| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Avira-Virus ("Gruppenrichtlinie blockiert")Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
17.06.2016, 16:06
| #1 |
 |  Avira-Virus ("Gruppenrichtlinie blockiert") Hallo, mein altes Windows Vista Notebook hat wohl den bekannten Virus der die Sicherheitsprogramme blockiert. Beim Start von Avira steht: "Dieses Programm wurde durch eine Gruppenrichtlinie blockiert..." Außerdem habe ich das Gefühl das noch viele weitere Viren drauf sind, die wohl noch vom Vorbesitzer stammen, vielleicht kann man die ja gleichzeitig beseitigen. Danke! Vorab die Farbar-Logs: FRST & Additional: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:16-06-2016 01
durchgeführt von Osteria (Administrator) auf RANCHOGRANDE (17-06-2016 16:29:45)
Gestartet von C:\Users\Osteria\Desktop
Geladene Profile: Osteria & Mcx1 (Verfügbare Profile: Osteria & Mcx1)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 9 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(IDT, Inc.) C:\Windows\System32\stacsv.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Sony Corporation) C:\Program Files\Sony\SonicStage Mastering Studio\Audio Filter\SSMSFilter.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
(Safer Networking Ltd.) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4489216 2007-06-26] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2007-06-26] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [835584 2007-03-10] (Synaptics, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [182808 2008-07-20] (Intel Corporation)
HKLM\...\Run: [NvSvc] => RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1045720 2015-09-14] (Adobe Systems Incorporated)
HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [803200 2015-12-05] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-06-01] (Avira Operations GmbH & Co. KG)
HKLM Group Policy restriction on software: C:\Program Files\Malwarebytes' Anti-Malware <====== ACHTUNG
HKLM Group Policy restriction on software: C:\Program Files\Common Files\Symantec Shared <====== ACHTUNG
HKLM Group Policy restriction on software: C:\Program Files\Avira <====== ACHTUNG
Winlogon\Notify\VESWinlogon: C:\Windows\system32\VESWinlogon.dll [2007-07-24] (Sony Corporation)
HKLM\...\Policies\Explorer: [NoMSAppLogo5ChannelNotify] 0
HKLM\...\Policies\Explorer: [NoBandCustomize] 0
HKU\S-1-5-21-723902195-3043266244-887298501-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-723902195-3043266244-887298501-1000\...\Run: [hdgowkjq] => regsvr32.exe "
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\Run: [T-Online_Software_6\WLAN-Access Finder] => C:\Program Files\T-Online\WLAN-Access Finder\ToWLaAcF.exe [671796 2007-07-25] (Deutsche Telekom AG, Marmiko IT-Solutions GmbH)
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\Run: [AlcoholAutomount] => C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [4608 2008-11-22] ()
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\Run: [Steam] => C:\Program Files\Steam\Steam.exe [1597864 2013-02-15] (Valve Corporation)
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\Run: [Facebook Update] => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook Inc.)
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\Run: [SealOne] => C:\Users\Osteria\AppData\Roaming\Seal One\SealOne.exe [281080 2013-11-08] (Seal One AG)
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\MountPoints2: H - H:\AutoRun.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\MountPoints2: {a82e91ed-3943-11e2-b03e-e5cc46a79ec7} - H:\SealOne.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\MountPoints2: {c02e1267-10c1-11dd-994f-806e6f6e6963} - F:\start.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\MountPoints2: {d7425f98-27ec-11e2-a23b-d08875240d2a} - H:\SealOne.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\MountPoints2: {e3d7121a-4c17-11e0-8d2c-c752e73fe8ef} - H:\AutoRun.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\MountPoints2: {e3d71226-4c17-11e0-8d2c-89999ec2be7f} - H:\AutoRun.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\System32\vaiomov.scr [53248 2004-12-27] (Sony Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\System32\vaiomov.scr [53248 2004-12-27] (Sony Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2012-08-06]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk [2007-08-15]
ShortcutTarget: BTTray.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Osteria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Audio Filter.lnk [2011-01-11]
ShortcutTarget: Audio Filter.lnk -> C:\Program Files\Sony\SonicStage Mastering Studio\Audio Filter\SSMSFilter.exe (Sony Corporation)
Startup: C:\Users\Osteria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\d5f8.lnk [2014-04-08]
ShortcutTarget: d5f8.lnk -> 8f5d.dll,work (Keine Datei)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6205A2CE-2A8E-4058-9D82-E4B274EB6CAB}: [DhcpNameServer] 193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{8A75E139-7BFF-4853-963B-48705599B5AF}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\S-1-5-21-723902195-3043266244-887298501-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-723902195-3043266244-887298501-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-723902195-3043266244-887298501-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.de/
HKU\S-1-5-21-723902195-3043266244-887298501-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/
HKU\S-1-5-21-723902195-3043266244-887298501-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.club-vaio.com
HKU\S-1-5-21-723902195-3043266244-887298501-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://partnerpage.google.com/eu.sony.com/de
hxxp://www.club-vaio.com/vbc
HKU\S-1-5-21-723902195-3043266244-887298501-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-723902195-3043266244-887298501-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/
HKU\S-1-5-21-723902195-3043266244-887298501-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.msn.com/?ocid=ie9hp
URLSearchHook: HKU\S-1-5-21-723902195-3043266244-887298501-1001 - (Kein Name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - Keine Datei
SearchScopes: HKLM -> DefaultScope Wert fehlt
SearchScopes: HKLM -> {14676E70-1FBF-474F-9D1D-F9C033049E91} URL = hxxp://www.amazon.de/gp/search?ie=UTF8&keywords={searchTerms}&tag=interactivemesuche-21&index=blended&linkCode=ur2&camp=1638&creative=6742
SearchScopes: HKLM -> {229098C5-56E2-4EED-914C-85018578CD62} URL = hxxp://suche.t-online.de/fast-cgi/tsc?mandant=toi&device=html&portallanguage=de&userlanguage=de&dia=suche&context=internet-tab&tpc=internet&ptl=std&classification=internet-tab_internet_std&q={searchTerms}&br=ie7-toi
SearchScopes: HKLM -> {E88E0043-C9D4-4e33-8555-FEE4F5B63060} URL = hxxp://go.mail.ru/search?q={searchTerms}&utf8in=1&lang=ru
SearchScopes: HKLM -> {FC89D558-A166-406E-82DA-ADF0DC064F0E} URL = hxxp://suche.t-online.de/fast-cgi/tsc?mandant=toi&device=html&portallanguage=de&userlanguage=de&dia=suche&context=wiki-tab&tpc=internet&ptl=std&classification=wiki-tab_internet_std&q={searchTerms}&br=ie7-toi
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {229098C5-56E2-4EED-914C-85018578CD62} URL =
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {3E9F47F1-B56F-463C-A805-B77F1129C950} URL = hxxp://go.web.de/suchbox/ie_amazon/?keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {3EB9D85D-B2CB-4D57-B5E4-2555FB1CCE91} URL = hxxp://wa.ui-portal.de/webde/webde/s?produkte.browser.link.ebaysuche&s_brand=webde&t_link=ebaysuche&ns_type=clickin&ns_url=hxxp://rover.ebay.com/rover/1/707-52222-30040-5/4?mpre=hxxp://shop.ebay.de/?_sacat=See-All-Categories&_nkw={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {7FEF4122-3BEE-4E15-9A80-49B32AC89399} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IEFM1&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {8B9A1316-BC57-4547-BFFE-C9B988A95EB8} URL = hxxp://suche.web.de/search/web/?su={searchTerms}&origin=searchplugin
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {90C922EE-CF74-44F1-BD7C-D2728272AE05} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> {229098C5-56E2-4EED-914C-85018578CD62} URL =
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> {3E9F47F1-B56F-463C-A805-B77F1129C950} URL = hxxp://go.web.de/suchbox/ie_amazon/?keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> {3EB9D85D-B2CB-4D57-B5E4-2555FB1CCE91} URL = hxxp://wa.ui-portal.de/webde/webde/s?produkte.browser.link.ebaysuche&s_brand=webde&t_link=ebaysuche&ns_type=clickin&ns_url=hxxp://rover.ebay.com/rover/1/707-52222-30040-5/4?mpre=hxxp://shop.ebay.de/?_sacat=See-All-Categories&_nkw={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> {7FEF4122-3BEE-4E15-9A80-49B32AC89399} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IEFM1&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> {8B9A1316-BC57-4547-BFFE-C9B988A95EB8} URL = hxxp://suche.web.de/search/web/?su={searchTerms}&origin=searchplugin
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll [2013-02-05] (McAfee, Inc.)
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-11-08] (RealPlayer)
BHO: Windows Live Family Safety Browser Helper Class -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> C:\Program Files\Windows Live\Family Safety\fssbho.dll [2010-04-28] (Microsoft Corporation)
BHO: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Limited)
BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2012-03-15] (Sun Microsystems, Inc.)
BHO: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-12] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-15] (Sun Microsystems, Inc.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-12] (Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> Kein Name - {25F97EB4-1C02-45BA-BA0C-E67AACE64D4A} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> Kein Name - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> Kein Name - {09900DE8-1DCA-443F-9243-26FF581438AF} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> Kein Name - {A057A204-BACC-4D26-8087-36EE87E26986} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> Kein Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> Kein Name - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> Kein Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001 -> Kein Name - {C424171E-592A-415A-9EB1-DFD6D95D3530} - Keine Datei
DPF: {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/DE-DE/a-UNO1/GAME_UNO1.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1211222955877
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} hxxp://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} hxxp://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/DigWXMSN.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-01-25] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default
FF DefaultSearchUrl: hxxp://homepage.am/?q=
FF SearchEngineOrder.1:
FF SelectedSearchEngine: mail.ru: ????? ? ?????????
FF Homepage: hxxp://google.ru/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll [2014-03-08] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2009-07-13] ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2009-02-24] (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [2009-02-24] (DivX, Inc)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @java.com/DTPlugin -> C:\Program Files\Java\jre6\bin\npDeployJava1.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=12.0.1.669 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=12.0.1.669 -> c:\program files\real\realplayer\Netscape6\nprjplug.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=12.0.1.669 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=12.0.1.669 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=12.0.1.669 -> c:\program files\real\realplayer\Netscape6\nprpjplug.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=1.0.5.0 -> C:\Program Files\Kartina.TV\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\Kartina.TV\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\Kartina.TV\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-723902195-3043266244-887298501-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Osteria\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2012-10-12] (Skype Limited)
FF user.js: detected! => C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\user.js [2013-07-03]
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\libdivx.dll [2009-02-24] (The OpenSSL Project, hxxp://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdivx32.dll [2009-02-24] (DivX,Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll [2009-02-24] (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprjplug.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ssldivx.dll [2009-02-24] (The OpenSSL Project, hxxp://www.openssl.org/)
FF SearchPlugin: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\searchplugins\live-search.xml [2009-03-21]
FF SearchPlugin: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\searchplugins\mailru---.xml [2011-11-09]
FF SearchPlugin: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\searchplugins\mailru.xml [2010-04-17]
FF Extension: Avira Browser Safety - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\abs@avira.com [2016-06-17]
FF Extension: Ovi maps browser plugin - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\maps@ovi.com [2010-03-19] [ist nicht signiert]
FF Extension: Бар знакомств - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\toolbar@mamba.ru [2012-03-01] [ist nicht signiert]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-05-25] [ist nicht signiert]
FF Extension: Google Toolbar for Firefox - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2011-07-02] [ist nicht signiert]
FF Extension: Спутник @Mail.Ru - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D} [2015-12-29]
FF Extension: VLC Mozilla plugin - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\{79AB5E93-0AE2-4759-891A-3F1B322F9F9A} [2010-05-25] [ist nicht signiert]
FF Extension: Google Toolbar for Firefox - C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2016-04-27] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-25] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [{79AB5E93-0AE2-4759-891A-3F1B322F9F9A}] - C:\Program Files\Kartina.TV\VLC\npvlc.dll
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2013-06-27] [ist nicht signiert]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2009-07-13]
Chrome:
=======
CHR Profile: C:\Users\Osteria\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Osteria\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-04]
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\Osteria\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2013-10-07]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Osteria\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-19]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2011-11-08]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [466408 2015-12-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [466408 2015-12-05] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [302680 2016-06-01] (Avira Operations GmbH & Co. KG)
R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [Datei ist nicht signiert]
R2 PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
R2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [1021256 2009-10-30] (TuneUp Software)
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [73728 2007-06-28] (Sony Corporation) [Datei ist nicht signiert]
R2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [182392 2007-07-24] (Sony Corporation)
S3 VAIOMediaPlatform-IntegratedServer-AppServer; C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe [2523136 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-IntegratedServer-HTTP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [397312 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-IntegratedServer-UPnP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [1089536 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-Mobile-Gateway; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe [499712 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-UCLS-AppServer; C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe [745472 2007-01-10] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-UCLS-HTTP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [397312 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-UCLS-UPnP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [1089536 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [292152 2007-07-05] (Sony Corporation)
R3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [274432 2007-06-28] (Sony Corporation) [Datei ist nicht signiert]
S3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1013808 2013-03-26] (Sony Corporation)
R2 VzCdbSvc; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [192512 2007-08-28] (Sony Corporation) [Datei ist nicht signiert]
R2 VzFw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [131072 2007-08-28] (Sony Corporation) [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106968 2015-12-05] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136272 2015-12-05] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37896 2015-05-22] (Avira Operations GmbH & Co. KG)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [716272 2008-11-22] () [Datei ist nicht signiert]
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [31848 2015-06-09] (Avira Operations GmbH & Co. KG)
R3 ti21sony; C:\Windows\System32\drivers\ti21sony.sys [812544 2007-06-06] (Texas Instruments)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [10064 2009-10-14] (TuneUp Software)
U3 a0rw2vd3; C:\Windows\system32\Drivers\a0rw2vd3.sys [0 ] (Microsoft Corporation) <==== ACHTUNG (Null Byte Datei/Ordner)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
U4 Avgfwfd; system32\DRIVERS\avgfwd6x.sys [X]
R4 AVGIDSHX; system32\DRIVERS\avgidshx.sys [X]
R4 AVGIDSShim; system32\DRIVERS\avgidsshimx.sys [X]
R4 Avgrkx86; system32\DRIVERS\avgrkx86.sys [X]
R4 Avgtdix; system32\DRIVERS\avgtdix.sys [X]
R4 avgunivx; system32\DRIVERS\avgunivx.sys [X]
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 catchme; \??\C:\Users\Osteria\AppData\Local\Temp\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 TSMPacket; system32\DRIVERS\tsmpkt.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Datei ist nicht signiert]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-17 16:29 - 2016-06-17 16:31 - 00034628 _____ C:\Users\Osteria\Desktop\FRST.txt
2016-06-17 16:28 - 2016-06-17 16:29 - 01737216 _____ (Farbar) C:\Users\Osteria\Desktop\FRST.exe
2016-06-17 16:26 - 2016-06-17 16:26 - 02086728 _____ (Лаборатория Касперского) C:\Users\Osteria\Downloads\kfa16.0.1.445ru_9358.exe
2016-06-17 16:15 - 2016-06-17 16:15 - 00001003 _____ C:\Users\Osteria\Desktop\Avira Launcher.lnk
2016-06-17 16:15 - 2016-06-17 16:15 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-17 14:56 - 2016-06-17 14:56 - 04657056 _____ (Avira Operations GmbH & Co. KG) C:\Users\Osteria\Downloads\avira_de_av_5763f36d8c9b3__ws.exe
2016-06-07 12:54 - 2016-06-07 12:54 - 00025536 _____ C:\Users\Osteria\Downloads\MON_M_042384_20160606205417_MOfb5d7df0_0000848674_PREC (3).pdf
2016-06-07 12:54 - 2016-06-07 12:54 - 00025536 _____ C:\Users\Osteria\Downloads\MON_M_042384_20160606205417_MOfb5d7df0_0000848674_PREC (2).pdf
2016-06-07 12:51 - 2016-06-07 12:51 - 00025536 _____ C:\Users\Osteria\Downloads\MON_M_042384_20160606205417_MOfb5d7df0_0000848674_PREC.pdf
2016-06-07 12:51 - 2016-06-07 12:51 - 00025536 _____ C:\Users\Osteria\Downloads\MON_M_042384_20160606205417_MOfb5d7df0_0000848674_PREC (1).pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-17 16:29 - 2013-06-27 16:44 - 00000000 ____D C:\FRST
2016-06-17 16:15 - 2015-03-29 13:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-06-17 16:15 - 2013-03-28 23:50 - 00000000 ____D C:\ProgramData\Avira
2016-06-17 16:15 - 2013-03-28 23:50 - 00000000 ____D C:\Program Files\Avira
2016-06-17 16:13 - 2016-05-13 16:17 - 00000000 ____D C:\ProgramData\Avg
2016-06-17 16:13 - 2015-03-29 15:38 - 00000000 ____D C:\Program Files\AVG
2016-06-17 15:17 - 2016-02-22 21:41 - 00000000 ____D C:\Users\Osteria\AppData\Local\AvgSetupLog
2016-06-17 15:17 - 2015-03-29 15:33 - 00000000 ____D C:\ProgramData\MFAData
2016-06-17 15:14 - 2015-03-29 15:41 - 00000000 ___HD C:\$AVG
2016-06-17 15:13 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\inf
2016-06-17 15:10 - 2007-12-18 23:00 - 00100595 _____ C:\Users\Osteria\AppData\Roaming\nvModes.001
2016-06-17 14:47 - 2006-11-02 14:47 - 00003696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-17 14:47 - 2006-11-02 14:47 - 00003696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-09 11:57 - 2007-08-15 14:39 - 00000012 _____ C:\Windows\bthservsdp.dat
2016-05-28 18:12 - 2015-08-09 18:25 - 00000000 ____D C:\Users\Osteria\Desktop\VN Gastro GmbH
2016-05-25 20:18 - 2015-05-25 08:06 - 00000000 ____D C:\Users\Osteria\AppData\Local\Avg
2016-05-25 18:56 - 2006-11-02 17:33 - 08904078 _____ C:\Windows\system32\perfh007.dat
2016-05-25 18:56 - 2006-11-02 17:33 - 02863636 _____ C:\Windows\system32\perfc007.dat
2016-05-25 18:56 - 2006-11-02 12:33 - 00006634 _____ C:\Windows\system32\PerfStringBackup.INI
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2007-12-18 23:00 - 2016-06-17 15:10 - 0100595 _____ () C:\Users\Osteria\AppData\Roaming\nvModes.001
2007-12-18 23:00 - 2012-03-05 16:48 - 0100595 _____ () C:\Users\Osteria\AppData\Roaming\nvModes.dat
2008-01-05 03:46 - 2010-07-26 20:26 - 0025773 _____ () C:\Users\Osteria\AppData\Roaming\UserTile.png
2009-01-04 23:24 - 2009-01-04 23:24 - 0000000 _____ () C:\Users\Osteria\AppData\Roaming\wklnhst.dat
2007-12-18 23:00 - 2014-10-24 09:23 - 0007592 _____ () C:\Users\Osteria\AppData\Local\d3d9caps.dat
2007-12-18 23:00 - 2012-05-29 21:58 - 0065024 _____ () C:\Users\Osteria\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-09-09 18:56 - 2009-10-15 12:53 - 0000093 _____ () C:\Users\Osteria\AppData\Local\jmxddilo.bat
2008-11-18 14:47 - 2009-02-17 23:14 - 0000092 _____ () C:\Users\Osteria\AppData\Local\msafciou.bat
2012-08-04 19:10 - 2012-08-04 19:10 - 0000752 _____ () C:\Users\Osteria\AppData\Local\recently-used.xbel
2009-10-15 22:36 - 2009-10-30 12:39 - 0000092 _____ () C:\Users\Osteria\AppData\Local\xiscnxar.bat
2011-07-23 14:06 - 2011-07-23 14:06 - 0000000 _____ () C:\Users\Osteria\AppData\Local\{F801315B-3A8A-4B33-9579-619C263FBCAC}
2007-12-21 07:33 - 2007-12-21 07:33 - 0000305 _____ () C:\ProgramData\addr_file.html
2010-03-20 15:39 - 2010-03-20 15:39 - 0000000 _____ () C:\ProgramData\cmn_upld.log
2008-01-03 19:06 - 2008-01-03 19:06 - 0000032 _____ () C:\ProgramData\ezsid.dat
2010-03-20 16:07 - 2013-03-30 11:25 - 0000504 _____ () C:\ProgramData\FastPics.log
2014-03-06 11:19 - 2014-03-06 11:19 - 95027928 ____T () C:\ProgramData\gerjttd.fee
2010-09-25 02:54 - 2013-02-27 10:15 - 0056196 _____ () C:\ProgramData\lxeb.log
2010-03-20 16:21 - 2010-03-27 12:58 - 0010868 _____ () C:\ProgramData\lxebJSW.log
2010-03-20 15:47 - 2013-03-30 11:21 - 0309838 _____ () C:\ProgramData\lxebscan.log
2010-07-17 16:12 - 2013-03-28 16:00 - 0058619 _____ () C:\ProgramData\lxee.log
2010-03-28 01:50 - 2011-12-20 22:38 - 0077042 _____ () C:\ProgramData\lxeeJSW.log
2010-03-28 01:27 - 2013-03-30 11:25 - 0318032 _____ () C:\ProgramData\lxeescan.log
2010-03-20 15:39 - 2010-03-20 15:39 - 0000000 _____ () C:\ProgramData\LxWbGwLog.log
2010-03-20 15:39 - 2010-03-20 15:39 - 0000000 _____ () C:\ProgramData\UpdaterLog.txt
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\ezsid.dat
C:\ProgramData\gerjttd.fee
Einige Dateien in TEMP:
====================
C:\Users\Osteria\AppData\Local\temp\avg-0b7ede44-b883-4237-a1f8-b61429d79163.exe
C:\Users\Osteria\AppData\Local\temp\avg-5fd1444a-745a-480a-8071-6f6a05d92635.exe
C:\Users\Osteria\AppData\Local\temp\avguirn_081023301489.exe
C:\Users\Osteria\AppData\Local\temp\DeltaTB.exe
C:\Users\Osteria\AppData\Local\temp\jre-8u51-windows-au.exe
C:\Users\Osteria\AppData\Local\temp\jre-8u60-windows-au.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-06-17 15:32
==================== Ende vom FRST.txt ============================[/QUOTE]
Addition:
[QUOTE]Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:16-06-2016 01
durchgeführt von Osteria (2016-06-17 16:31:34)
Gestartet von C:\Users\Osteria\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) (2007-12-18 20:47:33)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-723902195-3043266244-887298501-500 - Administrator - Disabled)
Gast (S-1-5-21-723902195-3043266244-887298501-501 - Limited - Disabled)
Mcx1 (S-1-5-21-723902195-3043266244-887298501-1001 - Administrator - Enabled) => C:\Users\Mcx1
Osteria (S-1-5-21-723902195-3043266244-887298501-1000 - Administrator - Enabled) => C:\Users\Osteria
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Out of date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: AVG Internet Security (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Avira Antivirus (Enabled - Out of date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security (Disabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 15.14 (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
ABBYY FineReader 6.0 Sprint (HKLM\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.2146.41621 - ABBYY Software House)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.7.700.224 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Illustrator CS (HKLM\...\{91A4AD99-69CE-4745-97B7-0E0DFBECFDE5}) (Version: 11 - Adobe Systems, Inc.)
