE08D01-C1AD-4A77-9B1E-D23076E74532} - System32\Tasks\{BE17F724-7CDC-4A8D-9E2E-98ACAA8D2ECB} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.7.0.102&LastError=12002
Task: {0D9538B1-4160-4302-ACA5-5463D37C02B1} - System32\Tasks\{65A85751-C32B-4B39-B724-4F78BAC25BF6} => pcalua.exe -a "C:\Users\Heike und Achim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ANU9A2DD\JewelQuestTheSapphireDragon.exe" -d "C:\Users\Heike und Achim\Desktop"
Task: {10FC93C0-1F97-4A91-9179-3288437C02AB} - System32\Tasks\Sony Corporation\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2011-09-23] (Sony Corporation)
Task: {13B9B4D4-CA1C-4F94-BADD-07DB715ABB2E} - System32\Tasks\{88D59A0C-1120-491F-889A-67747405D145} => pcalua.exe -a "C:\Users\Heike und Achim\Downloads\EgyptDasGeheimnisDerFuenfGoetter.exe" -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {2B2990CF-CA0D-4C6F-8B78-BA9F066D0D2E} - System32\Tasks\{9CE80A24-6DD4-4184-B0BE-660D99D2B9AC} => pcalua.exe -a "C:\Program Files (x86)\bfgclient\Uninstall.exe"
Task: {33CB9599-B2AE-4198-9B69-114F69261B90} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {35183DB8-67BB-4E07-86A4-CE5AA0A57041} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {36939516-E090-4DAA-927C-C9CDB7061C21} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {3A2D118B-7497-49FB-9158-98DE9AEB1644} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {4DDF4072-1CB6-4C06-9CB4-5E5399817C32} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {51189B9B-59B1-4FE4-B092-6411E41E36ED} - System32\Tasks\Sony Corporation\VAIO Personalization Manager\VpmLM Task Music Heike und Achim => C:\Program Files\Sony\VAIO Personalization Manager\VpmLM.exe [2010-11-05] (Sony Corporation)
Task: {58855C42-DB17-4AF6-BBD0-BB8C9CCAFB37} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {5A0CE9D2-5906-4B94-A0F8-98D41AB7EC79} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {60F5965F-DF2B-4DFF-8646-15ACE66DF9E3} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {65BC6981-5157-47DE-B71C-ED4DD87A99DB} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2015-07-31] (Sony Corporation)
Task: {6645991C-D34E-4AFC-9C6F-8BD4FCC91711} - System32\Tasks\SONY\SUS-BCF\Level4Daily => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {6A14BD54-29F6-4C52-A663-5A37EE8CDE3B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-16] (Adobe Systems Incorporated)
Task: {6F6B4677-F07F-4815-BC52-7389CE2C196B} - System32\Tasks\USER_ESRV_SVC => Wscript.exe //B //NoLogo "C:\Program Files\Sony\VAIO Care\ESRV\task.vbs"
Task: {7D783C01-F606-4330-9620-702AA6CF48A0} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {8076EC38-67DA-4398-A532-26B54FC5C521} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-10-06] (Oracle Corporation)
Task: {887E1102-3826-4765-8407-9EEA6F3EE000} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2015-07-23] (Sony Corporation)
Task: {88D3BB03-19FC-4A2E-8C47-80CEE39FD1E2} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2011-09-23] (Sony Corporation)
Task: {89B8D83E-36AB-4695-9220-3707B72E12D6} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {94198144-3ED0-4BBF-ADBA-09C226A93D64} - System32\Tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool => C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe
Task: {A7999AD0-75E6-4AE3-9A59-492A1921BA1F} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {B115446C-6FED-4EB0-9B94-AA67260C3A55} - System32\Tasks\SONY\SUS-BCF\Level4Month => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {B1C01ECD-7D81-4B19-A392-B9A1B7F7987D} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2015-08-06] (Sony Corporation)
Task: {DBEE30ED-92A4-4CE1-8A3D-EBD8BC402681} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E22D39B9-ACDA-4594-8A3B-CA1AAB16AEF4} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {E87332A6-56F0-4003-85D1-21691B2E4ED5} - System32\Tasks\GoogleUpdateTaskMachineUA1cf2775ef6295e7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {ECCB41C5-B6E3-4A24-8682-CC02D5640972} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
Task: {EEF4E9D7-3463-42CF-B543-CFA9FFF0A714} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2015-02-04] (Sony Corporation)
Task: {F375AD5D-1D42-4A57-963E-0979A48A970E} - System32\Tasks\SONY\Remote Keyboard with PlayStation 3\Remote Keyboard with PlayStation 3 => C:\Program Files\Sony\Remote Keyboard with PlayStation 3\VBTKBUtil.exe [2010-06-17] (Sony Corporation)
Task: {F5955A46-3129-4F84-A9DB-A8F3EFCBA2E0} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {F8993F20-367C-4C4E-BC6F-FB1D49E5AB47} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2015-08-20] (Sony Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf2775ef6295e7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-03-13 21:00 - 2010-06-17 16:09 - 00040960 _____ () C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe
2014-01-15 04:42 - 2014-01-15 04:42 - 00351824 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2015-06-13 09:40 - 2014-04-26 07:15 - 00682064 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe
2011-10-07 10:39 - 2011-10-07 10:39 - 01304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
2013-05-22 19:50 - 2013-05-22 19:50 - 00400704 _____ () C:\Users\Heike und Achim\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
2013-03-13 21:00 - 2010-06-22 14:29 - 00098304 _____ () C:\Program Files (x86)\Sunrise T@KE AWAY\ModemListener.exe
2015-08-26 12:06 - 2015-08-26 12:06 - 00458904 _____ () C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
2015-08-26 12:06 - 2015-08-26 12:06 - 00709272 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_modeler.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00185496 _____ () C:\Program Files\Sony\VAIO Care\ESRV\foreground_window_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00413336 _____ () C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
2015-08-26 12:06 - 2015-08-26 12:06 - 00130712 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_process_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00025752 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_system_power_state_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00059544 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_quality_and_reliability_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00194712 _____ () C:\Program Files\Sony\VAIO Care\ESRV\acpi_battery_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00159896 _____ () C:\Program Files\Sony\VAIO Care\ESRV\sema_thermal_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00158360 _____ () C:\Program Files\Sony\VAIO Care\ESRV\wifi_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00050840 _____ () C:\Program Files\Sony\VAIO Care\ESRV\devices_use_input.dll
2015-08-26 12:06 - 2015-08-26 12:06 - 00032920 _____ () C:\Program Files\Sony\VAIO Care\ESRV\intel_disktrace_input.dll
2010-08-24 14:39 - 2010-08-24 14:39 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-01-06 22:49 - 2011-01-06 22:49 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-09-18 08:53 - 2015-09-18 08:53 - 00245912 _____ () C:\Program Files\Sony\VAIO Care\analyzer.dll
2014-03-05 22:44 - 2014-03-05 22:44 - 04598048 _____ () C:\Program Files (x86)\bfgclient\bfgclient.exe
2015-06-13 09:40 - 2013-08-16 07:53 - 00011362 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\mingwm10.dll
2015-06-13 09:40 - 2013-08-16 07:53 - 00043008 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\libgcc_s_dw2-1.dll
2015-06-13 09:40 - 2014-02-15 08:31 - 02416640 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\QtCore4.dll
2015-06-13 09:40 - 2014-02-15 08:33 - 01148416 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\QtNetwork4.dll