Adobe Reader X (10.1.16) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Adobe SVG Viewer 3.0 (HKLM\...\Adobe SVG Viewer) (Version: 3.0 - Adobe Systems, Inc.)
Alice Software 4.9.2 (HKLM\...\Alice Software) (Version: 4.9.2 - HanseNet Telekommunikation GmbH)
Apple Application Support (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AppMon Utility (HKLM\...\{09A84598-E18A-4E7B-A49A-E19BB8D5C648}) (Version: 2.2.00.07120 - Sony Corporation)
ArcSoft Magic-i Visual Effects Installer (HKLM\...\{9AB83A3C-604D-4B4F-AA25-A23A3FC39844}) (Version: - ArcSoft)
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 15.0.8.656 - Avira)
Avira Launcher (HKLM\...\{3d9e0476-943f-4962-99dc-b9c937a43840}) (Version: 1.1.65.9690 - Avira Operations GmbH & Co. KG)
Avira Launcher (Version: 1.1.65.9690 - Avira Operations GmbH & Co. KG) Hidden
Benutzerdefinierte Voreinstellungen für SonicStage Mastering Studio Audio Filter (HKLM\...\{EC37A846-53AC-4DA7-98FA-76A4E74AA900}) (Version: 2.3 - Sony Corporation)
Bing Bar (HKLM\...\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}) (Version: 7.1.391.0 - Microsoft Corporation)
Bing Bar (HKLM\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
Brother MFL-Pro Suite MFC-J6510DW (HKLM\...\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CASIO Easy Programming (HKLM\...\CASIO Easy Programming) (Version: 3.14.9999 - CASIO Europe GmbH)
CASIO Easy Programming (Version: 3.14.9999 - CASIO Europe GmbH) Hidden
CASIO Easy Store Fiskal (HKLM\...\CASIO Easy Store Fiskal) (Version: 4.3.3 - CASIO Europe GmbH)
CASIO Easy Store Fiskal (Version: 4.3.3 - CASIO Europe GmbH) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
Click to DVD 2.0.05 Menu Data (HKLM\...\{9E407618-D9CD-4F39-9490-9ED45294073D}) (Version: 2.0.05 - Sony Corporation)
Click to DVD 2.6.00 (HKLM\...\{E809063C-51A3-4269-8984-D1EB742F2151}) (Version: 2.6.00 - Sony Corporation)
DHTML Editing Component (HKLM\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)
DivX Codec (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.8.5 - DivX, Inc.)
DivX Converter (HKLM\...\{B13A7C41581B411290FBC0395694E2A9}) (Version: 7.0.0 - DivX, Inc.)
DivX Player (HKLM\...\{8ADFC4160D694100B5B8A22DE9DCABD9}) (Version: 7.1.0 - DivX, Inc.)
DivX Plus DirectShow Filters (HKLM\...\DivX Plus DirectShow Filters) (Version: - DivX, Inc.)
DivX Web Player (HKLM\...\{B7050CBDB2504B34BC2A9CA0A692CC29}) (Version: 1.4.3 - DivX,Inc.)
doPDF 6.2 printer (HKLM\...\doPDF 6 printer_is1) (Version: - Softland)
DSD Direct (HKLM\...\{82D5BACA-3619-4D34-99DB-3A65CFB4DA33}) (Version: 2.0.01 - Sony Corporation)
DSD Direct Player (HKLM\...\{533D0A8A-D7E7-4F15-BC9E-FF2916A6BAA7}) (Version: 1.0 - Sony Corporation)
DSD Playback Plug-in (HKLM\...\{009E7FB7-1775-4D89-8956-F5C9A1C019FC}) (Version: 1.1 - Sony Corporation)
EasyBits GO (HKU\S-1-5-21-723902195-3043266244-887298501-1000\...\Game Organizer) (Version: - EasyBits Media)
EasyBits GO (HKU\S-1-5-21-723902195-3043266244-887298501-1001\...\Game Organizer) (Version: - EasyBits Media)
Empire: Total War Demo (HKLM\...\Steam App 10620) (Version: - The Creative Assembly)
Facebook Video Calling 1.2.0.287 (HKLM\...\{B92C5909-1D37-4C51-8397-A28BB28E5DC3}) (Version: 1.2.287 - Skype Limited)
Free FLV Converter V 4.9 (HKLM\...\Free FLV Converter_is1) (Version: - Koyote Soft)
GearDrvs (Version: 1 - Symantec Corporation) Hidden
Gemeinsam genutzte Internet-Komponenten von Westwood (HKLM\...\WOLAPI) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Earth (HKLM\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Toolbar for Firefox (HKLM\...\{2CCBABCB-6427-4A55-B091-49864623C43F}) (Version: 7.1.20101113b1 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.30.3 - Google Inc.) Hidden
HDAUDIO SoftV92 Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_104D0200) (Version: - )
IDT Audio (HKLM\...\{07D8511D-C9FE-4A93-933F-EAA5C8F20095}) (Version: 5.10.5303.0 - IDT)
Inkscape 0.48.3.1 (HKLM\...\Inkscape) (Version: 0.48.3.1 - )
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
iTunes (HKLM\...\{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944}) (Version: 8.2.1.6 - Apple Inc.)
Java(TM) 6 Update 22 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
JNLP (HKU\S-1-5-21-723902195-3043266244-887298501-1000\...\JNLP) (Version: - JNLP)
Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Lexmark Tools for Office (HKLM\...\{10812DE7-2E57-4740-B226-6B3BE34AF9D7}) (Version: 1.29.0.0 - )
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.0.318.3 - McAfee, Inc.)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM\...\{4EA2F95F-A537-4d17-9E7F-6B3FF8D9BBE3}) (Version: 08.05.0822 - Microsoft Corporation)
Mobile Partner (HKLM\...\Mobile Partner) (Version: 16.002.03.01.40 - Huawei Technologies Co.,Ltd)
Mozilla Firefox 46.0.1 (x86 ru) (HKLM\...\Mozilla Firefox 46.0.1 (x86 ru)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser und SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Norton 360 (Version: 1.2.0.10 - Symantec Corporation) Hidden
Nuance PaperPort 12 (HKLM\...\{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}) (Version: 12.1.0000 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
OpenMG Limited Patch 4.7-07-15-19-01 (HKLM\...\OpenMG HotFix4.7-07-13-22-01) (Version: - )
OpenMG Secure Module 4.7.00 (HKLM\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140 - Sony Corporation) Hidden
OpenOffice.org 3.3 (HKLM\...\{4286716B-1287-48E7-9078-3DC8248DBA96}) (Version: 3.3.9567 - OpenOffice.org)
Opera 12.18 (HKLM\...\Opera 12.18.1872) (Version: 12.18.1872 - Opera Software ASA)
Paint.NET v3.5.8 (HKLM\...\{9CF4A37B-A8C4-44D7-8C53-13B9D9594BB2}) (Version: 3.58.0 - dotPDN LLC)
Premiere Internet TV Version 1.3.0 (HKLM\...\Premiere Internet TV_is1) (Version: - Premiere Interactive GmbH)
Python 3.2.2 (HKLM\...\{4CDE3168-D060-4b7c-BC74-4D8F9BB01AFD}) (Version: 3.2.2150 - Python Software Foundation)
QuickTime (HKLM\...\{C78EAC6F-7A73-452E-8134-DBB2165C5A68}) (Version: 7.62.14.0 - Apple Inc.)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM\...\RealPlayer 12.0) (Version: - RealNetworks)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5433 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Roxio Easy Media Creator Home (HKLM\...\{B7FB0C86-41A4-4402-9A33-912C462042A0}) (Version: 9.0.178 - Roxio)
Scansoft PDF Professional (Version: - ) Hidden
Setting Utility Series (HKLM\...\{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}) (Version: 3.0.00.07240 - Sony Corporation)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SonicStage Mastering Studio (HKLM\...\{6332AFF1-9D9A-429C-AA03-F82749FA4F49}) (Version: 2.3.01 - Sony Corporation)
SonicStage Mastering Studio (Version: 2.3.01 - Sony Corporation) Hidden
SonicStage Mastering Studio Audio Filter (HKLM\...\{DF7DB916-90E5-40F2-9010-B8125EB5FD6F}) (Version: 2.3.01 - Sony Corporation)
SonicStage Mastering Studio Plugins (HKLM\...\{9C1C8A04-F8CA-4472-A92D-4288CE32DE86}) (Version: 2.4 - Sony Corporation)
Sony Ericsson Media Manager 1.2 (HKLM\...\{98EA51C9-B0B0-45BC-8641-3E119EA47D7B}) (Version: 1.2.610 - Sony Ericsson)
Sony Video Shared Library (HKLM\...\{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}) (Version: 3.2.00 - Sony Corporation)
Spelling Dictionaries Support For Adobe Reader 8 (HKLM\...\{AC76BA86-7AD7-5464-3428-800000000003}) (Version: 8.0.0 - Adobe Systems)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 9.1.13.0 - Synaptics)
T-Online WLAN-Access Finder (HKLM\...\{295C31E5-3F91-498E-9623-DA24D2FA2B6A}) (Version: - )
TuneUp Utilities (HKLM\...\TuneUp Utilities) (Version: 9.0.2000.15 - TuneUp Software)
TuneUp Utilities (Version: 9.0.2000.15 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (Version: 9.0.2000.15 - TuneUp Software) Hidden
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VAIO Aqua Breeze Wallpaper (HKLM\...\{97BCD719-6ECB-458F-97D6-F38D2E07375E}) (Version: 1.0.11.13240 - Sony Corporation)
VAIO Azure Float Wallpaper (HKLM\...\{0312BD0D-A1FE-4E1A-9208-D436F566D867}) (Version: 1.0.00.10100 - Sony Corporation)
VAIO Camera Capture Utility (HKLM\...\{6D2576EC-A0E9-418A-A09A-409933A3B6F4}) (Version: 2.7.01.08030 - Sony Corporation)
VAIO Content Folder Setting (HKLM\...\{23825B69-36DF-4DAD-9CFD-118D11D80F16}) (Version: 1.1.02.11070 - Sony Corporation)
VAIO Content Importer VAIO Content Exporter (Version: 1.2.00.06270 - Sony Corporation) Hidden
VAIO Content Importer / VAIO Content Exporter (HKLM\...\{68A69CFF-130D-4CDE-AB0E-7374ECB144C8}) (Version: 1.2.00.06270 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (HKLM\...\{FAA6B94E-78A7-489C-B2DB-050D9FEBFADA}) (Version: 2.0.01.07051 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 2.0.01.07051 - Sony Corporation) Hidden
VAIO Content Metadata Manager Settings (HKLM\...\{12D0BE8D-538C-4AB1-86DE-C540308F50DA}) (Version: 3.6.0.09240 - Sony Corporation)
VAIO Content Metadata Manager Settings (Version: 3.6.0.09240 - Sony Corporation) Hidden
VAIO Content Metadata XML Interface Library (HKLM\...\{291FB4BF-EEC7-4CF9-8469-F39ED1DBC4D8}) (Version: 3.6.0.09080 - Sony Corporation)
VAIO Content Metadata XML Interface Library (Version: 3.6.0.09080 - Sony Corporation) Hidden
VAIO Control Center (HKLM\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 2.1.00.07110 - Sony Corporation)
VAIO Cozy Orange Wallpaper (HKLM\...\{2A2FF7F5-6F0E-4A5D-A881-39365E718BD6}) (Version: 1.0.11.13240 - Sony Corporation)
VAIO Data Restore Tool (HKLM\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.0.02.06190 - Sony Corporation)
VAIO Entertainment Platform (HKLM\...\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}) (Version: 3.0.00.06280 - Sony Corporation)
VAIO Event Service (HKLM\...\{F0D85ADD-DD61-4B43-87A0-6DA52A211A8B}) (Version: 3.2.00.07240 - Sony Corporation)
VAIO Launcher (HKLM\...\{15D5C238-4C2E-4AEA-A66D-D6989A4C586B}) (Version: 1.0.00.07090 - Sony Corporation)
VAIO Media (Version: 6.0.10 - Sony Corporation) Hidden
VAIO Media 6.0 (HKLM\...\{560F6B2E-F0DF-44E5-8190-A4A161F0E205}) (Version: 6.0.10 - Sony Corporation)
VAIO Media AC3 Decoder 1.0 (HKLM\...\{2063C2E8-3812-4BBD-9998-6610F80C1DD4}) (Version: - )
VAIO Media Content Collection 6.0 (HKLM\...\{500162A0-4DD5-460A-BAFD-895AAE48C532}) (Version: - Sony Corporation)
VAIO Media Integrated Server 6.1 (HKLM\...\{785EB1D4-ECEC-4195-99B4-73C47E187721}) (Version: - Sony Corporation)
VAIO Media Redistribution 6.0 (HKLM\...\{5855C127-1F20-404D-B7FB-1FD84D7EAB5E}) (Version: 6.0.10 - Sony Corporation)
VAIO Media Registration Tool (Version: 6.0.10 - Sony Corporation) Hidden
VAIO Media Registration Tool 6.0 (HKLM\...\{AF9A04EB-7D8E-41DE-9EDE-4AB9BB2B71B6}) (Version: 6.0.10 - Sony Corporation)
VAIO Movie Story Template Data (HKLM\...\{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 1.0.00.18280 - Sony Corporation)
VAIO MusicBox (HKLM\...\{4EA55D20-27FB-45D7-8726-147E8A5F6C62}) (Version: 1.1.02.12100 - Sony Corporation)
VAIO MusicBox Sample Music (HKLM\...\{98FC7A64-774B-49B5-B046-4B4EBC053FA9}) (Version: 1.0.00.07030 - Sony Corporation)
VAIO Original Function Settings (Version: 2.0.2.02240 - Sony Corporation) Hidden
VAIO Original Funktion Einstellungen (HKLM\...\{7C404084-C5A6-42FF-B731-0BAC79A6E134}) (Version: 2.0.2.02240 - Sony Corporation)
VAIO Original Screen Saver (HKLM\...\{1BEF9285-5530-426B-A5F1-5836B95C7EB1}) (Version: - )
VAIO Power Management (HKLM\...\{802889F8-6AF5-45A5-9764-CA5B999E50FC}) (Version: 2.2.00.06130 - Sony Corporation)
VAIO Tender Green Wallpaper (HKLM\...\{934A3213-1CB6-4264-84A2-EE080C017BCA}) (Version: 1.0.11.10180 - Sony Corporation)
VAIO Update (HKLM\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 6.2.1.03260 - Sony Corporation)
VAIO Xblack Contents (HKLM\...\VAIO Xblack Contents) (Version: 1.0.0.0-ENU - )
VC80CRTRedist - 8.0.50727.762 (Version: 1.0.0 - DivX, Inc) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC TV Player (HKLM\...\{4937160D-9A3B-429C-A82E-645116A4EB17}) (Version: 1.0.5.0 - Kartina Digital GmbH)
VU5x86 (Version: 1.1.0 - Sony Corporation ) Hidden
WIDCOMM Bluetooth Software 6.1.0.1205 (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 6.1.0.1205 - Broadcom Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live ID-Anmelde-Assistent (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Sony Ericsson Mobile Communications (ggsemc) USB (02/22/2011 2.2.0.5) (HKLM\...\552F499C400E44850820F2525C7611BF677CAB6E) (Version: 02/22/2011 2.2.0.5 - Sony Ericsson Mobile Communications)
WinRAR 5.31 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wireless Switch Setting Utility (HKLM\...\{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}) (Version: 3.6.00.18210 - Sony Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\ProgramData\Skype\Plugins\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\ProgramData\Skype\Plugins\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Osteria\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{693566bc-21f8-401e-8d42-e2c5ce50dacc}\localserver32 -> C:\Users\Osteria\AppData\Local\Temp\{d5641912-e47a-429c-879e-cfe13eac7a13}\IDriver.NonElevated.exe = (Der Dateneintrag hat 13 mehr Zeichen).
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Osteria\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {005BA7A9-2E78-4716-A117-B76914ACFE42} - System32\Tasks\Google Updater and Installer => C:\Users\Osteria\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {0FFFEA12-A50C-4394-9598-A8E5F34D3BCF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {14981C69-225D-493E-BF06-838E358E67E5} - System32\Tasks\SONY\WSSU\WSSU => C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2007-06-15] (Sony Corporation)
Task: {2C6143D2-EC6E-4D78-88CB-1A22E26A6194} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-03-26] (Sony Corporation)
Task: {3EA6A82C-A408-4D26-82C4-5D9317E52079} - System32\Tasks\InstallShield Software-Aktualisierungsdienst => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2009-05-05] (Acresso Corporation)
Task: {41244E55-B4AF-4DD3-885D-CD4B7632006D} - System32\Tasks\MCVSurveyReminder1 => reminder.exe
Task: {412AB815-1BBF-4C85-9F96-FE9900EFFEBC} - System32\Tasks\{15DBB930-E9EE-4B20-B7D0-973B71BBF665} => Firefox.exe hxxp://ui.skype.com/ui/0/5.1.0.112/de/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;systemlevelpresent
Task: {447FA853-8633-42E3-A2C1-EE73EE002C21} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2013-03-26] (Sony Corporation)
Task: {4DF3DE62-EBD7-4D76-AED4-6365C0ECF1D3} - System32\Tasks\Automatische Problemsuche => C:\Program Files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [2009-10-30] (TuneUp Software)
Task: {4E789620-5793-430C-957B-87B0D18F7DB5} - System32\Tasks\MCVSurveyReminder4 => reminder.exe
Task: {526D90E2-7D35-4006-B283-2573E5CC145E} - System32\Tasks\MCVSurveyReminder2 => reminder.exe
Task: {5627335C-6A7B-4D92-8C41-A7905200E68B} - System32\Tasks\MCVRegistrationReminder1 => reminder.exe
Task: {67939CA1-12A5-480A-B7B8-F9591DE360B3} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-723902195-3043266244-887298501-1000Core => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {7193DD19-D48A-4F46-B604-7A87A69D80FB} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-723902195-3043266244-887298501-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2011-09-27] (RealNetworks, Inc.)
Task: {7FC326FE-0D65-493A-867B-B6847F28ECDD} - System32\Tasks\Real Networks Scheduler => c:\program files\real\realplayer\Update\realsched.exe [2011-11-08] (RealNetworks, Inc.)
Task: {84C456D6-7331-41FC-9D18-A5F732B430B8} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-723902195-3043266244-887298501-1000UA => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {93EE454A-790E-41D5-BB5D-BF9C2B55E8CC} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => C:\Program Files\TuneUp Utilities 2010\OneClick.exe [2009-10-30] (TuneUp Software)
Task: {94E1679C-67AE-4B89-BCC1-5FA71A58A700} - \{35DC3473-A719-4d14-B7C1-FD326CA84A0C} -> Keine Datei <==== ACHTUNG
Task: {97730CD7-6375-4425-80E6-16EF6623CDEC} - System32\Tasks\{D3133FF2-D4B9-4267-B206-6F7FC9F50BC7} => Firefox.exe hxxp://ui.skype.com/ui/0/4.1.0.141.259/ru/abandoninstall?source=lightinstaller&page=tsInstall&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;ienotdefaultbrowser2
Task: {9FBCAFBF-6F4B-4006-9A06-8909DAD30E6E} - System32\Tasks\{904B549D-56C3-4976-8556-7DD66913A3D9} => c:\program files\opera\opera.exe [2016-02-29] (Opera Software)
Task: {ADDE97A9-3C2A-44F7-B473-1D149D9CA926} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-08] (Adobe Systems Incorporated)
Task: {AF38E4A8-48A9-4595-B789-0C407284AC3B} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-19] (Microsoft Corporation)
Task: {B6DFF2D8-8E44-4B36-95C7-3F4C49B748FD} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-03-26] (Sony Corporation)
Task: {C568A047-39A9-4DDC-B219-82151930E4BC} - System32\Tasks\{3FCBF88E-970B-4227-B558-A38198042AFE} => pcalua.exe -a C:\Users\Osteria\AppData\Local\Temp\Low\Toolbarge.exe -d C:\Users\Osteria\Desktop -c -s -a /auto
Task: {D0CB1DF9-786D-4E14-925F-7B0E23B94BCB} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-08-04] (Oracle Corporation)
Task: {D11DE41F-3B5A-4689-B13D-1BDA6296DAC7} - System32\Tasks\{B73E1B27-225D-4017-87CB-DFF12C1431BD} => pcalua.exe -a C:\Users\Osteria\Downloads\IE8-Setup-Full.exe -d "C:\Program Files\Mozilla Firefox"
Task: {D2DC1C37-8017-412E-A7A6-8074B1CEA47B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {D5F8F6DF-D616-43F2-9BBD-29EC5B73BD34} - System32\Tasks\MCVRegistrationReminder4 => reminder.exe
Task: {D7C9F911-F30B-4D1B-AA45-3D48A64F6B38} - System32\Tasks\{93A183BB-CF77-451C-9775-EBBE435998A9} => pcalua.exe -a "C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\33G1EMHQ\ie8-setup-full_vista32[1].exe" -d C:\Users\Osteria\Desktop
Task: {D906790F-9313-477F-AEB9-EDCD1A59EEBC} - System32\Tasks\MCVRegistrationReminder3 => reminder.exe
Task: {D98F4B2B-2BA9-42FC-A438-633F86F0DA0D} - System32\Tasks\MCVSurveyReminder3 => reminder.exe
Task: {E9C848AB-AFE8-460D-8619-E05E8264AE76} - System32\Tasks\MCVRegistrationReminder2 => reminder.exe
Task: {EE2A701F-110F-4882-A5AC-64AEA4DCE7E2} - System32\Tasks\{D9281952-C68B-4AC7-9690-578E7D2B4A7F} => pcalua.exe -a "C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXVCC9JZ\IE8-Setup-Full[1].exe" -d C:\Users\Osteria\Desktop
Task: {F1741966-AAE3-4535-BBA5-4A969EDFAF31} - System32\Tasks\{64C27011-2026-41BA-940F-44C91F2AD633} => Firefox.exe hxxp://ui.skype.com/ui/0/5.0.0.123/de/go/help.faq.installer?source=lightinstaller&LastError=1618
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\0215piUpdateInfo.job => C:\ProgramData\Avg_Update_0215pi\0215pi_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\0316avUpdateInfo.job => C:\ProgramData\Avg_Update_0316av\0316av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\0715avUpdateInfo.job => C:\ProgramData\Avg_Update_0715av\0715av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\0915avUpdateInfo.job => C:\ProgramData\Avg_Update_0915av\0915av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\1015avUpdateInfo.job => C:\ProgramData\Avg_Update_1015av\1015av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\1215avUpdateInfo.job => C:\ProgramData\Avg_Update_1215av\1215av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\Adobe Acrobat Update Task.job => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AVG-SSU_0516av.job => C:\ProgramData\Avg_Update_0516av\AVG-Secure-Search-Update_0516av.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-723902195-3043266244-887298501-1000Core.job => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-723902195-3043266244-887298501-1000UA.job => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8eaa99355720.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfea364f71260a.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfff744ffba5ac.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0415ac06a6457.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f291b40b6cc.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0bf8e5541441f.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0e15e73ccc8c0.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f09af71a9ff2.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d12ec594b5fe51.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d16569e373d29f.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1ab86317ce927.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-723902195-3043266244-887298501-1000.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\Windows\Tasks\TuneUpUtilities_Task_BkGndMaintenance.job => C:\Program Files\TuneUp Utilities 2010\OneClick.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2010-03-20 15:45 - 2009-12-31 02:16 - 00049152 _____ () C:\Windows\System32\LXEBPMON.DLL
2010-03-20 15:45 - 2009-01-13 09:15 - 04485120 _____ () C:\Windows\System32\LXEBOEM.DLL
2010-03-28 01:26 - 2009-11-26 02:08 - 00049152 _____ () C:\Windows\System32\LXEEPMON.DLL
2010-03-28 01:25 - 2009-01-13 09:15 - 04485120 _____ () C:\Windows\System32\LXEEOEM.DLL
2007-07-03 10:24 - 2007-07-03 10:24 - 00126976 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2013-03-01 19:41 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2007-07-03 10:07 - 2007-07-03 10:07 - 00389120 _____ () C:\Windows\system32\btwhidcs.DLL
2007-08-16 10:42 - 2007-07-24 19:26 - 00010752 _____ () C:\Program Files\Sony\VAIO Event Service\VESBasePS.dll
2007-08-16 10:42 - 2007-07-24 19:26 - 00009728 _____ () C:\Program Files\Sony\VAIO Event Service\VESMgrSubPS.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
HKLM\...\cmdfile\DefaultIcon: %SystemRoot%\System32\imageres.dll,-68 <===== ACHTUNG
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2006-11-02 12:23 - 2013-06-27 20:39 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-723902195-3043266244-887298501-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\img36.jpg
HKU\S-1-5-21-723902195-3043266244-887298501-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\Web\Wallpaper\img24.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
MSCONFIG\startupreg: AppMon Utility => "C:\Program Files\Sony\AppMonUtil\AppMonUtility.exe" @@@Start
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: Facebook Update => "C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: NvMediaCenter => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
MSCONFIG\startupreg: PaperPort PTD => "C:\Program Files\Nuance\PaperPort\pptd40nt.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SealOne => "C:\Users\Osteria\AppData\Roaming\Seal One\SealOne.exe" /FASTRUN
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Steam => "C:\Program Files\Steam\Steam.exe" -silent
==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [{4FD287E5-BBF5-47A1-B437-080855632018}] => (Allow) C:\Program Files\Sony\VAIO Media 6.0\Vc.exe
FirewallRules: [{019D9718-A400-4742-89B8-161D174090AE}] => (Allow) C:\Program Files\Sony\VAIO Media 6.0\Vc.exe
FirewallRules: [TCP Query User{2F584AE3-28A4-4592-ACC7-5A2D8F5CD3FD}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{D65E8D0F-33D8-4F2D-9442-7D6A3CB50D0A}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{EB165B71-4653-4612-89B1-3E1EE00464B2}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [UDP Query User{875F791A-4B87-4BDD-B922-FE2476C53BE0}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [{EBFFF613-093A-414A-A76D-6B06B09CBCEC}] => (Allow) LPort=443
FirewallRules: [{E51A9E8F-A206-48E3-83B1-D25A5CEC5350}] => (Allow) LPort=443
FirewallRules: [{E6BC392F-006D-4A4E-A9DB-C08817F49A70}] => (Allow) LPort=37674
FirewallRules: [{575BF874-376D-48E2-8175-1E044D581130}] => (Allow) LPort=37674
FirewallRules: [{895702E9-00A8-41E0-BC8D-F29BF034CAA2}] => (Allow) LPort=37675
FirewallRules: [{7845FCF9-B387-415C-BD2B-77AF8775720E}] => (Allow) LPort=443
FirewallRules: [{2DABE8B9-37BF-493C-B5FC-5803F2ABE648}] => (Allow) LPort=443
FirewallRules: [{2A32E70E-3E1F-414D-B934-E6B11C8BCB87}] => (Allow) LPort=37674
FirewallRules: [{DDCDDE34-D7C2-423A-8804-A96A5B2A2D7C}] => (Allow) LPort=37674
FirewallRules: [{E09ED838-EEA0-450C-9D51-67B1359C1317}] => (Allow) LPort=37675
FirewallRules: [TCP Query User{273A99C8-3B9C-4B4E-94CA-AFACB0E8CCB6}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [UDP Query User{087DE222-B484-4AA4-A613-8623D3820A09}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [TCP Query User{F6530E7F-6BD9-4F1F-B3F3-755B03C94E17}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{E35E5AC7-0B8F-4F3E-B698-7758323A85F0}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [{4DEF3CCE-A098-4E5F-BCA6-EA4F0506C99D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{1086C55F-05DB-46DB-90B3-3C5B2BA86B0F}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{0A35A0F2-55E8-4527-9638-085B80411FBA}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{2DBB666F-8FC0-4633-9AF5-4D91D0041BCA}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{1012F961-AB27-4C5C-8EC0-7B591C2F0666}] => (Allow) C:\Program Files\Steam\steamapps\common\empire total war demo\Empire.exe
FirewallRules: [{D2238ED8-5C86-4525-A9DC-2A00A44211D1}] => (Allow) C:\Program Files\Steam\steamapps\common\empire total war demo\Empire.exe
FirewallRules: [{3D65F362-1A3C-4F6D-B3CB-E88A507AAAF2}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{22B1A053-F00B-4555-BEAE-6726F74BDC56}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D556AF65-177F-43DF-BCA5-63AACB7B195D}] => (Allow) C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe
FirewallRules: [{6500980D-3216-4178-873C-ECCC712E89D8}] => (Allow) C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe
FirewallRules: [{60760AAB-BBB9-4C2E-87CA-D70431FDC127}] => (Allow) C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe
FirewallRules: [{53666F33-28E0-4099-AED5-DE283281BBAD}] => (Allow) C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe
FirewallRules: [TCP Query User{CF0BC741-6973-45E0-8BF5-040790FF4B57}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{E47E50F8-AE2C-4B9F-AF72-EC1AB03205B9}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [{E264E545-0CB4-489F-A261-ECC04FD18E85}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{AA07C166-CC1B-45FF-835A-222D791C2DA7}] => (Allow) svchost.exe
FirewallRules: [{2986EAE6-C53E-423E-90D2-766BFBAE7046}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{00D458A0-C290-4BED-9611-3396E7A3887C}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{A2D549EC-5BC3-49F2-B484-FD9FE45B5EA3}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{9154AEFB-479D-447B-9331-EAE48FB50A57}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{A2E35D9E-7383-4499-9A30-7274D8222246}] => (Allow) LPort=80
FirewallRules: [{90BFCB9C-1222-404D-952A-AE423DF3E765}] => (Allow) LPort=80
FirewallRules: [{C8BB76D3-2646-4738-94BA-4CA122D73826}] => (Allow) LPort=80
FirewallRules: [{62FCB93B-5E60-43C9-BF6C-6C123EEB7BEF}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{93AD5143-0A54-45DB-9092-D1057A3865B0}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{9D24778F-3CEC-4ED5-B160-067773E1C04E}] => (Allow) C:\Users\Osteria\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{877723F4-CEF1-4865-9CA2-127D7958DA3F}] => (Allow) C:\Program Files\Brother\Brmfl10g\FAXRX.exe
FirewallRules: [{1ED8FB30-A5D7-43DF-8C16-D049ED805353}] => (Allow) C:\Program Files\Brother\Brmfl10g\FAXRX.exe
FirewallRules: [{91EBC06B-8895-44CF-ABB3-634CEEB70313}] => (Allow) LPort=54925
FirewallRules: [TCP Query User{3EA356BF-A9D1-4AA5-9233-255C078E4B53}C:\windows\system32\taskeng.exe] => (Block) C:\windows\system32\taskeng.exe
FirewallRules: [UDP Query User{9392FEA1-2730-414C-BC89-020F823ED9FB}C:\windows\system32\taskeng.exe] => (Block) C:\windows\system32\taskeng.exe
FirewallRules: [TCP Query User{F3E33FF7-2217-4E38-9DDE-962E28010D03}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [UDP Query User{1BA1DE04-24A7-42C9-8EB8-6A4869CD421F}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [{3CEE8F63-EF96-4CDF-947D-B3A9BA63B21C}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{55B8D8F7-7658-485C-8C14-17D11A48332A}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{C6BF6CF7-A624-4EC6-AC82-9D77D56D738A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C591ABE4-D736-4221-8D2D-C838DE2368C3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7E07E08C-A27E-4886-A158-DC69B99A4600}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{4D3B2D3C-3F71-4714-8384-7A35B09F3A8A}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{78984AA5-EC98-4F3F-8B1C-6921AC76AF3D}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{B511F8DD-E80A-4926-865A-F02D204EFD3D}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{B0A9658D-2E80-4E6E-9CF8-16BE56CBD83E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3C44C91B-FC7B-4F59-A704-6B5FC8F12CD4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3CC10A42-A057-4E6B-8A99-0425DBDD5BC2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{9695B7F8-5FD7-4C7E-A976-A1E0A19D932E}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{43F61045-E148-43D2-908C-78F032914FE1}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
==================== Wiederherstellungspunkte =========================
11-02-2016 09:16:36 Windows Update
13-02-2016 09:20:33 Windows Update
14-02-2016 09:17:19 Windows Update
09-03-2016 13:30:44 Windows Update
14-04-2016 07:17:41 Windows Update
13-05-2016 16:15:56 Windows Update
13-05-2016 16:42:41 Installed AVG
14-05-2016 03:00:42 Windows Update
17-06-2016 14:58:58 Removed AVG
17-06-2016 15:15:19 Removed AVG 2016
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Microsoft-ISATAP-Adapter #8
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #11
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #10
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #23
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #27
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (06/17/2016 03:01:50 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\SERVICE WORKER\DATABASE\LOG> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/17/2016 03:01:50 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\SERVICE WORKER\DATABASE\LOG> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/17/2016 03:01:47 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\SESSION STORAGE\LOG> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/17/2016 03:01:47 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\SESSION STORAGE\LOG> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/17/2016 03:01:42 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\DATA_REDUCTION_PROXY_LEVELDB\LOG> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/17/2016 03:01:42 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\DATA_REDUCTION_PROXY_LEVELDB\LOG> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/17/2016 02:58:40 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSION STATE\LOG> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/17/2016 02:58:40 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSION STATE\LOG> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/17/2016 02:58:33 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CURRENT SESSION> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/17/2016 02:58:33 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CURRENT SESSION> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Systemfehler:
=============
Error: (06/17/2016 02:47:49 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213660 (0xE001CA1C)
Error: (06/17/2016 02:47:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058 = Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (06/09/2016 11:57:25 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: AVGIDSAgent
Error: (06/09/2016 11:56:49 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Windows Update
Error: (06/09/2016 11:56:17 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: 30000WSearch
Error: (06/09/2016 11:45:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058 = Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (06/07/2016 12:59:11 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: 30000avgwd
Error: (06/07/2016 12:58:38 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Windows Update
Error: (06/07/2016 12:47:44 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
Error: (06/07/2016 12:40:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058 = Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
CodeIntegrity:
===================================
Date: 2016-06-17 15:10:39.159
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgunivx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-17 15:10:38.142
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgunivx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-17 15:10:37.183
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgunivx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-17 15:10:36.187
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgunivx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-17 15:10:33.773
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgidshx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-17 15:10:32.848
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgidshx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-17 15:10:31.825
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgidshx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-17 15:10:30.718
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgidshx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-17 15:10:11.076
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgidsdriverx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-17 15:10:10.152
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\AVG\Av\Drivers\avgidsdriverx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T7250 @ 2.00GHz
Prozentuale Nutzung des RAM: 59%
Installierter physikalischer RAM: 2045.7 MB
Verfügbarer physikalischer RAM: 828.07 MB
Summe virtueller Speicher: 4338.64 MB
Verfügbarer virtueller Speicher: 2199.7 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:177.4 GB) (Free:94.42 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 186.3 GB) (Disk ID: 976E47FC)
Partition 1: (Not Active) - (Size=8.9 GB) - (Type=27)
Partition 2: (Active) - (Size=177.4 GB) - (Type=07 NTFS)
==================== Ende vom Addition.txt ============================
|
|
17.06.2016, 16:57
| #2 |
| /// TB-Ausbilder   | Avira-Virus ("Gruppenrichtlinie blockiert") Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Bitte beachte folgende Hinweise:
Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Danke für deine Mitarbeit! Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter start
CloseProcesses:
HKLM Group Policy restriction on software: C:\Program Files\Malwarebytes' Anti-Malware <====== ACHTUNG
HKLM Group Policy restriction on software: C:\Program Files\Common Files\Symantec Shared <====== ACHTUNG
HKLM Group Policy restriction on software: C:\Program Files\Avira <====== ACHTUNG
HKU\S-1-5-21-723902195-3043266244-887298501-1000\...\Run: [hdgowkjq] => regsvr32.exe "
Startup: C:\Users\Osteria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\d5f8.lnk [2014-04-08]
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste mit deiner nächsten Antwort
|
|
17.06.2016, 18:56
| #3 |
| | Avira-Virus ("Gruppenrichtlinie blockiert") Danke!