2011-05-26 13:34 - 2011-05-26 13:34 - 01011712 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\LIBEAY32.dll
2011-05-26 13:34 - 2011-05-26 13:34 - 00249856 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\SSLEAY32.dll
2010-10-13 09:12 - 2010-10-13 09:12 - 00663552 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_regex-vc80-mt-1_44.dll
2010-10-13 09:13 - 2010-10-13 09:13 - 00057344 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_thread-vc80-mt-1_44.dll
2010-10-13 09:11 - 2010-10-13 09:11 - 00057344 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_date_time-vc80-mt-1_44.dll
2010-10-13 09:12 - 2010-10-13 09:12 - 00233472 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_serialization-vc80-mt-1_44.dll
2010-10-13 09:11 - 2010-10-13 09:11 - 00135168 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_filesystem-vc80-mt-1_44.dll
2010-10-13 09:11 - 2010-10-13 09:11 - 00012288 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\boost_system-vc80-mt-1_44.dll
2011-05-23 22:46 - 2011-05-23 22:46 - 00438272 ____R () C:\Program Files (x86)\M-Budget\M-Budget Data Manager\sqlite.dll
2010-10-13 09:13 - 2010-10-13 09:13 - 00057344 ____R () C:\Program Files (x86)\M-Budget\Sesam\BIN\boost_thread-vc80-mt-1_44.dll
2010-10-13 09:11 - 2010-10-13 09:11 - 00057344 ____R () C:\Program Files (x86)\M-Budget\Sesam\BIN\boost_date_time-vc80-mt-1_44.dll
2010-07-30 14:36 - 2010-05-31 18:18 - 00013824 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll
2010-07-30 14:36 - 2010-05-31 18:18 - 00013312 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSubPS.dll
2014-12-18 14:38 - 2014-12-18 14:38 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\3d576cbc4ffc5ad06fd61510c5d8f326\IsdiInterop.ni.dll
2010-07-12 22:29 - 2010-03-04 04:08 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-03-31 20:35 - 2014-03-31 20:35 - 00282304 _____ () C:\Program Files (x86)\Windows Live\Writer\de\WindowsLive.Writer.Localization.resources.dll
2015-10-16 20:29 - 2015-10-16 20:29 - 17599688 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll
2014-03-05 22:44 - 2014-03-05 22:44 - 01568032 _____ () C:\Program Files (x86)\bfgclient\bfgcommon.dll
2014-01-14 20:29 - 2014-01-14 20:29 - 00059904 _____ () C:\Program Files (x86)\bfgclient\zlib1.dll
2014-01-14 20:27 - 2014-01-14 20:27 - 28768768 _____ () C:\ProgramData\Big Fish\cef\3.1180.823\libcef.dll
Code:
ATTFilter ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:00A3C892
AlternateDataStreams: C:\ProgramData\TEMP:19803016
AlternateDataStreams: C:\ProgramData\TEMP:1B506EA3
AlternateDataStreams: C:\ProgramData\TEMP:1C662800
AlternateDataStreams: C:\ProgramData\TEMP:20C1C66F
AlternateDataStreams: C:\ProgramData\TEMP:27212462
AlternateDataStreams: C:\ProgramData\TEMP:27C9AEEC
AlternateDataStreams: C:\ProgramData\TEMP:29167D0D
AlternateDataStreams: C:\ProgramData\TEMP:2A26624E
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:2D515C82
AlternateDataStreams: C:\ProgramData\TEMP:2DC3B66B
AlternateDataStreams: C:\ProgramData\TEMP:2DE4F6AE
AlternateDataStreams: C:\ProgramData\TEMP:2E0CD220
AlternateDataStreams: C:\ProgramData\TEMP:309E3827
AlternateDataStreams: C:\ProgramData\TEMP:39743F39
AlternateDataStreams: C:\ProgramData\TEMP:3CC2D8AB
AlternateDataStreams: C:\ProgramData\TEMP:432597DE
AlternateDataStreams: C:\ProgramData\TEMP:44A0FEC3
AlternateDataStreams: C:\ProgramData\TEMP:451EF486
AlternateDataStreams: C:\ProgramData\TEMP:5986FE1C
AlternateDataStreams: C:\ProgramData\TEMP:5A1E97C7
AlternateDataStreams: C:\ProgramData\TEMP:5AF17798
AlternateDataStreams: C:\ProgramData\TEMP:5FEBCE9C
AlternateDataStreams: C:\ProgramData\TEMP:629A9591
AlternateDataStreams: C:\ProgramData\TEMP:6654511C
AlternateDataStreams: C:\ProgramData\TEMP:683689D1
AlternateDataStreams: C:\ProgramData\TEMP:6F6E6036
AlternateDataStreams: C:\ProgramData\TEMP:70AD58E0
AlternateDataStreams: C:\ProgramData\TEMP:75596CFC
AlternateDataStreams: C:\ProgramData\TEMP:75CF6AF0
AlternateDataStreams: C:\ProgramData\TEMP:7929462F
AlternateDataStreams: C:\ProgramData\TEMP:79EAEF54
AlternateDataStreams: C:\ProgramData\TEMP:7C1271A7
AlternateDataStreams: C:\ProgramData\TEMP:81013054
AlternateDataStreams: C:\ProgramData\TEMP:841E05D6
AlternateDataStreams: C:\ProgramData\TEMP:84618038
AlternateDataStreams: C:\ProgramData\TEMP:8E916279
AlternateDataStreams: C:\ProgramData\TEMP:91742C9B
AlternateDataStreams: C:\ProgramData\TEMP:919D5A07
AlternateDataStreams: C:\ProgramData\TEMP:92B49D9A
AlternateDataStreams: C:\ProgramData\TEMP:9360454E
AlternateDataStreams: C:\ProgramData\TEMP:956AE390
AlternateDataStreams: C:\ProgramData\TEMP:9E3DDF7D
AlternateDataStreams: C:\ProgramData\TEMP:A694F56D
AlternateDataStreams: C:\ProgramData\TEMP:A7856354
AlternateDataStreams: C:\ProgramData\TEMP:A831D641
AlternateDataStreams: C:\ProgramData\TEMP:A9E00757
AlternateDataStreams: C:\ProgramData\TEMP:AEBF3B8E
AlternateDataStreams: C:\ProgramData\TEMP:B39AFC9E
AlternateDataStreams: C:\ProgramData\TEMP:B3A139F8
AlternateDataStreams: C:\ProgramData\TEMP:B57B5F37
AlternateDataStreams: C:\ProgramData\TEMP:B60217B2
AlternateDataStreams: C:\ProgramData\TEMP:B863466F
AlternateDataStreams: C:\ProgramData\TEMP:B935DA62
AlternateDataStreams: C:\ProgramData\TEMP:C25E505B
AlternateDataStreams: C:\ProgramData\TEMP:CA1F3AC3
AlternateDataStreams: C:\ProgramData\TEMP:CD09F4F2
AlternateDataStreams: C:\ProgramData\TEMP:CF2590B2
AlternateDataStreams: C:\ProgramData\TEMP:DA886912
AlternateDataStreams: C:\ProgramData\TEMP:DADACE5D
AlternateDataStreams: C:\ProgramData\TEMP:DC4CC932
AlternateDataStreams: C:\ProgramData\TEMP:DEA42AFB
AlternateDataStreams: C:\ProgramData\TEMP:E3C06B97
AlternateDataStreams: C:\ProgramData\TEMP:E5229D4E
AlternateDataStreams: C:\ProgramData\TEMP:E7626764
AlternateDataStreams: C:\ProgramData\TEMP:F02D19E7
AlternateDataStreams: C:\ProgramData\TEMP:F074840B
AlternateDataStreams: C:\ProgramData\TEMP:F8CBC5BA
AlternateDataStreams: C:\ProgramData\TEMP:F97CB382
AlternateDataStreams: C:\ProgramData\TEMP:FC136C23
AlternateDataStreams: C:\ProgramData\TEMP:FC367019
AlternateDataStreams: C:\ProgramData\TEMP:FEE94F6D
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-458901301-3535109335-729799517-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Heike und Achim\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupreg: SHTtray.exe => C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{4904EAEC-8863-4D26-9431-98768C1F9808}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{3F20C303-240F-4151-BAA1-1C7D744DF04E}] => (Block) C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe
FirewallRules: [{6664B3BB-055B-43ED-81A8-85983E7A2BB2}] => (Block) C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe
FirewallRules: [{0EF6CEE7-47EB-4156-A8F1-19ED20229BF7}] => (Block) C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe
FirewallRules: [{4583B497-0E3B-4D03-AD8F-D865FDEA749F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{8C3F3855-A66B-41FB-84A1-86A7E3850423}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{CEE995DE-29F3-4998-AC98-0B12C07D1DF8}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{0BC8DDC0-9A90-494C-94EF-D738F5ED21AD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1E63639D-9F6F-4F67-9D13-990168B2083B}] => (Allow) LPort=2869
FirewallRules: [{E8AD59E9-394E-435E-A4AC-12F109692E66}] => (Allow) LPort=1900
FirewallRules: [{B716AE16-704C-463F-B32F-7BB5B3326270}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{3CD039BA-4C12-4FBA-9662-4104A82D27A4}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