__________________Fixlog: Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x86) Version:16-06-2016 01
durchgeführt von Osteria (2016-06-17 19:36:03) Run:3
Gestartet von C:\Users\Osteria\Desktop
Geladene Profile: Osteria (Verfügbare Profile: Osteria & Mcx1)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
start
CloseProcesses:
HKLM Group Policy restriction on software: C:\Program Files\Malwarebytes' Anti-Malware <====== ACHTUNG
HKLM Group Policy restriction on software: C:\Program Files\Common Files\Symantec Shared <====== ACHTUNG
HKLM Group Policy restriction on software: C:\Program Files\Avira <====== ACHTUNG
HKU\S-1-5-21-723902195-3043266244-887298501-1000\...\Run: [hdgowkjq] => regsvr32.exe "
Startup: C:\Users\Osteria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\d5f8.lnk [2014-04-08]
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
*****************
Prozess erfolgreich geschlossen.
HKLM Group Policy restriction on software: C:\Program Files\Malwarebytes' Anti-Malware <====== ACHTUNG => erfolgreich wiederhergestellt
HKLM Group Policy restriction on software: C:\Program Files\Common Files\Symantec Shared <====== ACHTUNG => erfolgreich wiederhergestellt
HKLM Group Policy restriction on software: C:\Program Files\Avira <====== ACHTUNG => erfolgreich wiederhergestellt
HKU\S-1-5-21-723902195-3043266244-887298501-1000\Software\Microsoft\Windows\CurrentVersion\Run\\hdgowkjq => Wert erfolgreich entfernt
C:\Users\Osteria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\d5f8.lnk => erfolgreich verschoben
========= RemoveProxy: =========
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Schlüssel erfolgreich entfernt
"HKU\S-1-5-21-723902195-3043266244-887298501-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Schlüssel erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-21-723902195-3043266244-887298501-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-723902195-3043266244-887298501-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
========= Ende von RemoveProxy: =========
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========= Ende von CMD: =========
========= netsh winsock reset =========
Der Winsock-Katalog wurde zur�ckgesetzt.
Sie m�ssen den Computer neu starten, um den Vorgang abzuschlie�en.
========= Ende von CMD: =========
=========== EmptyTemp: ==========
DOMStore, BITS transfer queue, thumbcache, IE frameiconcache.dat => 18029338 bytes
Java, Opera, Flash, IE recovery, Steam htmlcache, Windows/system/drivers/LocalLow Temp => 84403551 bytes
Edge => 0 bytes
Chrome => 470474485 bytes
Code:
ATTFilter 19:43:43.0532 0x0524 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
19:43:50.0515 0x0524 ============================================================
19:43:50.0516 0x0524 Current date / time: 2016/06/17 19:43:50.0515
19:43:50.0516 0x0524 SystemInfo:
19:43:50.0516 0x0524
19:43:50.0516 0x0524 OS Version: 6.0.6002 ServicePack: 2.0
19:43:50.0516 0x0524 Product type: Workstation
19:43:50.0516 0x0524 ComputerName: RANCHOGRANDE
19:43:50.0516 0x0524 UserName: Osteria
19:43:50.0516 0x0524 Windows directory: C:\Windows
19:43:50.0516 0x0524 System windows directory: C:\Windows
19:43:50.0516 0x0524 Processor architecture: Intel x86
19:43:50.0516 0x0524 Number of processors: 2
19:43:50.0516 0x0524 Page size: 0x1000
19:43:50.0516 0x0524 Boot type: Normal boot
19:43:50.0516 0x0524 ============================================================
19:44:04.0627 0x0524 KLMD registered as C:\Windows\system32\drivers\35749780.sys
19:44:06.0361 0x0524 System UUID: {240B9124-89E0-A363-39E7-EA09B5F74E25}
19:44:09.0710 0x0524 Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 ( 186.31 Gb ), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:44:10.0066 0x0524 ============================================================
19:44:10.0066 0x0524 \Device\Harddisk0\DR0:
19:44:10.0066 0x0524 MBR partitions:
19:44:10.0066 0x0524 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x11D0800, BlocksNum 0x162CE1B0
19:44:10.0066 0x0524 ============================================================
19:44:10.0156 0x0524 C: <-> \Device\Harddisk0\DR0\Partition1
19:44:10.0382 0x0524 ============================================================
19:44:10.0382 0x0524 Initialize success
19:44:10.0382 0x0524 ============================================================
19:50:27.0263 0x0340 ============================================================
19:50:27.0263 0x0340 Scan started
19:50:27.0263 0x0340 Mode: Manual; SigCheck; TDLFS;
19:50:27.0357 0x0340 ============================================================
19:50:27.0357 0x0340 KSN ping started
19:50:29.0244 0x0340 KSN ping finished: true
19:50:37.0044 0x0340 ================ Scan system memory ========================
19:50:37.0044 0x0340 System memory - ok
19:50:37.0044 0x0340 ================ Scan services =============================
19:50:37.0575 0x0340 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
19:50:39.0774 0x0340 ACPI - ok
19:50:41.0943 0x0340 [ F6CEFEF46986DE02A3AE5D93AE32B5DC, 903EC5A7B40F4F6B2F3378EFFE8DF28667B88061CDF681C44F2E4FE39B62959E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:50:42.0067 0x0340 AdobeARMservice - ok
19:50:42.0255 0x0340 [ F7AB315A4D400CA876381D1E188A2E20, B6019C2E9B6801BB23C530C66D080F47330F48ADB0DD2813D50BE1408865BD91 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:50:42.0286 0x0340 AdobeFlashPlayerUpdateSvc - ok
19:50:42.0504 0x0340 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:50:42.0551 0x0340 adp94xx - ok
19:50:42.0754 0x0340 [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:50:42.0785 0x0340 adpahci - ok
19:50:42.0879 0x0340 [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
19:50:42.0910 0x0340 adpu160m - ok
19:50:42.0972 0x0340 [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:50:42.0988 0x0340 adpu320 - ok
19:50:43.0097 0x0340 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:50:43.0705 0x0340 AeLookupSvc - ok
19:50:43.0799 0x0340 [ 4A0978779958D8FE8F5849F452BCC812, C57002A721F3DCAFB00CF4DEC57E9E761393BDB471ACEAFFDBD1ABA9AE308598 ] AFD C:\Windows\system32\drivers\afd.sys
19:50:44.0127 0x0340 AFD - ok
19:50:44.0267 0x0340 [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:50:44.0283 0x0340 agp440 - ok
19:50:44.0314 0x0340 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
19:50:44.0329 0x0340 aic78xx - ok
19:50:44.0376 0x0340 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
19:50:44.0641 0x0340 ALG - ok
19:50:44.0688 0x0340 [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide C:\Windows\system32\drivers\aliide.sys
19:50:44.0704 0x0340 aliide - ok
19:50:44.0813 0x0340 [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
19:50:44.0844 0x0340 amdagp - ok
19:50:44.0907 0x0340 [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide C:\Windows\system32\drivers\amdide.sys
19:50:44.0922 0x0340 amdide - ok
19:50:45.0047 0x0340 [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
19:50:45.0453 0x0340 AmdK7 - ok
19:50:45.0531 0x0340 [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:50:45.0640 0x0340 AmdK8 - ok
19:50:46.0061 0x0340 [ 3CBE5047BB08BD363420D68364F9E829, 7A6C59E9B98C1A50CB5FB895050127C5A433BA825D3832FC6DDA2A41AE986543 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
19:50:47.0013 0x0340 AntiVirSchedulerService - ok
19:50:47.0325 0x0340 [ 3CBE5047BB08BD363420D68364F9E829, 7A6C59E9B98C1A50CB5FB895050127C5A433BA825D3832FC6DDA2A41AE986543 ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
19:50:47.0434 0x0340 AntiVirService - ok
19:50:47.0559 0x0340 [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
19:50:47.0917 0x0340 Appinfo - ok
19:50:47.0995 0x0340 [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys
19:50:48.0027 0x0340 arc - ok
19:50:48.0136 0x0340 [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:50:48.0151 0x0340 arcsas - ok
19:50:48.0573 0x0340 [ 537B2948976F5D9B5767B74A63EBB395, 1A14F8B582E74AD15B612EDA5B707AA3CB0B2A107ED14572B4232EAA7383B634 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:50:48.0853 0x0340 aspnet_state - ok
19:50:48.0900 0x0340 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:50:49.0072 0x0340 AsyncMac - ok
19:50:49.0119 0x0340 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
19:50:49.0212 0x0340 atapi - ok
19:50:49.0290 0x0340 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:50:49.0509 0x0340 AudioEndpointBuilder - ok
19:50:49.0524 0x0340 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll
19:50:49.0555 0x0340 Audiosrv - ok
19:50:49.0665 0x0340 [ 0F0030B2C9AABCC8D1E70F1A1E9674D8, B4384E3F0BE7E68630212A7D81CD171233BB242F9720893638D0A6B496F98E6C ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
19:50:49.0696 0x0340 avgntflt - ok
19:50:49.0727 0x0340 [ 48C94CD2D3DC713C2DF1BBA93386F4CB, 20DFAAEAF8F81F84A9F5614ECEBCED0D08BBB6874078BC32D53273F064A0103A ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
19:50:49.0743 0x0340 avipbb - ok
19:50:50.0086 0x0340 [ 9C57AD1165D9F4866EBA6C18E91A8A14, E75288B3BED90CABAEE01383F8CB68719B67158FEB0FE036668693D237F275CF ] Avira.ServiceHost C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
19:50:50.0101 0x0340 Avira.ServiceHost - ok
19:50:50.0257 0x0340 [ F80F5DCA8A5D9D93CC5BE933D20CAF05, 2AFBB2D62127FACBCABBB3E78F3568A6BA016ED4A97A1490BAA29A1EFB7A4408 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
19:50:50.0273 0x0340 avkmgr - ok
19:50:50.0476 0x0340 [ 5F685973740F289BE3C809952DB8408B, 4C0A0C06BB2B6B1879A860B0D68289A55F80CF74947FCCE7815F1D8121232F62 ] BBSvc C:\Program Files\Microsoft\BingBar\7.3.132.0\BBSvc.exe
19:50:50.0507 0x0340 BBSvc - ok
19:50:50.0663 0x0340 [ 76F78018F45E7F92164CEA5020176933, 76E1CA6E198417F3749864721C43913189A7EA07B5ED320DE543B2037CEA3D65 ] BBUpdate C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.exe
19:50:50.0694 0x0340 BBUpdate - ok
19:50:50.0741 0x0340 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
19:50:50.0913 0x0340 Beep - ok
19:50:50.0991 0x0340 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
19:50:51.0225 0x0340 BFE - ok
19:50:51.0490 0x0340 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\system32\qmgr.dll
19:50:51.0771 0x0340 BITS - ok
19:50:51.0786 0x0340 blbdrive - ok
19:50:51.0833 0x0340 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:50:51.0989 0x0340 bowser - ok
19:50:52.0083 0x0340 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
19:50:52.0161 0x0340 BrFiltLo - ok
19:50:52.0207 0x0340 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
19:50:52.0332 0x0340 BrFiltUp - ok
19:50:52.0379 0x0340 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
19:50:52.0551 0x0340 Browser - ok
19:50:52.0644 0x0340 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
19:50:52.0738 0x0340 Brserid - ok
19:50:52.0785 0x0340 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
19:50:52.0863 0x0340 BrSerWdm - ok
19:50:52.0925 0x0340 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
19:50:53.0128 0x0340 BrUsbMdm - ok
19:50:53.0315 0x0340 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
19:50:53.0393 0x0340 BrUsbSer - ok
19:50:53.0533 0x0340 [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc C:\Program Files\Browny02\BrYNSvc.exe
19:50:53.0643 0x0340 BrYNSvc - detected UnsignedFile.Multi.Generic ( 1 )
19:50:54.0189 0x0340 BrYNSvc ( UnsignedFile.Multi.Generic ) - warning
19:50:54.0189 0x0340 Force sending object to P2P due to detect: BrYNSvc
19:50:54.0703 0x0340 Object send P2P result: true
19:50:55.0234 0x0340 [ 064FBC56921051DE1075495D628B815F, 4CFB6088423A99BC2D8F8EE22F761AC4168D0C37B86C3196D19E477FD25177DE ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
19:50:55.0405 0x0340 BthEnum - ok
19:50:55.0515 0x0340 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:50:55.0655 0x0340 BTHMODEM - ok
19:50:55.0702 0x0340 [ B8C3D9DDF85FD197C3E5F849FEF71144, 9DA9D7D4970814051E93288F06A6676BC4B09EF52C1E4E70541E0D9937729E84 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:50:55.0764 0x0340 BthPan - ok
19:50:55.0936 0x0340 [ B24757D9154CCA035E1BBD3DB92966D7, 49B5863EF8D2E1B380A4F58A77A4A9D32412120BDE603894033090E741D56ABA ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
19:50:56.0045 0x0340 BTHPORT - ok
19:50:56.0185 0x0340 [ A4C8377FA4A994E07075107DBE2E3DCE, C3CDAA7B83D130100044341C23897CC6C257FA075A8D08B8551F4A28AE8CE6C4 ] BthServ C:\Windows\System32\bthserv.dll
19:50:56.0497 0x0340 BthServ - ok
19:50:56.0544 0x0340 [ D42CF5F0C7635B3F1578810FE34D9E41, 41E33B6D113E717CC4B1B7DF4E684F4C1AD3FD29E5A1F11E9739CA819FB6A9DC ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
19:50:56.0731 0x0340 BTHUSB - ok
19:50:56.0794 0x0340 [ 6CA69FA57CF251E890105923AD215B99, D124DB1B0F017891FDD8D1F6E555FC525B713D77EDC68ADC2EDB3F83EBC15E4A ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
19:50:56.0809 0x0340 btwaudio - ok
19:50:56.0841 0x0340 [ 12B4A9AFA82BFE5A7D8819BF7AE20601, 66C4722647415A62BA6046A49A521CE3E1F2F32974A5286B44A9DF530D43D7B6 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
19:50:56.0856 0x0340 btwavdt - ok
19:50:56.0919 0x0340 [ D02F4D18AA4A38F781BEEFEB1892E144, A2E4E40391CEC301DE5560F8118AD5B5946739AEA01E466AB3D0431DFFBE1009 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
19:50:56.0934 0x0340 btwl2cap - ok
19:50:56.0950 0x0340 [ D5E554F6C1A3BAEB79DAF9E1684F8102, 71A2EF70F2457282D302F069E91B3CB1E082E6721E95F27F218D8BBB8509B999 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
19:50:56.0965 0x0340 btwrchid - ok
19:50:57.0605 0x0340 catchme - ok
19:50:57.0761 0x0340 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:50:57.0995 0x0340 cdfs - ok
19:50:58.0073 0x0340 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:50:58.0307 0x0340 cdrom - ok
19:50:58.0416 0x0340 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
19:50:58.0605 0x0340 CertPropSvc - ok
19:50:58.0668 0x0340 [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass C:\Windows\system32\drivers\circlass.sys
19:50:58.0777 0x0340 circlass - ok
19:50:58.0839 0x0340 [ 5D9311526801643000D7032A83B18B12, C5A98868A41446617B3A27C6C4AAFA4E7C093E253E8C1DD5DBFE6FAE21991209 ] CLFS C:\Windows\system32\CLFS.sys
19:50:58.0949 0x0340 CLFS - ok
19:50:59.0151 0x0340 [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:50:59.0229 0x0340 clr_optimization_v2.0.50727_32 - ok
19:50:59.0417 0x0340 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:50:59.0682 0x0340 clr_optimization_v4.0.30319_32 - ok
19:50:59.0760 0x0340 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:50:59.0963 0x0340 CmBatt - ok
19:51:00.0009 0x0340 [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:51:00.0025 0x0340 cmdide - ok
19:51:00.0134 0x0340 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:51:00.0243 0x0340 Compbatt - ok
19:51:00.0243 0x0340 COMSysApp - ok
19:51:00.0290 0x0340 [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:51:00.0306 0x0340 crcdisk - ok
19:51:00.0321 0x0340 [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys
19:51:00.0399 0x0340 Crusoe - ok
19:51:00.0462 0x0340 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:51:00.0555 0x0340 CryptSvc - ok
19:51:00.0649 0x0340 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:51:00.0789 0x0340 DcomLaunch - ok
19:51:00.0821 0x0340 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:51:01.0008 0x0340 DfsC - ok
19:51:01.0320 0x0340 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
19:51:01.0819 0x0340 DFSR - ok
19:51:01.0928 0x0340 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
19:51:02.0069 0x0340 Dhcp - ok
19:51:02.0131 0x0340 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
19:51:02.0271 0x0340 disk - ok
19:51:02.0349 0x0340 [ F206E28ED74C491FD5D7C0A1119CE37F, DB6AA9C9278F5F62717504F3B21BC2250EC5EB324EBEEAF01D42268D5657B83D ] DMICall C:\Windows\system32\DRIVERS\DMICall.sys
19:51:02.0365 0x0340 DMICall - ok
19:51:02.0427 0x0340 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:51:02.0537 0x0340 Dnscache - ok
19:51:02.0599 0x0340 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
19:51:02.0739 0x0340 dot3svc - ok
19:51:02.0771 0x0340 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
19:51:02.0880 0x0340 DPS - ok
19:51:02.0927 0x0340 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:51:03.0145 0x0340 drmkaud - ok
19:51:03.0270 0x0340 [ 6D2A164686B15F590DF012ABA4735888, 8A7A2656571FCFE0B56F64E5FDF48B37D101C0D3CE50A8A22481DC440CAB46D9 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:51:03.0473 0x0340 DXGKrnl - ok
19:51:03.0519 0x0340 [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
19:51:03.0613 0x0340 E1G60 - ok
19:51:03.0691 0x0340 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
19:51:03.0831 0x0340 EapHost - ok
19:51:03.0909 0x0340 [ 9BAB89DBB27891DEEF6E1F1B589A6ED4, 61BE4A6394ED5C99CB84B720F6AA6B97C7FE71A7A04D822F6EE99AB084C55606 ] Ecache C:\Windows\system32\drivers\ecache.sys
19:51:04.0050 0x0340 Ecache - ok
19:51:04.0331 0x0340 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:51:04.0487 0x0340 ehRecvr - ok
19:51:04.0565 0x0340 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
19:51:04.0861 0x0340 ehSched - ok
19:51:04.0892 0x0340 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
19:51:05.0017 0x0340 ehstart - ok
19:51:05.0079 0x0340 [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:51:05.0111 0x0340 elxstor - ok
19:51:05.0516 0x0340 [ E798C0BDFA4913CCF8A646D29BB34796, 7CDB2BCCDD8A8A70C6248C327A357EA3488C7ADED32D4F89B933ED72AE12B73B ] EMDMgmt C:\Windows\system32\emdmgmt.dll
19:51:05.0891 0x0340 EMDMgmt - ok
19:51:05.0969 0x0340 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
19:51:06.0109 0x0340 EventSystem - ok
19:51:06.0218 0x0340 [ 4B36D96340200512C7974307D0F7D8B3, 0D84D01E03025223DAE5038B6BBCF4B143DE31C76768D240393E531CAE746458 ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
19:51:06.0249 0x0340 ewusbnet - ok
19:51:06.0327 0x0340 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
19:51:06.0561 0x0340 exfat - ok
19:51:06.0608 0x0340 [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:51:06.0749 0x0340 fastfat - ok