FirewallRules: [{0CA929BA-2A4D-4947-A7B5-7DA4297B0109}] => (Allow) C:\Program Files (x86)\Common Files\nokia\service layer\a\nsl_host_process.exe
FirewallRules: [{B30FC8E7-614C-43BC-AE42-1E0F1EC7ECA9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F0B17C7A-B058-44F9-BB55-443B4312260E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B7356D22-C985-4577-BC28-97E764EAB667}] => (Allow) C:\Users\Heike und Achim\AppData\Roaming\McAfee\Supportability\MVTLogs\ProductDetection64.exe
FirewallRules: [{E422E74C-3165-4EDB-B309-8E2F46796587}] => (Allow) C:\Users\Heike und Achim\AppData\Roaming\McAfee\Supportability\MVTLogs\ProductDetection64.exe
FirewallRules: [{CD363267-76D0-43D0-BD43-433D1FEAAD30}] => (Allow) C:\Program Files (x86)\Iplay Games\IplayGames.exe
FirewallRules: [{C1FC0366-267B-4E34-B58B-BFDEB37F8BC5}] => (Allow) C:\Program Files (x86)\Iplay Games\IplayGames.exe
FirewallRules: [{684D42EB-7BD9-47AC-A737-01544E328386}] => (Allow) C:\Program Files (x86)\Iplay Games\WebUpdater.exe
FirewallRules: [{326D0EA9-9F99-400E-BE07-989A0972BE6E}] => (Allow) C:\Program Files (x86)\Iplay Games\WebUpdater.exe
FirewallRules: [TCP Query User{37B001F2-5928-4522-9322-9B8ABA4D9781}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{7446721B-60EC-486D-BC38-F0032300A1E9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{2B893FAC-84DB-42DD-86CC-9067AD970EB1}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAgent.exe
FirewallRules: [{14CD0703-6938-4154-99C2-485FB3EB51F3}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
FirewallRules: [{9C58BC07-1887-486D-A11F-A67DBEF3B006}] => (Allow) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
FirewallRules: [{34FB3F7C-2642-42A6-95E8-68A6F363C199}] => (Allow) C:\Program Files\Sony\VAIO Care\VAIOShell.exe
FirewallRules: [{4919756C-E216-4270-B487-CCCE2709762C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/29/2015 06:55:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VCFw.exe, Version: 1.9.0.12220, Zeitstempel: 0x4ef1bcf3
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.19018, Zeitstempel: 0x5609fe30
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0003d968
ID des fehlerhaften Prozesses: 0xb1c
Startzeit der fehlerhaften Anwendung: 0xVCFw.exe0
Pfad der fehlerhaften Anwendung: VCFw.exe1
Pfad des fehlerhaften Moduls: VCFw.exe2
Berichtskennung: VCFw.exe3
Error: (10/28/2015 10:56:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: msvcrt.dll, Version: 7.0.7601.17744, Zeitstempel: 0x4eeaf722
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000097e9
ID des fehlerhaften Prozesses: 0x1988
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Error: (10/28/2015 10:50:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e2
ID des fehlerhaften Prozesses: 0x219c
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Error: (10/28/2015 10:48:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e2
ID des fehlerhaften Prozesses: 0x550
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Error: (10/28/2015 10:47:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 9.0.8112.16708, Zeitstempel: 0x55f27f71
Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.8112.16708, Zeitstempel: 0x55f27fb4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000f8e2
ID des fehlerhaften Prozesses: 0x1d0c
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Error: (10/28/2015 10:31:51 PM) (Source: usbperf) (EventID: 2001) (User: )
Description: Der Wert von "First Counter" unter dem Schlüssel "usbperf\Performance" kann nicht gelesen werden. Statuscodes wurden in den Daten zurückgegeben.
Error: (10/28/2015 10:26:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (10/28/2015 10:26:36 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (10/28/2015 10:25:02 PM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet. 0x0.
Error: (10/28/2015 10:24:42 PM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.