19:51:06.0842 0x0340 [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:51:06.0936 0x0340 fdc - ok
19:51:06.0998 0x0340 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
19:51:07.0092 0x0340 fdPHost - ok
19:51:07.0139 0x0340 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
19:51:07.0279 0x0340 FDResPub - ok
19:51:07.0326 0x0340 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:51:07.0451 0x0340 FileInfo - ok
19:51:07.0513 0x0340 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:51:07.0700 0x0340 Filetrace - ok
19:51:07.0794 0x0340 [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:51:07.0887 0x0340 flpydisk - ok
19:51:08.0199 0x0340 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:51:08.0293 0x0340 FltMgr - ok
19:51:08.0496 0x0340 [ 61AC5BF24A155C95F865290F046F91EF, 89F6A96F5CBD04390CF0509DDC22E4FDC1F8AB862F23957D583A757C1E51C20B ] FontCache C:\Windows\system32\FntCache.dll
19:51:08.0777 0x0340 FontCache - ok
19:51:08.0886 0x0340 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:51:08.0964 0x0340 FontCache3.0.0.0 - ok
19:51:09.0011 0x0340 [ B74B0578FD1D3F897E95F2A2B69EA051, 64FCA8452CB37D55679AC8BEF221D6BA1D91E50680D37FFCFB81619ADAA5889C ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
19:51:09.0026 0x0340 fssfltr - ok
19:51:09.0510 0x0340 [ 45B52394F9624237F33A8A3D73C0B221, AC3E26F9D0E8A91164C54E87C9C8BFCF824A14C80D4CEF3255C6127A482F25FE ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
19:51:09.0588 0x0340 fsssvc - ok
19:51:09.0650 0x0340 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:51:09.0915 0x0340 Fs_Rec - ok
19:51:09.0962 0x0340 [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:51:09.0978 0x0340 gagp30kx - ok
19:51:10.0056 0x0340 [ F2F431D1573EE632975C524418655B84, 4AE27D0AE3A35FF18DF7E341698DF62C51698FB964395DDB69C45C778CCCC27E ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
19:51:10.0103 0x0340 GEARAspiWDM - ok
19:51:10.0181 0x0340 [ 007AEA2E06E7CEF7372E40C277163959, 805906ADC7C5473B767932A552FEC7500D0F3F7CB45D8DEFE6A1567F2038EF88 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
19:51:10.0196 0x0340 ggflt - ok
19:51:10.0259 0x0340 [ C73DE35960CA75C5AB4AE636B127C64E, 0C22EECD64CC06AB820ED6A2E76FBC7AB072379FD14837CF95BA3EF105ABB745 ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
19:51:10.0274 0x0340 ggsemc - ok
19:51:10.0399 0x0340 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
19:51:10.0586 0x0340 gpsvc - ok
19:51:10.0836 0x0340 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
19:51:10.0851 0x0340 gupdate - ok
19:51:10.0867 0x0340 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:51:10.0883 0x0340 gupdatem - ok
19:51:11.0085 0x0340 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:51:11.0241 0x0340 HdAudAddService - ok
19:51:11.0335 0x0340 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:51:11.0522 0x0340 HDAudBus - ok
19:51:11.0585 0x0340 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:51:11.0678 0x0340 HidBth - ok
19:51:11.0741 0x0340 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
19:51:11.0803 0x0340 HidIr - ok
19:51:11.0959 0x0340 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\System32\hidserv.dll
19:51:12.0068 0x0340 hidserv - ok
19:51:12.0162 0x0340 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:51:12.0287 0x0340 HidUsb - ok
19:51:12.0349 0x0340 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
19:51:12.0427 0x0340 hkmsvc - ok
19:51:12.0521 0x0340 [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
19:51:12.0536 0x0340 HpCISSs - ok
19:51:12.0645 0x0340 [ 46D67209550973257601A533E2AC5785, 3C0D97781947BA8532344AA5D9F3B684761B5B3263A0A294F4593E76EE41DB0C ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
19:51:12.0708 0x0340 HSFHWAZL - ok
19:51:13.0191 0x0340 [ 7BC42C65B5C6281777C1A7605B253BA8, 71885EB4E8625450ECA4623466FB3D5437DAABE739A5DC3B5F4CF982A65F8A86 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
19:51:13.0457 0x0340 HSF_DPV - ok
19:51:13.0550 0x0340 [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E, A11CE324DD8E8BDFFDF513429C32D3C16EC79DC9A7517048587759B26BF38583 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
19:51:13.0613 0x0340 HSXHWAZL - ok
19:51:13.0831 0x0340 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:51:14.0143 0x0340 HTTP - ok
19:51:14.0237 0x0340 [ 1FC7A63148E4F2BD831DAB0DC732026D, D963B7131F10DB2C0D7D5B37182F8EEDF0E29F9FF3DAFF80D08B2FCE42152258 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
19:51:14.0299 0x0340 hwdatacard - ok
19:51:14.0346 0x0340 [ A259D3619AA23D4562581067F85E2006, 47162CA6CDF2AE1258FC381F8C1F6FBC52A2D818282E35D111B92B94DA9D4E86 ] hwusbdev C:\Windows\system32\DRIVERS\ewusbdev.sys
19:51:14.0471 0x0340 hwusbdev - ok
19:51:14.0533 0x0340 [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys
19:51:14.0549 0x0340 i2omp - ok
19:51:14.0767 0x0340 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:51:15.0157 0x0340 i8042prt - ok
19:51:15.0282 0x0340 [ 3E42C4691AAD4B1E8D0466F9CBF05CBE, 8F53A86B97A25CE92D6A3EB9720F86308252C5B7A4BC62218FF8788229B132B8 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
19:51:15.0329 0x0340 IAANTMON - ok
19:51:15.0422 0x0340 [ 707C1692214B1C290271067197F075F6, 7D0DB754604AABC4AA09AB8BA94326B1A1C2A76F3C2C2C7D6FA14F964BE68A51 ] iaStor C:\Windows\system32\drivers\iastor.sys
19:51:15.0453 0x0340 iaStor - ok
19:51:15.0531 0x0340 [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
19:51:15.0563 0x0340 iaStorV - ok
19:51:16.0109 0x0340 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:51:16.0171 0x0340 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
19:51:16.0483 0x0340 Detect skipped due to KSN trusted
19:51:16.0483 0x0340 IDriverT - ok
19:51:16.0857 0x0340 [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:51:17.0045 0x0340 idsvc - ok
19:51:17.0076 0x0340 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:51:17.0091 0x0340 iirsp - ok
19:51:17.0341 0x0340 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
19:51:17.0575 0x0340 IKEEXT - ok
19:51:17.0825 0x0340 [ 7BD4E0428776D11C8E8E26F9F5508690, 64108320A3AFC4F7E207B2F4A9BA52E6F4A0A71606C0FEC44F0CE1C343BC2D3E ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:51:18.0121 0x0340 IntcAzAudAddService - ok
19:51:18.0168 0x0340 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
19:51:18.0183 0x0340 intelide - ok
19:51:18.0261 0x0340 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:51:18.0293 0x0340 intelppm - ok
19:51:18.0355 0x0340 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:51:18.0464 0x0340 IPBusEnum - ok
19:51:18.0511 0x0340 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:51:18.0714 0x0340 IpFilterDriver - ok
19:51:18.0823 0x0340 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:51:18.0979 0x0340 iphlpsvc - ok
19:51:18.0995 0x0340 IpInIp - ok
19:51:19.0073 0x0340 [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
19:51:19.0151 0x0340 IPMIDRV - ok
19:51:19.0525 0x0340 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
19:51:19.0681 0x0340 IPNAT - ok
19:51:19.0821 0x0340 [ E8E568EA584973DFD99AAC7D00A16287, 86CCC5EC10C17F28169CB9D393AA5A2E1812697E689000181A282E6B5F61201E ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:51:19.0868 0x0340 iPod Service - ok
19:51:19.0977 0x0340 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:51:20.0071 0x0340 IRENUM - ok
19:51:20.0133 0x0340 [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:51:20.0165 0x0340 isapnp - ok
19:51:20.0258 0x0340 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
19:51:20.0383 0x0340 iScsiPrt - ok
19:51:20.0461 0x0340 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
19:51:20.0477 0x0340 iteatapi - ok
19:51:20.0508 0x0340 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
19:51:20.0523 0x0340 iteraid - ok
19:51:20.0570 0x0340 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:51:20.0804 0x0340 kbdclass - ok
19:51:20.0898 0x0340 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:51:21.0007 0x0340 kbdhid - ok
19:51:21.0194 0x0340 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
19:51:21.0413 0x0340 KeyIso - ok
19:51:21.0522 0x0340 [ C89E473697B67F0E3AE9211ADBD43278, DECC1CA1E0FB0CDE384F29F5FC5D234C2C923999EB98FE1F88CDCA37859116A3 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:51:21.0631 0x0340 KSecDD - ok
19:51:21.0740 0x0340 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
19:51:22.0083 0x0340 KtmRm - ok
19:51:22.0161 0x0340 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\System32\srvsvc.dll
19:51:22.0364 0x0340 LanmanServer - ok
19:51:22.0411 0x0340 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:51:22.0551 0x0340 LanmanWorkstation - ok
19:51:22.0614 0x0340 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:51:22.0770 0x0340 lltdio - ok
19:51:22.0848 0x0340 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:51:23.0004 0x0340 lltdsvc - ok
19:51:23.0035 0x0340 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:51:23.0129 0x0340 lmhosts - ok
19:51:23.0207 0x0340 [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:51:23.0347 0x0340 LSI_FC - ok
19:51:23.0363 0x0340 [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:51:23.0378 0x0340 LSI_SAS - ok
19:51:23.0409 0x0340 [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:51:23.0441 0x0340 LSI_SCSI - ok
19:51:23.0487 0x0340 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
19:51:23.0675 0x0340 luafv - ok
19:51:23.0909 0x0340 [ DDCC236009C707761D60E5C76D639176, 7D88944E4DC258C9B7B23E44CAF515BBB2A6E3831CF059AC03DF2CDB3953A04C ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe
19:51:23.0940 0x0340 McComponentHostService - ok
19:51:24.0002 0x0340 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:51:24.0143 0x0340 Mcx2Svc - ok
19:51:24.0174 0x0340 [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:51:24.0221 0x0340 mdmxsdk - ok
19:51:24.0361 0x0340 [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys
19:51:24.0377 0x0340 megasas - ok
19:51:24.0439 0x0340 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
19:51:24.0611 0x0340 MMCSS - ok
19:51:24.0735 0x0340 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
19:51:24.0923 0x0340 Modem - ok
19:51:25.0001 0x0340 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:51:25.0094 0x0340 monitor - ok
19:51:25.0141 0x0340 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:51:25.0250 0x0340 mouclass - ok
19:51:25.0281 0x0340 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:51:25.0359 0x0340 mouhid - ok
19:51:25.0406 0x0340 [ 3EAE06B0D9E32A3D45DC3E07F1FBFA97, 0C56D92C5131D60AF2FCCF071976F2932A2C544C5EC4C2A5476E99CDE17FF08C ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
19:51:25.0578 0x0340 MountMgr - ok
19:51:25.0812 0x0340 [ FC9A9C09B35A93F76A03D5E355FA862C, B7ED57B9D39D547BA2927FC5F02C2475BF131FDB8AD40FFDE72C966506756B56 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:51:25.0843 0x0340 MozillaMaintenance - ok
19:51:25.0921 0x0340 [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys
19:51:25.0937 0x0340 mpio - ok
19:51:26.0030 0x0340 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:51:26.0171 0x0340 mpsdrv - ok
19:51:26.0233 0x0340 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:51:26.0451 0x0340 MpsSvc - ok
19:51:26.0545 0x0340 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
19:51:26.0561 0x0340 Mraid35x - ok
19:51:26.0685 0x0340 [ DADF6D90942C198CD15D345A9F6CF4CD, 993240684DA9EC5B45B28EEEB36B4676A0ADE5CA385C231DF7F94B81F6A69DD3 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:51:26.0888 0x0340 MRxDAV - ok
19:51:26.0966 0x0340 [ 1B864548B2ACEC1C0BB29B615CC42978, E1DA3E6764A2C7072D99F2F093E5F40DB6DC809701B59C155C6B4EE327AB9E41 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:51:27.0138 0x0340 mrxsmb - ok
19:51:27.0200 0x0340 [ 3F39B02EEDC5B8A0ED896EA1CDF7245F, 41C1DCD82F964A398B7C3D44178DBF7C8AF1C2DBC5F2D944BE6B00E909FE083B ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:51:27.0341 0x0340 mrxsmb10 - ok
19:51:27.0434 0x0340 [ D0670EC8E5AD3FA5BE372BF70AC0EABF, BD2D1BA151FD5409EAA41ECCBEB863FE52FF7C2D92349961FEE736D66970748E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:51:27.0809 0x0340 mrxsmb20 - ok
19:51:27.0855 0x0340 [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci C:\Windows\system32\drivers\msahci.sys
19:51:27.0871 0x0340 msahci - ok
19:51:28.0105 0x0340 [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D, FEA8FB1B8752660EC6174542B24D234A61EBFF8318A5855B3E5C91DB86856CAB ] MSCSPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
19:51:28.0152 0x0340 MSCSPTISRV - detected UnsignedFile.Multi.Generic ( 1 )
19:51:28.0464 0x0340 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - warning
19:51:28.0746 0x0340 [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:51:28.0761 0x0340 msdsm - ok
19:51:28.0870 0x0340 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
19:51:28.0995 0x0340 MSDTC - ok
19:51:29.0182 0x0340 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:51:29.0448 0x0340 Msfs - ok
19:51:29.0557 0x0340 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:51:29.0650 0x0340 msisadrv - ok
19:51:29.0713 0x0340 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:51:29.0853 0x0340 MSiSCSI - ok
19:51:29.0869 0x0340 msiserver - ok
19:51:29.0916 0x0340 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:51:30.0040 0x0340 MSKSSRV - ok
19:51:30.0103 0x0340 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:51:30.0212 0x0340 MSPCLOCK - ok
19:51:30.0259 0x0340 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:51:30.0368 0x0340 MSPQM - ok
19:51:30.0493 0x0340 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:51:30.0586 0x0340 MsRPC - ok
19:51:30.0664 0x0340 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
19:51:30.0774 0x0340 mssmbios - ok
19:51:30.0930 0x0340 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:51:31.0148 0x0340 MSTEE - ok
19:51:31.0226 0x0340 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
19:51:31.0257 0x0340 Mup - ok
19:51:31.0382 0x0340 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
19:51:31.0538 0x0340 napagent - ok
19:51:31.0663 0x0340 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:51:31.0803 0x0340 NativeWifiP - ok
19:51:31.0944 0x0340 [ DEC4B200C459FA929B0A764E79904B79, 40261D7D0BEE45E6E3F4F25D7ACAB00744BAF5D515B6D84B41A25ED22380DC13 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:51:32.0162 0x0340 NDIS - ok
19:51:32.0193 0x0340 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:51:32.0458 0x0340 NdisTapi - ok
19:51:32.0521 0x0340 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:51:32.0677 0x0340 Ndisuio - ok
19:51:32.0770 0x0340 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:51:32.0864 0x0340 NdisWan - ok
19:51:32.0926 0x0340 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:51:33.0114 0x0340 NDProxy - ok
19:51:33.0192 0x0340 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:51:33.0379 0x0340 NetBIOS - ok
19:51:33.0441 0x0340 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
19:51:33.0582 0x0340 netbt - ok
19:51:33.0613 0x0340 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
19:51:33.0628 0x0340 Netlogon - ok
19:51:33.0722 0x0340 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
19:51:33.0925 0x0340 Netman - ok
19:51:34.0050 0x0340 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:34.0112 0x0340 NetMsmqActivator - ok
19:51:34.0143 0x0340 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:34.0174 0x0340 NetPipeActivator - ok
19:51:34.0268 0x0340 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
19:51:34.0393 0x0340 netprofm - ok
19:51:34.0486 0x0340 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:34.0518 0x0340 NetTcpActivator - ok
19:51:34.0549 0x0340 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:34.0580 0x0340 NetTcpPortSharing - ok
19:51:35.0220 0x0340 [ 25ACCCFC33DD448B9D3037C5E439E830, CCC1CDF1E4A376996EF7DDCEE8E44D3E41D4507BE1585814C5A85B859CD49C7A ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
19:51:35.0703 0x0340 NETw4v32 - ok
19:51:35.0812 0x0340 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:51:35.0828 0x0340 nfrd960 - ok
19:51:35.0875 0x0340 [ C96411DD46AABC0D6F3CF06D0E0E7E14, 0D36F322AF1B923D96735BFFCAC3FDB0B282E59220BADAB8B49AC178A6765380 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:51:36.0078 0x0340 NlaSvc - ok
19:51:36.0140 0x0340 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:51:36.0265 0x0340 Npfs - ok
19:51:36.0312 0x0340 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
19:51:36.0452 0x0340 nsi - ok
19:51:36.0608 0x0340 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:51:36.0795 0x0340 nsiproxy - ok
19:51:37.0216 0x0340 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:51:37.0591 0x0340 Ntfs - ok
19:51:37.0700 0x0340 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
19:51:37.0887 0x0340 ntrigdigi - ok
19:51:37.0918 0x0340 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
19:51:38.0059 0x0340 Null - ok
19:51:39.0182 0x0340 [ 39D8F5A92427C57309355199592EAD9F, C52268C18FB9AF4008CE1BB3486931B41D853977AC410A161B16977838E515C1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:51:40.0258 0x0340 nvlddmkm - ok
19:51:44.0268 0x0340 [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:51:44.0361 0x0340 nvraid - ok
19:51:44.0533 0x0340 [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:51:44.0564 0x0340 nvstor - ok
19:51:44.0611 0x0340 [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:51:44.0626 0x0340 nv_agp - ok
19:51:44.0626 0x0340 NwlnkFlt - ok
19:51:44.0642 0x0340 NwlnkFwd - ok
19:51:44.0954 0x0340 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:51:45.0001 0x0340 odserv - ok
19:51:45.0141 0x0340 [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
19:51:45.0578 0x0340 ohci1394 - ok
19:51:45.0765 0x0340 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:51:45.0796 0x0340 ose - ok
19:51:46.0015 0x0340 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
19:51:46.0296 0x0340 p2pimsvc - ok
19:51:46.0420 0x0340 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
19:51:46.0982 0x0340 p2psvc - ok
19:51:47.0060 0x0340 [ 753A8F339F231D2B857E2CCD51A6E6CA, 59510E69D623B9DA725A8097A44FD210FCF05BB3BA27D5296EA4610359DA0831 ] PACSPTISVR C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
19:51:47.0138 0x0340 PACSPTISVR - detected UnsignedFile.Multi.Generic ( 1 )
19:51:47.0450 0x0340 Detect skipped due to KSN trusted
19:51:47.0450 0x0340 PACSPTISVR - ok
19:51:47.0575 0x0340 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
19:51:47.0684 0x0340 Parport - ok
19:51:47.0824 0x0340 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:51:48.0012 0x0340 partmgr - ok
19:51:48.0136 0x0340 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
19:51:48.0292 0x0340 Parvdm - ok
19:51:48.0386 0x0340 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
19:51:48.0682 0x0340 PcaSvc - ok
19:51:48.0948 0x0340 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
19:51:49.0026 0x0340 pci - ok
19:51:49.0119 0x0340 [ 3B1901E401473E03EB8C874271E50C26, 3C7931F419E29FDD0155D8D05D97289430A2852FCB3DBAD1B338FE2241458E72 ] pciide C:\Windows\system32\drivers\pciide.sys
19:51:49.0135 0x0340 pciide - ok
19:51:49.0260 0x0340 [ 3BB2244F343B610C29C98035504C9B75, DA61EC2600199DFA32020D0484E9BBF5E0742E7C8C952370BF6FAF91C914A999 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:51:49.0369 0x0340 pcmcia - ok
19:51:49.0509 0x0340 [ C1C3BAF078BE5A14384A4BA2D730817D, 6E4D2F73A1CB250B3EE270CCE806A37EB2140E34EAF9F48C45CC12D2A451AA16 ] PDFProFiltSrvPP C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
19:51:49.0915 0x0340 PDFProFiltSrvPP - ok
19:51:50.0367 0x0340 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:51:50.0664 0x0340 PEAUTH - ok
19:51:51.0475 0x0340 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
19:51:52.0270 0x0340 pla - ok
19:51:52.0395 0x0340 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:51:52.0629 0x0340 PlugPlay - ok
19:51:52.0738 0x0340 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
19:51:52.0816 0x0340 PNRPAutoReg - ok
19:51:52.0848 0x0340 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
19:51:52.0910 0x0340 PNRPsvc - ok
19:51:53.0316 0x0340 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:51:53.0503 0x0340 PolicyAgent - ok
19:51:53.0565 0x0340 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:51:53.0612 0x0340 PptpMiniport - ok
19:51:53.0674 0x0340 [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor C:\Windows\system32\drivers\processr.sys
19:51:53.0737 0x0340 Processor - ok
19:51:53.0799 0x0340 [ 0D5DAD610D7EA1627581ED06FB2BAA9A, 6E27CF3A1624AE10EECB8B5F38E03D76A6AABE4E75DD66DEDD67E0773935A396 ] ProfSvc C:\Windows\system32\profsvc.dll
19:51:53.0971 0x0340 ProfSvc - ok
19:51:54.0033 0x0340 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
19:51:54.0064 0x0340 ProtectedStorage - ok
19:51:54.0158 0x0340 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
19:51:54.0298 0x0340 PSched - ok
19:51:54.0486 0x0340 [ D86B4A68565E444D76457F14172C875A, 06B1CF81A62B3DAA8D0C5A8B88C56A504DE8E9278C520F754AF363A6676C58B0 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
19:51:54.0501 0x0340 PxHelp20 - ok
19:51:54.0876 0x0340 [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:51:54.0954 0x0340 ql2300 - ok
19:51:55.0063 0x0340 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:51:55.0078 0x0340 ql40xx - ok
19:51:55.0328 0x0340 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
19:51:55.0546 0x0340 QWAVE - ok
19:51:55.0656 0x0340 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:51:55.0687 0x0340 QWAVEdrv - ok
19:51:55.0796 0x0340 [ 9C9D24115F13AF3AEA05E1343A032BB1, 7F6916477D6A3EF5B493384CE06D41CF601AEFBBC5D5D512AF164E9EAB906917 ] R5U870FLx86 C:\Windows\system32\Drivers\R5U870FLx86.sys
19:51:55.0905 0x0340 R5U870FLx86 - ok
19:51:55.0968 0x0340 [ 18B4C879647661DE37B49C2E48D65820, 1356DB60C5ABC0EC768E41220AFA5B351CF95299D2F51063AB0860D02DB65D1D ] R5U870FUx86 C:\Windows\system32\Drivers\R5U870FUx86.sys
19:51:56.0170 0x0340 R5U870FUx86 - ok
19:51:56.0264 0x0340 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:51:56.0638 0x0340 RasAcd - ok
19:51:56.0701 0x0340 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
19:51:56.0826 0x0340 RasAuto - ok
19:51:56.0904 0x0340 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:51:57.0013 0x0340 Rasl2tp - ok
19:51:57.0122 0x0340 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
19:51:57.0294 0x0340 RasMan - ok
19:51:57.0434 0x0340 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:51:57.0808 0x0340 RasPppoe - ok
19:51:57.0933 0x0340 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:51:58.0074 0x0340 RasSstp - ok
19:51:58.0261 0x0340 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:51:58.0401 0x0340 rdbss - ok
19:51:58.0776 0x0340 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:51:58.0916 0x0340 RDPCDD - ok
19:51:59.0119 0x0340 [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
19:51:59.0197 0x0340 rdpdr - ok
19:51:59.0259 0x0340 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:51:59.0415 0x0340 RDPENCDD - ok
19:51:59.0634 0x0340 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:51:59.0805 0x0340 RDPWD - ok
19:52:00.0008 0x0340 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
19:52:00.0180 0x0340 RemoteAccess - ok
19:52:00.0304 0x0340 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:52:00.0476 0x0340 RemoteRegistry - ok
19:52:00.0663 0x0340 [ 7EC90C316177BA3F1BCE92005264B447, C588611E4BD68F8220B189CBA72929A9C4143932FEF673D2676D83B2821237C2 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:52:00.0850 0x0340 RFCOMM - ok
19:52:00.0882 0x0340 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
19:52:01.0069 0x0340 RpcLocator - ok
19:52:01.0287 0x0340 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
19:52:01.0350 0x0340 RpcSs - ok
19:52:01.0428 0x0340 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:52:01.0615 0x0340 rspndr - ok
19:52:01.0927 0x0340 [ 27CCF532A08F437FFC795158B8B7A7F6, 6ADA260044F9AC27A0EBA8ACE28D2046AE84A2F61327CA780A7A2ED309A1BE4F ] s1018bus C:\Windows\system32\DRIVERS\s1018bus.sys
19:52:01.0942 0x0340 s1018bus - ok
19:52:02.0067 0x0340 [ 2443ACA3551CFB160ECAA642F6718B99, 9BB6BE81D0A3593DFC6EEA9823D3EF3A58FE5C80991B96B7215E9FC3164827BE ] s1018mdfl C:\Windows\system32\DRIVERS\s1018mdfl.sys
19:52:02.0083 0x0340 s1018mdfl - ok
19:52:02.0130 0x0340 [ 9D273A6CF8F984097E61ECD68827D8C0, 418354248A6C24C20C4C8170CB5CE8801565096A057B252B849A2D0ADD7B2829 ] s1018mdm C:\Windows\system32\DRIVERS\s1018mdm.sys
19:52:02.0145 0x0340 s1018mdm - ok
19:52:02.0254 0x0340 [ 57D4D2EFD2F3DC4BB8A351702AE01BA5, 629FD696EC3E7943AFAE22F6EFBFBE7D2B2AA3752B2CD766090F0A5DC41B1E96 ] s1018mgmt C:\Windows\system32\DRIVERS\s1018mgmt.sys
19:52:02.0286 0x0340 s1018mgmt - ok
19:52:02.0348 0x0340 [ 2102D69ED2ED4B89A607C4E09504FB59, 651672D7BC3BFED036A396530F500300AF831375C822B8B43CF911C2CBC87EC1 ] s1018nd5 C:\Windows\system32\DRIVERS\s1018nd5.sys
19:52:02.0364 0x0340 s1018nd5 - ok
19:52:02.0442 0x0340 [ 4E2C788D013E567BD68AE4AD36485239, 28B55A1ED44C07AE24FC6522ED7C0EB84770B1115234A89645C7DD9A4432854B ] s1018unic C:\Windows\system32\DRIVERS\s1018unic.sys
19:52:04.0345 0x0340 s1018unic - ok
19:52:04.0407 0x0340 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
19:52:04.0470 0x0340 SamSs - ok
19:52:04.0563 0x0340 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:52:04.0579 0x0340 sbp2port - ok
19:52:05.0515 0x0340 [ 794D4B48DFB6E999537C7C3947863463, 93DA8AA20D6B02A3360E7F56150F126E75266E9372E6409D42B89DA588EF49C3 ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
19:52:05.0608 0x0340 SBSDWSCService - ok
19:52:05.0733 0x0340 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:52:05.0874 0x0340 SCardSvr - ok
19:52:06.0154 0x0340 [ F79CC0F814748E15538BF4D808030739, 396E94A309AFB163791095A25950CB7D85EEC43B416E1E7F056F430E1B719F4D ] Schedule C:\Windows\system32\schedsvc.dll
19:52:06.0466 0x0340 Schedule - ok
19:52:06.0529 0x0340 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
19:52:06.0560 0x0340 SCPolicySvc - ok
19:52:06.0622 0x0340 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:52:06.0794 0x0340 SDRSVC - ok
19:52:06.0903 0x0340 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:52:06.0981 0x0340 secdrv - ok
19:52:07.0106 0x0340 [ 7D7A5D3CB5AB4B394E03BDE27E6114E8, 590644469036B9C2DF3D6E56D41FD7D09D0AE5021B0FA96A8CBA873F923865C8 ] seclogon C:\Windows\system32\seclogon.dll
19:52:07.0278 0x0340 seclogon - ok
19:52:07.0465 0x0340 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\system32\sens.dll
19:52:07.0543 0x0340 SENS - ok
19:52:07.0636 0x0340 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
19:52:07.0714 0x0340 Serenum - ok
19:52:07.0855 0x0340 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
19:52:07.0964 0x0340 Serial - ok
19:52:08.0042 0x0340 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:52:08.0089 0x0340 sermouse - ok
19:52:08.0760 0x0340 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
19:52:08.0884 0x0340 SessionEnv - ok
19:52:08.0962 0x0340 [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:52:09.0072 0x0340 sffdisk - ok
19:52:09.0087 0x0340 [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:52:09.0150 0x0340 sffp_mmc - ok
19:52:09.0196 0x0340 [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:52:09.0259 0x0340 sffp_sd - ok
19:52:09.0352 0x0340 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:52:09.0508 0x0340 sfloppy - ok
19:52:09.0586 0x0340 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:52:09.0711 0x0340 SharedAccess - ok
19:52:09.0805 0x0340 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:52:09.0976 0x0340 ShellHWDetection - ok
19:52:10.0226 0x0340 [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp C:\Windows\system32\drivers\sisagp.sys
19:52:10.0320 0x0340 sisagp - ok
19:52:10.0382 0x0340 [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
19:52:10.0398 0x0340 SiSRaid2 - ok
19:52:10.0429 0x0340 [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:52:10.0444 0x0340 SiSRaid4 - ok
19:52:10.0538 0x0340 [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
19:52:10.0585 0x0340 SkypeUpdate - ok
19:52:10.0866 0x0340 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
19:52:11.0240 0x0340 slsvc - ok
19:52:11.0334 0x0340 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
19:52:11.0490 0x0340 SLUINotify - ok
19:52:11.0552 0x0340 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:52:11.0770 0x0340 Smb - ok
19:52:11.0833 0x0340 [ DB31D8989B3450569C29780E7FA98C48, 018EFDF37E45163D2D6753B86AC7DB51F835E6A7CF58B2AAFEF559E873264065 ] SNC C:\Windows\system32\Drivers\SonyNC.sys
19:52:11.0942 0x0340 SNC - ok
19:52:11.0989 0x0340 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:52:12.0082 0x0340 SNMPTRAP - ok
19:52:12.0160 0x0340 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
19:52:12.0238 0x0340 spldr - ok
19:52:12.0301 0x0340 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
19:52:12.0613 0x0340 Spooler - ok
19:52:13.0081 0x0340 [ 7F1B7C4D446CD3F926AF45B8C48BD593, A1149F97D5E8A8EAD265EEC48C1B755215391C5E751E7D7C9601A8B5BC18DA0C ] sptd C:\Windows\system32\Drivers\sptd.sys
19:52:13.0081 0x0340 Suspicious file ( NoAccess ): C:\Windows\system32\Drivers\sptd.sys. md5: 7F1B7C4D446CD3F926AF45B8C48BD593, sha256: A1149F97D5E8A8EAD265EEC48C1B755215391C5E751E7D7C9601A8B5BC18DA0C
19:52:13.0081 0x0340 sptd - detected LockedFile.Multi.Generic ( 1 )
19:52:13.0424 0x0340 Detect skipped due to KSN trusted
19:52:13.0424 0x0340 sptd - ok
19:52:13.0533 0x0340 [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1, BDCCF36D760B8B92BD8DF54C6F2992D66B76EBA1999623F60F0D68CD91D3CEE1 ] SPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
19:52:13.0596 0x0340 SPTISRV - detected UnsignedFile.Multi.Generic ( 1 )
19:52:13.0908 0x0340 SPTISRV ( UnsignedFile.Multi.Generic ) - warning
19:52:14.0344 0x0340 [ DC7E6FCD8C51AEF8FF3F2E23C786014A, 02852FC293359BA89155367FA7D3A69922EC2574E5B85C842517272768BE8808 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:52:14.0734 0x0340 srv - ok
19:52:14.0781 0x0340 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:52:15.0124 0x0340 srv2 - ok
19:52:15.0655 0x0340 [ 8AE0783E3EDCED90D4B2961887056A2B, D24168259988576B13EB2A4B2C11622A736174DDF11F6718D9A0DC9837F50EA5 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:52:15.0780 0x0340 srvnet - ok
19:52:15.0826 0x0340 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:52:15.0967 0x0340 SSDPSRV - ok
19:52:16.0170 0x0340 [ 424566865D82AA4BD8D6546C1F2065FA, 37B4C04C7C0EE0F3347A9E9F35B095478299F7324CA87AAE487BF989B0E6AE03 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
19:52:16.0201 0x0340 ssmdrv - ok
19:52:16.0388 0x0340 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:52:16.0466 0x0340 SstpSvc - ok
19:52:16.0544 0x0340 [ 7E6DD4B34ACD36AF6C711D2BDE91B040, 737C76749FE53A968E558289613A6ED5A0263F9585A47028343284F64808AC67 ] STacSV C:\Windows\system32\stacsv.exe
19:52:16.0653 0x0340 STacSV - ok
19:52:16.0700 0x0340 Steam Client Service - ok
19:52:16.0762 0x0340 [ 6A2A5E809C2C0178326D92B19EE4AAD3, B2D78857BDB72A2CB63950558CA3D5105F1857056F52BB8E9D888394CC2D06E9 ] STHDA C:\Windows\system32\drivers\stwrt.sys
19:52:16.0950 0x0340 STHDA - ok
19:52:17.0043 0x0340 [ EF70B3D22B4BFFDA6EA851ECB063EFAA, 1666572F8F988805C3A2E949FA6B060B35B72DBB115B86F4CFC710FB6A86C3E3 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
19:52:17.0168 0x0340 StillCam - ok
19:52:17.0277 0x0340 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
19:52:17.0542 0x0340 stisvc - ok
19:52:17.0839 0x0340 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
19:52:17.0854 0x0340 swenum - ok
19:52:18.0026 0x0340 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
19:52:18.0104 0x0340 swprv - ok
19:52:18.0198 0x0340 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
19:52:18.0213 0x0340 Symc8xx - ok
19:52:18.0322 0x0340 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
19:52:18.0354 0x0340 Sym_hi - ok
19:52:18.0369 0x0340 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
19:52:18.0385 0x0340 Sym_u3 - ok
19:52:18.0463 0x0340 [ 99DA94793332AADBB17BBB521AE56E21, F261DBDAF9CAA78805CA7B89DBED1EB2F948551E51A100C694FC79F0B839DE18 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
19:52:18.0494 0x0340 SynTP - ok
19:52:18.0556 0x0340 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
19:52:18.0744 0x0340 SysMain - ok
19:52:18.0837 0x0340 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:52:18.0931 0x0340 TabletInputService - ok
19:52:19.0040 0x0340 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:52:19.0149 0x0340 TapiSrv - ok
19:52:19.0196 0x0340 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
19:52:19.0321 0x0340 TBS - ok
19:52:19.0695 0x0340 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:52:19.0867 0x0340 Tcpip - ok
19:52:19.0914 0x0340 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
19:52:19.0976 0x0340 Tcpip6 - ok
19:52:20.0085 0x0340 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:52:20.0257 0x0340 tcpipreg - ok
19:52:20.0288 0x0340 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:52:20.0444 0x0340 TDPIPE - ok
19:52:20.0475 0x0340 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:52:20.0569 0x0340 TDTCP - ok
19:52:20.0631 0x0340 [ EC565DFA3D9C45D8083B72DEC5B33710, BC4F41795AF98FD87F8CC92F946E6896BAC1925A35C3E5E159E8BF4E6A34A35D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:52:20.0709 0x0340 tdx - ok
19:52:20.0740 0x0340 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
19:52:20.0818 0x0340 TermDD - ok
19:52:20.0912 0x0340 [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll
19:52:21.0115 0x0340 TermService - ok
19:52:21.0146 0x0340 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
19:52:21.0177 0x0340 Themes - ok
19:52:21.0208 0x0340 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
19:52:21.0255 0x0340 THREADORDER - ok
19:52:21.0552 0x0340 [ 909CD987B54A8179C9AEE874D754721A, E532791D8DC9B861E6486BC35C25F0263D2581F01181AE3964BC6A0503E678F8 ] ti21sony C:\Windows\system32\drivers\ti21sony.sys
19:52:21.0708 0x0340 ti21sony - ok
19:52:21.0786 0x0340 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
19:52:21.0926 0x0340 TrkWks - ok
19:52:22.0035 0x0340 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:52:22.0238 0x0340 TrustedInstaller - ok
19:52:22.0269 0x0340 TSMPacket - ok
19:52:22.0347 0x0340 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:52:22.0425 0x0340 tssecsrv - ok
19:52:22.0800 0x0340 [ 6358390595647E745D7CBB00BDF44C6D, 7041EA805C24F81B03439DB351F3CC3F2EB4725F93F530E938FE9A7503A50F3E ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
19:52:22.0878 0x0340 TuneUp.UtilitiesSvc - ok
19:52:23.0018 0x0340 [ F2107C9D85EC0DF116939CCCE06AE697, 4608E3D0CA0B252130B4DF2505DB4D89635C327A343B470FCB81B8B02CD9FA44 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
19:52:23.0049 0x0340 TuneUpUtilitiesDrv - ok
19:52:23.0143 0x0340 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
19:52:23.0236 0x0340 tunmp - ok
19:52:23.0268 0x0340 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:52:23.0392 0x0340 tunnel - ok
19:52:23.0439 0x0340 [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:52:23.0502 0x0340 uagp35 - ok
19:52:23.0642 0x0340 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:52:23.0845 0x0340 udfs - ok
19:52:23.0892 0x0340 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:52:24.0001 0x0340 UI0Detect - ok
19:52:24.0063 0x0340 [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:52:24.0141 0x0340 uliagpkx - ok
19:52:24.0172 0x0340 [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci C:\Windows\system32\drivers\uliahci.sys
19:52:24.0204 0x0340 uliahci - ok
19:52:24.0250 0x0340 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
19:52:24.0266 0x0340 UlSata - ok
19:52:24.0297 0x0340 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
19:52:24.0328 0x0340 ulsata2 - ok
19:52:24.0375 0x0340 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:52:24.0422 0x0340 umbus - ok