Kontext: Anwendung, SystemIndex Katalog
Systemfehler:
=============
Error: (10/29/2015 06:57:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "VAIO Content Folder Watcher" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (10/29/2015 05:02:31 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\wisptis.exe -Embedding740{A5B020FD-E04B-4E67-B65A-E7DEED25B2CF}
Error: (10/28/2015 10:56:19 PM) (Source: DCOM) (EventID: 10016) (User: Muemmel)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MuemmelHeike und AchimS-1-5-21-458901301-3535109335-729799517-1000LocalHost (unter Verwendung von LRPC)
Error: (10/28/2015 10:56:00 PM) (Source: DCOM) (EventID: 10016) (User: Muemmel)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MuemmelHeike und AchimS-1-5-21-458901301-3535109335-729799517-1000LocalHost (unter Verwendung von LRPC)
Error: (10/28/2015 10:55:12 PM) (Source: DCOM) (EventID: 10016) (User: Muemmel)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MuemmelHeike und AchimS-1-5-21-458901301-3535109335-729799517-1000LocalHost (unter Verwendung von LRPC)
Error: (10/28/2015 10:54:58 PM) (Source: DCOM) (EventID: 10016) (User: Muemmel)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MuemmelHeike und AchimS-1-5-21-458901301-3535109335-729799517-1000LocalHost (unter Verwendung von LRPC)
Error: (10/28/2015 10:54:10 PM) (Source: DCOM) (EventID: 10016) (User: Muemmel)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MuemmelHeike und AchimS-1-5-21-458901301-3535109335-729799517-1000LocalHost (unter Verwendung von LRPC)
Error: (10/28/2015 10:50:19 PM) (Source: DCOM) (EventID: 10016) (User: Muemmel)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MuemmelHeike und AchimS-1-5-21-458901301-3535109335-729799517-1000LocalHost (unter Verwendung von LRPC)
Error: (10/28/2015 10:50:14 PM) (Source: DCOM) (EventID: 10016) (User: Muemmel)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MuemmelHeike und AchimS-1-5-21-458901301-3535109335-729799517-1000LocalHost (unter Verwendung von LRPC)
Error: (10/28/2015 10:50:05 PM) (Source: DCOM) (EventID: 10016) (User: Muemmel)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MuemmelHeike und AchimS-1-5-21-458901301-3535109335-729799517-1000LocalHost (unter Verwendung von LRPC)
CodeIntegrity:
===================================
Date: 2015-03-04 18:02:01.564
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC1A65.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-04 18:02:01.556
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC1A65.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-04 18:02:01.517
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC1A65.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-04 18:02:01.511
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC1A65.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-01-14 17:51:09.953
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSCBFD6.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-01-14 17:51:09.950
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSCBFD6.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-01-14 17:51:09.945
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSCBFD6.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-01-14 17:51:09.942
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSCBFD6.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-11-01 21:10:49.206
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC5E90.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-11-01 21:10:49.204
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore_4_6\VSC5E90.tmp\vscore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5 CPU M 460 @ 2.53GHz
Prozentuale Nutzung des RAM: 50%
Installierter physikalischer RAM: 8046.1 MB
Verfügbarer physikalischer RAM: 3964 MB
Summe virtueller Speicher: 16090.4 MB
Verfügbarer virtueller Speicher: 10999.72 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:452.23 GB) (Free:107.88 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: D2F798B3)
Partition 1: (Not Active) - (Size=13.4 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452.2 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
Soll ich vielleicht mal den ie mittels Windows-Applikation deaktivieren und danach wieder aktivieren? |
|
30.10.2015, 20:41
| #15 |