19:52:24.0500 0x0340 [ 88BD96A1BAEED33EE8BDF9499C07A841, 1C4DA1B34FE52B8022AB23CBF18D6B16635283625BB2D08E6524292E6009773A ] UMPass C:\Windows\system32\DRIVERS\umpass.sys
19:52:24.0656 0x0340 UMPass - ok
19:52:24.0921 0x0340 [ BB879DCFD22926EFBEB3298129898CBB, 2A24E6CD5D6E0CEA3082C0699A2371084CC1268B31BC714098EA0D0C11B3AFAC ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
19:52:24.0952 0x0340 UnlockerDriver5 - detected UnsignedFile.Multi.Generic ( 1 )
19:52:26.0575 0x0340 Detect skipped due to KSN trusted
19:52:26.0575 0x0340 UnlockerDriver5 - ok
19:52:26.0653 0x0340 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
19:52:26.0762 0x0340 upnphost - ok
19:52:26.0840 0x0340 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:52:26.0965 0x0340 usbccgp - ok
19:52:27.0027 0x0340 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:52:27.0121 0x0340 usbcir - ok
19:52:27.0168 0x0340 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:52:27.0230 0x0340 usbehci - ok
19:52:27.0277 0x0340 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:52:27.0417 0x0340 usbhub - ok
19:52:27.0448 0x0340 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:52:27.0573 0x0340 usbohci - ok
19:52:27.0838 0x0340 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:52:27.0963 0x0340 usbprint - ok
19:52:28.0026 0x0340 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:52:28.0587 0x0340 usbscan - ok
19:52:28.0806 0x0340 [ 234F76D9337BBD25D849C3860418723A, 8AC74D4FFFDEF5CCAA34BA185B45D252BAC15FE37E00515F9365878325764E7F ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:52:28.0994 0x0340 USBSTOR - ok
19:52:29.0072 0x0340 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:52:29.0243 0x0340 usbuhci - ok
19:52:29.0337 0x0340 [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
19:52:29.0509 0x0340 usbvideo - ok
19:52:29.0540 0x0340 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
19:52:29.0633 0x0340 UxSms - ok
19:52:30.0117 0x0340 [ AFBCD738DF9DE3B6D71AFC704E7F27FB, F97D41D6D0E67F3566AEAE4565EB0B0CFF145E71DE00582F45CB6FCBF61F294B ] VAIO Entertainment TV Device Arbitration Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
19:52:30.0195 0x0340 VAIO Entertainment TV Device Arbitration Service - detected UnsignedFile.Multi.Generic ( 1 )
19:52:30.0507 0x0340 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - warning
19:52:30.0507 0x0340 Force sending object to P2P due to detect: VAIO Entertainment TV Device Arbitration Service
19:52:30.0850 0x0340 Object send P2P result: true
19:52:31.0521 0x0340 [ 8A9F18ADAD471402236CA931553BF79B, D6FBECC83C5A8052C3F65A6B43BC42466212D9BE3B704CC150A8BA49E37F0291 ] VAIO Event Service C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
19:52:31.0552 0x0340 VAIO Event Service - ok
19:52:32.0535 0x0340 [ 0A4CD617ED1F03C8B7310FC4871173A4, F5DE33761CDE14A0EF134C526DDAACCE09AEFCBCA1242D91D2DE3B8159BDA62B ] VAIOMediaPlatform-IntegratedServer-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
19:52:32.0909 0x0340 VAIOMediaPlatform-IntegratedServer-AppServer - detected UnsignedFile.Multi.Generic ( 1 )
19:52:33.0237 0x0340 Detect skipped due to KSN trusted
19:52:33.0237 0x0340 VAIOMediaPlatform-IntegratedServer-AppServer - ok
19:52:33.0346 0x0340 [ 56E33AAA46CBA8431E72486196AFB3A1, 8AD1759AF582C3AF21855BEEA190FAAD297D98567130BD8FFDAF3C12168A41A7 ] VAIOMediaPlatform-IntegratedServer-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
19:52:33.0409 0x0340 VAIOMediaPlatform-IntegratedServer-HTTP - detected UnsignedFile.Multi.Generic ( 1 )
19:52:33.0721 0x0340 VAIOMediaPlatform-IntegratedServer-HTTP ( UnsignedFile.Multi.Generic ) - warning
19:52:34.0454 0x0340 [ ADDF0E4E19BD2FF0A0B852D324FDC281, 848E81C9986B9FB52652EB073852412BE02A7A97CA2A062A8D0A959865869726 ] VAIOMediaPlatform-IntegratedServer-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
19:52:34.0672 0x0340 VAIOMediaPlatform-IntegratedServer-UPnP - detected UnsignedFile.Multi.Generic ( 1 )
19:52:35.0031 0x0340 Detect skipped due to KSN trusted
19:52:35.0031 0x0340 VAIOMediaPlatform-IntegratedServer-UPnP - ok
19:52:35.0390 0x0340 [ 52D4F568FE7D05AE5026B8717EEB59EB, BF263043A756EFC4853C28A1F62FC56C43810A4734D16EBBCE6E9B71283CBE05 ] VAIOMediaPlatform-UCLS-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
19:52:35.0437 0x0340 VAIOMediaPlatform-UCLS-AppServer - detected UnsignedFile.Multi.Generic ( 1 )
19:52:35.0749 0x0340 Detect skipped due to KSN trusted
19:52:35.0749 0x0340 VAIOMediaPlatform-UCLS-AppServer - ok
19:52:36.0076 0x0340 [ 56E33AAA46CBA8431E72486196AFB3A1, 8AD1759AF582C3AF21855BEEA190FAAD297D98567130BD8FFDAF3C12168A41A7 ] VAIOMediaPlatform-UCLS-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
19:52:36.0139 0x0340 VAIOMediaPlatform-UCLS-HTTP - detected UnsignedFile.Multi.Generic ( 1 )
19:52:36.0139 0x0340 VAIOMediaPlatform-UCLS-HTTP ( UnsignedFile.Multi.Generic ) - warning
19:52:36.0794 0x0340 [ ADDF0E4E19BD2FF0A0B852D324FDC281, 848E81C9986B9FB52652EB073852412BE02A7A97CA2A062A8D0A959865869726 ] VAIOMediaPlatform-UCLS-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
19:52:37.0137 0x0340 VAIOMediaPlatform-UCLS-UPnP - detected UnsignedFile.Multi.Generic ( 1 )
19:52:37.0137 0x0340 Detect skipped due to KSN trusted
19:52:37.0137 0x0340 VAIOMediaPlatform-UCLS-UPnP - ok
19:52:37.0480 0x0340 [ 5D325B6ADD78A111BE62A3842CF05345, BBA45B0A39C4BEBF461D7271A04D13331A5035D5B8786F310BA4A5602B72D33E ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
19:52:37.0605 0x0340 VcmIAlzMgr - ok
19:52:37.0839 0x0340 [ B56CD01F36EEF2967EF18D8DF0E5C285, 796E5ECF7E06DEC9660BF941D874F17B658C18214F248AAD74FC549E079956B9 ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
19:52:37.0855 0x0340 VcmXmlIfHelper - ok
19:52:37.0886 0x0340 Vcsw - ok
19:52:38.0291 0x0340 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
19:52:38.0416 0x0340 vds - ok
19:52:38.0557 0x0340 [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:52:38.0884 0x0340 vga - ok
19:52:38.0915 0x0340 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
19:52:39.0149 0x0340 VgaSave - ok
19:52:39.0227 0x0340 [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp C:\Windows\system32\drivers\viaagp.sys
19:52:39.0243 0x0340 viaagp - ok
19:52:39.0274 0x0340 [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7 C:\Windows\system32\drivers\viac7.sys
19:52:39.0352 0x0340 ViaC7 - ok
19:52:39.0399 0x0340 [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide C:\Windows\system32\drivers\viaide.sys
19:52:39.0415 0x0340 viaide - ok
19:52:39.0742 0x0340 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:52:39.0898 0x0340 volmgr - ok
19:52:40.0023 0x0340 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:52:40.0132 0x0340 volmgrx - ok
19:52:40.0288 0x0340 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:52:40.0413 0x0340 volsnap - ok
19:52:40.0507 0x0340 [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:52:40.0522 0x0340 vsmraid - ok
19:52:40.0959 0x0340 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
19:52:41.0443 0x0340 VSS - ok
19:52:42.0425 0x0340 [ 2CF27B4C0419BFA7DFD2C8FF1A4F0D2C, 62BBB9501D368B7522A6B81E498BFBD79DFA05619B31923BAC476BDBB845B71C ] VUAgent C:\Program Files\Sony\VAIO Update\VUAgent.exe
19:52:42.0675 0x0340 VUAgent - ok
19:52:42.0971 0x0340 [ 2E785F4F92C4C67CEBB61DD55ED1F6A1, 99561DF6D1FBF8188B4E18BC9B8F5325EFB9BECB0F3FDA86D1C638A3265A3DE2 ] VzCdbSvc C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
19:52:43.0003 0x0340 VzCdbSvc - detected UnsignedFile.Multi.Generic ( 1 )
19:52:43.0361 0x0340 VzCdbSvc ( UnsignedFile.Multi.Generic ) - warning
19:52:43.0751 0x0340 [ 2D876CAD8C7FFB08179DFF361FF851E6, 331C3455B608498B36852E90968C8C8515BB4F656ADCC627A13146E893EB978E ] VzFw C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
19:52:43.0892 0x0340 VzFw - detected UnsignedFile.Multi.Generic ( 1 )
19:52:44.0204 0x0340 VzFw ( UnsignedFile.Multi.Generic ) - warning
19:52:44.0797 0x0340 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
19:52:44.0984 0x0340 W32Time - ok
19:52:45.0093 0x0340 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:52:45.0187 0x0340 WacomPen - ok
19:52:45.0218 0x0340 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
19:52:45.0343 0x0340 Wanarp - ok
19:52:45.0358 0x0340 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:52:45.0389 0x0340 Wanarpv6 - ok
19:52:45.0561 0x0340 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:52:45.0608 0x0340 wcncsvc - ok
19:52:45.0686 0x0340 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:52:45.0826 0x0340 WcsPlugInService - ok
19:52:45.0967 0x0340 [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd C:\Windows\system32\drivers\wd.sys
19:52:45.0998 0x0340 Wd - ok
19:52:46.0138 0x0340 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:52:46.0419 0x0340 Wdf01000 - ok
19:52:46.0497 0x0340 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:52:46.0669 0x0340 WdiServiceHost - ok
19:52:46.0669 0x0340 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:52:46.0715 0x0340 WdiSystemHost - ok
19:52:46.0762 0x0340 [ BB77BAA3E7FD8F1A5D092A96D37B5A2D, 880C37347091224DFB7C442252FE4A29FD7002DA6A8BA994B8CEAABC5E535593 ] WebClient C:\Windows\System32\webclnt.dll
19:52:46.0887 0x0340 WebClient - ok
19:52:47.0043 0x0340 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:52:47.0215 0x0340 Wecsvc - ok
19:52:47.0402 0x0340 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:52:47.0620 0x0340 wercplsupport - ok
19:52:47.0761 0x0340 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
19:52:47.0901 0x0340 WerSvc - ok
19:52:48.0197 0x0340 [ F9AD3A5E3FD7E0BDB18B8202B0FDD4E4, A6020D41FEA0CC76D0C3CA3A88F3E9493022CD5A549E18B02D69A482B579F339 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
19:52:48.0229 0x0340 WimFltr - ok
19:52:48.0369 0x0340 [ 5A77AC34A0FFB70CE8B35B524FEDE9BA, 711DD957AF98F1B835ECE0FEBCCF8FCC7763F1DAA232F1C9E80DE6DA123C7F33 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
19:52:49.0211 0x0340 winachsf - ok
19:52:49.0477 0x0340 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
19:52:49.0586 0x0340 WinDefend - ok
19:52:49.0601 0x0340 WinHttpAutoProxySvc - ok
19:52:49.0679 0x0340 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:52:49.0726 0x0340 Winmgmt - ok
19:52:49.0913 0x0340 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
19:52:50.0210 0x0340 WinRM - ok
19:52:50.0272 0x0340 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:52:50.0553 0x0340 Wlansvc - ok
19:52:51.0161 0x0340 [ 5144AE67D60EC653F97DDF3FEED29E77, F6238767284B2356A9F502E2ACCFAAC283FA13CBF238E98B5115A55179526B10 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:52:51.0286 0x0340 wlidsvc - ok
19:52:51.0333 0x0340 [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:52:51.0427 0x0340 WmiAcpi - ok
19:52:51.0520 0x0340 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:52:51.0551 0x0340 wmiApSrv - ok
19:52:51.0739 0x0340 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
19:52:51.0926 0x0340 WMPNetworkSvc - ok
19:52:51.0973 0x0340 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:52:52.0097 0x0340 WPCSvc - ok
19:52:52.0144 0x0340 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:52:52.0269 0x0340 WPDBusEnum - ok
19:52:52.0300 0x0340 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
19:52:52.0441 0x0340 WpdUsb - ok
19:52:53.0361 0x0340 [ C108DC20ACE05072350DBB6934E277FB, 548E6ABE4C4ADE48260FFDC7BADFD1697972EA3AE94D6576498C8A183D8CE0C8 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:52:53.0470 0x0340 WPFFontCache_v0400 - ok
19:52:53.0548 0x0340 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:52:53.0657 0x0340 ws2ifsl - ok
19:52:53.0767 0x0340 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\system32\wscsvc.dll
19:52:53.0876 0x0340 wscsvc - ok
19:52:53.0923 0x0340 [ 4422AC5ED8D4C2F0DB63E71D4C069DD7, B010DCC7B802C26A701A7DE1CA1B21D6B43D99FE88524D015C9228376B0BDA6E ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
19:52:53.0969 0x0340 WSDPrintDevice - ok
19:52:53.0969 0x0340 WSearch - ok
19:52:54.0796 0x0340 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
19:52:55.0342 0x0340 wuauserv - ok
19:52:55.0561 0x0340 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:52:55.0841 0x0340 WudfPf - ok
19:52:55.0888 0x0340 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:52:55.0935 0x0340 WUDFRd - ok
19:52:55.0982 0x0340 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:52:56.0309 0x0340 wudfsvc - ok
19:52:56.0387 0x0340 [ 88AF537264F2B818DA15479CEEAF5D7C, E0F95D6448FFB77351BB63ED444238F891B16748FD09F8BCCA23BEC4E341A96B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
19:52:56.0512 0x0340 XAudio - ok
19:52:56.0715 0x0340 [ 15A317674A08DF26BE65164D959E9203, 6EEE0D1711F37936D157651E265A65137BCBFBDA17F066C844BAA0D53558F86A ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
19:52:56.0793 0x0340 XAudioService - ok
19:52:56.0855 0x0340 [ 2D07E65ED0023BB10B13A912B27DFB1A, 9462F3BCA8C8C1D284DB483C9EFB1CB770225E912A3508D71084F1CA93927C47 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
19:52:56.0933 0x0340 yukonwlh - ok
19:52:56.0965 0x0340 ================ Scan global ===============================
19:52:57.0011 0x0340 [ 2F2DFC846D75D680B9018823A8B5EF07, DBC823CF0C659B6D7482CB080CD042EC6BBAEDB6297DB712CADA1BCEAA8A95C8 ] C:\Windows\system32\basesrv.dll
19:52:57.0089 0x0340 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
19:52:57.0214 0x0340 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
19:52:57.0355 0x0340 [ 4F0A7910FC7D8A66433FA9961EEF8BB5, 2086EDEE8CF9CC9BDBDC03018F7C28BB56172F941CB4D6F3D857BCF82B32FB6B ] C:\Windows\system32\services.exe
19:52:57.0417 0x0340 [ Global ] - ok
19:52:57.0417 0x0340 ================ Scan MBR ==================================
19:52:57.0495 0x0340 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
19:53:00.0929 0x0340 \Device\Harddisk0\DR0 - ok
19:53:00.0945 0x0340 ================ Scan VBR ==================================
19:53:00.0960 0x0340 [ 26C4B019FBD496B1B643766409CFCC2F ] \Device\Harddisk0\DR0\Partition1
19:53:01.0210 0x0340 \Device\Harddisk0\DR0\Partition1 - ok
19:53:01.0210 0x0340 ================ Scan generic autorun ======================
19:53:05.0063 0x0340 [ 82EAD5A5804BB2937416254A45B6C3C0, 68479A5FFB932C72BADDB003E7AF7253859A1BD6DDCC000EE43BEEFA8273C198 ] C:\Windows\RtHDVCpl.exe
19:53:05.0625 0x0340 RtHDVCpl - ok
19:53:07.0341 0x0340 [ 0F31EFC96FFB8B5DEA52B92271944A7B, 1143977D2F6E4E5556DBCF9E8B2B703603DD1F98FD77B3867161FFCA857197E9 ] C:\Windows\Skytel.exe
19:53:07.0684 0x0340 Skytel - ok
19:53:08.0542 0x0340 [ 5CE6D96C5210D5B0145EE39C0B8E7C8A, 1E1AE2BF5EB026E75295673E077FDED6AD0DA481170567C756046F51D2574B19 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
19:53:08.0698 0x0340 SynTPEnh - ok
19:53:08.0791 0x0340 [ D3804513FC9C11A4637392B4F0F43BC5, E23781CB1AA86EC8D761A456B1D249EB8076331B11013077A194BB567567204B ] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
19:53:08.0823 0x0340 IAAnotif - ok
19:53:08.0823 0x0340 NvSvc - ok
19:53:08.0823 0x0340 NvCplDaemon - ok
19:53:10.0429 0x0340 [ 2EED3542F86F77D56569504B37C8108A, DA91150F3FF412C5D26E5DD498073B9F6092AA6483796C3A3EE3A263E9DCCF81 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
19:53:10.0617 0x0340 Adobe ARM - ok
19:53:10.0960 0x0340 [ 5D666FC778E7754CC7103402D814809B, 7E9B205B74440D455155014EE8D6FD0D1C647B016D72A28F16709F50BC005D3F ] C:\Program Files\ControlCenter4\BrCcBoot.exe
19:53:10.0975 0x0340 ControlCenter4 - detected UnsignedFile.Multi.Generic ( 1 )
19:53:11.0303 0x0340 ControlCenter4 ( UnsignedFile.Multi.Generic ) - warning
19:53:12.0879 0x0340 [ 63E9C23A386FFFA84B5E03BFF9B628F0, A370962791EFC4B10548AAD31F89A2B288FBD5BDBF5749323C2D98C14DFB8B49 ] C:\Program Files\Browny02\Brother\BrStMonW.exe
19:53:13.0409 0x0340 BrStsMon00 - detected UnsignedFile.Multi.Generic ( 1 )
19:53:13.0721 0x0340 Detect skipped due to KSN trusted
19:53:13.0721 0x0340 BrStsMon00 - ok
19:53:15.0453 0x0340 [ 5668994A6AE925189C7D7F03BFE19C66, 269146783422D06BE2BA5D358D22B03339C102D0D5970894625C9C03BFCCB773 ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
19:53:15.0515 0x0340 avgnt - ok
19:53:15.0702 0x0340 [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
19:53:15.0718 0x0340 APSDaemon - ok
19:53:15.0874 0x0340 [ F916BA0DA28A4B4F7B1ADE76EB42F088, FB3C91D44709D039E959B275F6ECE26AF9307D272FE3E25CC41EAC259AA3B596 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
19:53:16.0248 0x0340 SunJavaUpdateSched - ok
19:53:16.0498 0x0340 [ 97B71ADAABD4E9468FCFA58E99133C42, 03AFEBBA2257BC9457B7A3976174B1CD329AE84806F794DA1ADF389E3D87F132 ] C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe
19:53:16.0529 0x0340 Avira SystrayStartTrigger - ok
19:53:18.0151 0x0340 [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe
19:53:18.0666 0x0340 ehTray.exe - ok
19:53:19.0243 0x0340 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe
19:53:19.0618 0x0340 Sidebar - ok
19:53:19.0633 0x0340 WindowsWelcomeCenter - ok
19:53:19.0696 0x0340 [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe
19:53:19.0727 0x0340 ehTray.exe - ok
19:53:19.0961 0x0340 [ AFE48F7FD7B1A681C8A3D679DFF9977A, 55390E7E592FAFC6734F4E52C15B1E6D48E1569DE64DFFD8BEB6E411557D6186 ] C:\Program Files\T-Online\WLAN-Access Finder\ToWLaAcF.exe
19:53:20.0039 0x0340 T-Online_Software_6\WLAN-Access Finder - detected UnsignedFile.Multi.Generic ( 1 )
19:53:20.0335 0x0340 Detect skipped due to KSN trusted
19:53:20.0335 0x0340 T-Online_Software_6\WLAN-Access Finder - ok
19:53:20.0398 0x0340 swg - ok
19:53:20.0694 0x0340 [ 7804172420FD2DCDCD8FCED31FD424DD, B6715499F16BE3C811EF61BA81833999977B47FD4411060A5B3B91D290817BB2 ] C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe
19:53:20.0694 0x0340 AlcoholAutomount - detected UnsignedFile.Multi.Generic ( 1 )
19:53:21.0037 0x0340 Detect skipped due to KSN trusted
19:53:21.0037 0x0340 AlcoholAutomount - ok
19:53:22.0005 0x0340 [ 9F0A78629F451BAAFE21DFCCD887F087, 1A715317CEC8700EA9A27A2222048C44AB93F56A1BF894E9BDCA4505D807CDAE ] C:\Program Files\Steam\Steam.exe
19:53:22.0441 0x0340 Steam - ok