| /// the machine /// TB-Ausbilder | IE-Explorer funktioniert nicht mehr Ich versteh nicht genau was du meinst. Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\S-1-5-21-458901301-3535109335-729799517-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
AlternateDataStreams: C:\ProgramData\TEMP:00A3C892
AlternateDataStreams: C:\ProgramData\TEMP:19803016
AlternateDataStreams: C:\ProgramData\TEMP:1B506EA3
AlternateDataStreams: C:\ProgramData\TEMP:1C662800
AlternateDataStreams: C:\ProgramData\TEMP:20C1C66F
AlternateDataStreams: C:\ProgramData\TEMP:27212462
AlternateDataStreams: C:\ProgramData\TEMP:27C9AEEC
AlternateDataStreams: C:\ProgramData\TEMP:29167D0D
AlternateDataStreams: C:\ProgramData\TEMP:2A26624E
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:2D515C82
AlternateDataStreams: C:\ProgramData\TEMP:2DC3B66B
AlternateDataStreams: C:\ProgramData\TEMP:2DE4F6AE
AlternateDataStreams: C:\ProgramData\TEMP:2E0CD220
AlternateDataStreams: C:\ProgramData\TEMP:309E3827
AlternateDataStreams: C:\ProgramData\TEMP:39743F39
AlternateDataStreams: C:\ProgramData\TEMP:3CC2D8AB
AlternateDataStreams: C:\ProgramData\TEMP:432597DE
AlternateDataStreams: C:\ProgramData\TEMP:44A0FEC3
AlternateDataStreams: C:\ProgramData\TEMP:451EF486
AlternateDataStreams: C:\ProgramData\TEMP:5986FE1C
AlternateDataStreams: C:\ProgramData\TEMP:5A1E97C7
AlternateDataStreams: C:\ProgramData\TEMP:5AF17798
AlternateDataStreams: C:\ProgramData\TEMP:5FEBCE9C
AlternateDataStreams: C:\ProgramData\TEMP:629A9591
AlternateDataStreams: C:\ProgramData\TEMP:6654511C
AlternateDataStreams: C:\ProgramData\TEMP:683689D1
AlternateDataStreams: C:\ProgramData\TEMP:6F6E6036
AlternateDataStreams: C:\ProgramData\TEMP:70AD58E0
AlternateDataStreams: C:\ProgramData\TEMP:75596CFC
AlternateDataStreams: C:\ProgramData\TEMP:75CF6AF0
AlternateDataStreams: C:\ProgramData\TEMP:7929462F
AlternateDataStreams: C:\ProgramData\TEMP:79EAEF54
AlternateDataStreams: C:\ProgramData\TEMP:7C1271A7
AlternateDataStreams: C:\ProgramData\TEMP:81013054
AlternateDataStreams: C:\ProgramData\TEMP:841E05D6
AlternateDataStreams: C:\ProgramData\TEMP:84618038
AlternateDataStreams: C:\ProgramData\TEMP:8E916279
AlternateDataStreams: C:\ProgramData\TEMP:91742C9B
AlternateDataStreams: C:\ProgramData\TEMP:919D5A07
AlternateDataStreams: C:\ProgramData\TEMP:92B49D9A
AlternateDataStreams: C:\ProgramData\TEMP:9360454E
AlternateDataStreams: C:\ProgramData\TEMP:956AE390
AlternateDataStreams: C:\ProgramData\TEMP:9E3DDF7D
AlternateDataStreams: C:\ProgramData\TEMP:A694F56D
AlternateDataStreams: C:\ProgramData\TEMP:A7856354
AlternateDataStreams: C:\ProgramData\TEMP:A831D641
AlternateDataStreams: C:\ProgramData\TEMP:A9E00757
AlternateDataStreams: C:\ProgramData\TEMP:AEBF3B8E
AlternateDataStreams: C:\ProgramData\TEMP:B39AFC9E
AlternateDataStreams: C:\ProgramData\TEMP:B3A139F8
AlternateDataStreams: C:\ProgramData\TEMP:B57B5F37
AlternateDataStreams: C:\ProgramData\TEMP:B60217B2
AlternateDataStreams: C:\ProgramData\TEMP:B863466F
AlternateDataStreams: C:\ProgramData\TEMP:B935DA62
AlternateDataStreams: C:\ProgramData\TEMP:C25E505B
AlternateDataStreams: C:\ProgramData\TEMP:CA1F3AC3
AlternateDataStreams: C:\ProgramData\TEMP:CD09F4F2
AlternateDataStreams: C:\ProgramData\TEMP:CF2590B2
AlternateDataStreams: C:\ProgramData\TEMP:DA886912
AlternateDataStreams: C:\ProgramData\TEMP:DADACE5D
AlternateDataStreams: C:\ProgramData\TEMP:DC4CC932
AlternateDataStreams: C:\ProgramData\TEMP:DEA42AFB
AlternateDataStreams: C:\ProgramData\TEMP:E3C06B97
AlternateDataStreams: C:\ProgramData\TEMP:E5229D4E
AlternateDataStreams: C:\ProgramData\TEMP:E7626764
AlternateDataStreams: C:\ProgramData\TEMP:F02D19E7
AlternateDataStreams: C:\ProgramData\TEMP:F074840B
AlternateDataStreams: C:\ProgramData\TEMP:F8CBC5BA
AlternateDataStreams: C:\ProgramData\TEMP:F97CB382
AlternateDataStreams: C:\ProgramData\TEMP:FC136C23
AlternateDataStreams: C:\ProgramData\TEMP:FC367019
AlternateDataStreams: C:\ProgramData\TEMP:FEE94F6D
Emptytemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
http://support2.microsoft.com/kb/929135/de Bitte einen Clean Boot machen. Geht der IE dann?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu IE-Explorer funktioniert nicht mehr |
| addons, aufgrund, erweiterte, funktionier, funktioniert, funktioniert nicht, funktioniert nicht mehr, geholfen, meinem, melde, meldet, nicht mehr, nichts, problem, seite, sobald, starte, startet, virus, wechsel, wechseln, zurückgesetzt |
Linear-Darstellung