19:53:22.0722 0x0340 [ 9EB925EDC8CF1C3D06E50E9348B54A0A, 99C1F8D40A65E1F4975B0D1180B3056712832E0E8FBE829785FDD505B6222AEA ] C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe
19:53:22.0753 0x0340 Facebook Update - ok
19:53:22.0878 0x0340 [ BA4E2510958244BEB4CAAB5430FAA994, 2D0ACCC1F0DD24CCB217EE54C5E16596635FC197AC8442B6E2C6D4637F063474 ] C:\Users\Osteria\AppData\Roaming\Seal One\SealOne.exe
19:53:22.0909 0x0340 SealOne - ok
19:53:23.0237 0x0340 [ 6BF7676296D5359AFC135A5397000053, D31B9BCB856D6EFDEA27E4D4D341FF939BCBF0E8C97786B447C2074B3C68298E ] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
19:53:23.0268 0x0340 ISUSPM - ok
19:53:23.0268 0x0340 Waiting for KSN requests completion. In queue: 4
19:53:24.0859 0x0340 AV detected via SS2: Avira Antivirus, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 15.0.15.106 ), 0x41010 ( enabled : outofdate )
19:53:25.0109 0x0340 Win FW state via NFP2: enabled ( trusted )
19:53:25.0343 0x0340 ============================================================
19:53:25.0343 0x0340 Scan finished
19:53:25.0343 0x0340 ============================================================
19:53:25.0343 0x0840 Detected object count: 9
19:53:25.0343 0x0840 Actual detected object count: 9
19:54:00.0442 0x0840 BrYNSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:54:00.0442 0x0840 BrYNSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:54:00.0442 0x0840 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
19:54:00.0442 0x0840 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:54:00.0442 0x0840 SPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
19:54:00.0442 0x0840 SPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:54:00.0442 0x0840 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - skipped by user
19:54:00.0442 0x0840 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:54:00.0442 0x0840 VAIOMediaPlatform-IntegratedServer-HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
19:54:00.0442 0x0840 VAIOMediaPlatform-IntegratedServer-HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:54:00.0442 0x0840 VAIOMediaPlatform-UCLS-HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
19:54:00.0442 0x0840 VAIOMediaPlatform-UCLS-HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:54:00.0442 0x0840 VzCdbSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:54:00.0442 0x0840 VzCdbSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:54:00.0458 0x0840 VzFw ( UnsignedFile.Multi.Generic ) - skipped by user
19:54:00.0458 0x0840 VzFw ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:54:00.0458 0x0840 ControlCenter4 ( UnsignedFile.Multi.Generic ) - skipped by user
19:54:00.0458 0x0840 ControlCenter4 ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
17.06.2016, 21:45
| #4 |
| /// TB-Ausbilder | Avira-Virus ("Gruppenrichtlinie blockiert") Servus, Schritt 1 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 2 Downloade Dir bitte  Malwarebytes Anti-Malware
Schritt 3 Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Schritt 4
Bitte poste mit deiner nächsten Antwort
|
|
18.06.2016, 17:22
| #5 |
| | Avira-Virus ("Gruppenrichtlinie blockiert") AdwCleaner Code:
ATTFilter # AdwCleaner v5.200 - Bericht erstellt am 18/06/2016 um 15:12:07
# Aktualisiert am 14/06/2016 von ToolsLib
# Datenbank : 2016-06-17.1 [Server]
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (X86)
# Benutzername : Osteria - RANCHOGRANDE
# Gestartet von : C:\Users\Osteria\Desktop\AdwCleaner_5.200.exe
# Option : Löschen
# Unterstützung : https://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner gelöscht : C:\ProgramData\apn
[-] Ordner gelöscht : C:\ProgramData\Babylon
[-] Ordner gelöscht : C:\ProgramData\Avg_Update_0316av
[-] Ordner gelöscht : C:\ProgramData\Avg_Update_0516av
[-] Ordner gelöscht : C:\ProgramData\Avg_Update_0715av
[-] Ordner gelöscht : C:\ProgramData\Avg_Update_0915av
[-] Ordner gelöscht : C:\ProgramData\Avg_Update_1015av
[-] Ordner gelöscht : C:\ProgramData\Avg_Update_1215av
[-] Ordner gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free FLV Converter
[-] Ordner gelöscht : C:\Program Files\Free FLV Converter
[-] Ordner gelöscht : C:\Users\Osteria\AppData\Local\Babylon
[-] Ordner gelöscht : C:\Users\Osteria\AppData\Local\PackageAware
[-] Ordner gelöscht : C:\Users\Osteria\AppData\Local\VirtualStore\Program Files\Free FLV Converter
[-] Ordner gelöscht : C:\Users\Osteria\AppData\Local\VirtualStore\Program Files\Live-Player
[-] Ordner gelöscht : C:\Users\Osteria\AppData\Roaming\Babylon
[-] Ordner gelöscht : C:\Users\Osteria\AppData\Roaming\Yahoo!\Companion
***** [ Dateien ] *****
[-] Datei gelöscht : C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\invalidprefs.js
[-] Datei gelöscht : C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\searchplugins\mailru.xml
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar.1
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DC97D932-ED6C-4AD3-A0D6-AA03C4C76A97}
[-] Schlüssel gelöscht : HKCU\Software\Yahoo\Companion
[-] Schlüssel gelöscht : HKCU\Software\Yahoo\YFriendsBar
[-] Schlüssel gelöscht : HKCU\Software\AppDataLow\Software\Yahoo\Companion
[-] Schlüssel gelöscht : HKCU\Software\AppDataLow\Software\Mail.Ru
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Trymedia Systems
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Yahoo\Companion
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Free FLV Converter_is1
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{08ED8855-4C2E-429B-A878-F129E1F624FA}
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A6CC2CA2-2779-4F10-88BF-A3C9EB874C24}
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Free FLV Converter_is1
[-] Schlüssel gelöscht : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-723902195-3043266244-887298501-1000\Software\Yahoo\Companion
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-723902195-3043266244-887298501-1000\Software\Mail.Ru
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
***** [ Internetbrowser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [4316 Bytes] - [18/06/2016 15:12:07]
C:\AdwCleaner\AdwCleaner[S1].txt - [5226 Bytes] - [18/06/2016 15:02:03]
C:\AdwCleaner\AdwCleaner[S2].txt - [5299 Bytes] - [18/06/2016 15:07:49]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4535 Bytes] ##########
Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 18.06.2016 Suchlaufzeit: 15:32:49 Protokolldatei: mbam.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2016.06.18.01 Rootkit-Datenbank: v2016.05.27.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows Vista Service Pack 2 CPU: x86 Dateisystem: NTFS Benutzer: Osteria Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 357831 Abgelaufene Zeit: 56 Min., 52 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Warnen PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows Vista (TM) Home Premium x86
Ran by Osteria (Administrator) on 18.06.2016 at 17:12:23,08
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 39
Successfully deleted: C:\Program Files\mozilla firefox\defaults\pref\itms.js (File)
Successfully deleted: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\defaults\custombuttons\google.com_blog_search.xml (File)
Successfully deleted: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\search.xml (File)
Successfully deleted: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\locale\ru-RU\sputnik\mail.ru.search.xml (File)
Successfully deleted: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\extensions\toolbar@mamba.ru\chrome\content\panel\focus_user.js (File)
Successfully deleted: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\MRSputnikData\mailru.xml (File)
Successfully deleted: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\searchplugins\live-search.xml (File)
Successfully deleted: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\user.js (File)
Successfully deleted: C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance (Task)
Successfully deleted: C:\Windows\Tasks\0316avUpdateInfo.job (Task)
Successfully deleted: C:\Windows\Tasks\0715avUpdateInfo.job (Task)
Successfully deleted: C:\Windows\Tasks\0915avUpdateInfo.job (Task)
Successfully deleted: C:\Windows\Tasks\1015avUpdateInfo.job (Task)
Successfully deleted: C:\Windows\Tasks\1215avUpdateInfo.job (Task)
Successfully deleted: C:\Windows\Tasks\TuneUpUtilities_Task_BkGndMaintenance.job (Task)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1S3Q32UT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8W0VQYO5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B2YHRFS3 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D17JJFRL (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ETD1RZQS (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MV43D19N (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q95W6A6V (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SR6ZLCGZ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TO51GWJI (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIMT88RH (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VQ6354HS (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZXRIFECS (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1S3Q32UT (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8W0VQYO5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B2YHRFS3 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D17JJFRL (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ETD1RZQS (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MV43D19N (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q95W6A6V (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SR6ZLCGZ (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TO51GWJI (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIMT88RH (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VQ6354HS (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZXRIFECS (Temporary Internet Files Folder)
Deleted the following from C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\prefs.js
user_pref(browser.search.selectedEngine, mail.ru: ????? ? ?????????);
Registry: 4
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{229098C5-56E2-4EED-914C-85018578CD62} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 18.06.2016 at 17:21:38,90
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:16-06-2016 01
durchgeführt von Osteria (Administrator) auf RANCHOGRANDE (18-06-2016 17:41:42)
Gestartet von C:\Users\Osteria\Desktop
Geladene Profile: Osteria & (Verfügbare Profile: Osteria & Mcx1)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 9 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
(IDT, Inc.) C:\Windows\System32\stacsv.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Safer Networking Ltd.) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.EXE
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4489216 2007-06-26] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2007-06-26] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [835584 2007-03-10] (Synaptics, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [182808 2008-07-20] (Intel Corporation)
HKLM\...\Run: [NvSvc] => RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1045720 2015-09-14] (Adobe Systems Incorporated)
HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [803200 2015-12-05] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-06-01] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\VESWinlogon: C:\Windows\system32\VESWinlogon.dll [2007-07-24] (Sony Corporation)
HKLM\...\Policies\Explorer: [NoMSAppLogo5ChannelNotify] 0
HKLM\...\Policies\Explorer: [NoBandCustomize] 0
HKU\S-1-5-21-723902195-3043266244-887298501-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Run: [T-Online_Software_6\WLAN-Access Finder] => C:\Program Files\T-Online\WLAN-Access Finder\ToWLaAcF.exe [671796 2007-07-25] (Deutsche Telekom AG, Marmiko IT-Solutions GmbH)
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Run: [AlcoholAutomount] => C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [4608 2008-11-22] ()
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Run: [Steam] => C:\Program Files\Steam\Steam.exe [1597864 2013-02-15] (Valve Corporation)
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Run: [Facebook Update] => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook Inc.)
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Run: [SealOne] => C:\Users\Osteria\AppData\Roaming\Seal One\SealOne.exe [281080 2013-11-08] (Seal One AG)
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: H - H:\AutoRun.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: {a82e91ed-3943-11e2-b03e-e5cc46a79ec7} - H:\SealOne.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: {c02e1267-10c1-11dd-994f-806e6f6e6963} - F:\start.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: {d7425f98-27ec-11e2-a23b-d08875240d2a} - H:\SealOne.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: {e3d7121a-4c17-11e0-8d2c-c752e73fe8ef} - H:\AutoRun.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: {e3d71226-4c17-11e0-8d2c-89999ec2be7f} - H:\AutoRun.exe
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\System32\vaiomov.scr [53248 2004-12-27] (Sony Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\System32\vaiomov.scr [53248 2004-12-27] (Sony Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2012-08-06]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk [2007-08-15]
ShortcutTarget: BTTray.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Osteria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Audio Filter.lnk [2011-01-11]
ShortcutTarget: Audio Filter.lnk -> C:\Program Files\Sony\SonicStage Mastering Studio\Audio Filter\SSMSFilter.exe (Sony Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6205A2CE-2A8E-4058-9D82-E4B274EB6CAB}: [DhcpNameServer] 193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{8A75E139-7BFF-4853-963B-48705599B5AF}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-723902195-3043266244-887298501-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-723902195-3043266244-887298501-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.de/
HKU\S-1-5-21-723902195-3043266244-887298501-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.club-vaio.com
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://partnerpage.google.com/eu.sony.com/de
hxxp://www.club-vaio.com/vbc
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.msn.com/?ocid=ie9hp
URLSearchHook: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 - (Kein Name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - Keine Datei
SearchScopes: HKLM -> DefaultScope Wert fehlt
SearchScopes: HKLM -> {14676E70-1FBF-474F-9D1D-F9C033049E91} URL = hxxp://www.amazon.de/gp/search?ie=UTF8&keywords={searchTerms}&tag=interactivemesuche-21&index=blended&linkCode=ur2&camp=1638&creative=6742
SearchScopes: HKLM -> {229098C5-56E2-4EED-914C-85018578CD62} URL = hxxp://suche.t-online.de/fast-cgi/tsc?mandant=toi&device=html&portallanguage=de&userlanguage=de&dia=suche&context=internet-tab&tpc=internet&ptl=std&classification=internet-tab_internet_std&q={searchTerms}&br=ie7-toi
SearchScopes: HKLM -> {FC89D558-A166-406E-82DA-ADF0DC064F0E} URL = hxxp://suche.t-online.de/fast-cgi/tsc?mandant=toi&device=html&portallanguage=de&userlanguage=de&dia=suche&context=wiki-tab&tpc=internet&ptl=std&classification=wiki-tab_internet_std&q={searchTerms}&br=ie7-toi
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {3E9F47F1-B56F-463C-A805-B77F1129C950} URL = hxxp://go.web.de/suchbox/ie_amazon/?keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {3EB9D85D-B2CB-4D57-B5E4-2555FB1CCE91} URL = hxxp://wa.ui-portal.de/webde/webde/s?produkte.browser.link.ebaysuche&s_brand=webde&t_link=ebaysuche&ns_type=clickin&ns_url=hxxp://rover.ebay.com/rover/1/707-52222-30040-5/4?mpre=hxxp://shop.ebay.de/?_sacat=See-All-Categories&_nkw={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {7FEF4122-3BEE-4E15-9A80-49B32AC89399} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IEFM1&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {8B9A1316-BC57-4547-BFFE-C9B988A95EB8} URL = hxxp://suche.web.de/search/web/?su={searchTerms}&origin=searchplugin
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1000 -> {90C922EE-CF74-44F1-BD7C-D2728272AE05} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> {229098C5-56E2-4EED-914C-85018578CD62} URL =
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> {3E9F47F1-B56F-463C-A805-B77F1129C950} URL = hxxp://go.web.de/suchbox/ie_amazon/?keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> {3EB9D85D-B2CB-4D57-B5E4-2555FB1CCE91} URL = hxxp://wa.ui-portal.de/webde/webde/s?produkte.browser.link.ebaysuche&s_brand=webde&t_link=ebaysuche&ns_type=clickin&ns_url=hxxp://rover.ebay.com/rover/1/707-52222-30040-5/4?mpre=hxxp://shop.ebay.de/?_sacat=See-All-Categories&_nkw={searchTerms}
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> {7FEF4122-3BEE-4E15-9A80-49B32AC89399} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IEFM1&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> {8B9A1316-BC57-4547-BFFE-C9B988A95EB8} URL = hxxp://suche.web.de/search/web/?su={searchTerms}&origin=searchplugin
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll [2013-02-05] (McAfee, Inc.)
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-11-08] (RealPlayer)
BHO: Windows Live Family Safety Browser Helper Class -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> C:\Program Files\Windows Live\Family Safety\fssbho.dll [2010-04-28] (Microsoft Corporation)
BHO: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Limited)
BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2012-03-15] (Sun Microsystems, Inc.)
BHO: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-12] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-15] (Sun Microsystems, Inc.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-12] (Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {25F97EB4-1C02-45BA-BA0C-E67AACE64D4A} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {09900DE8-1DCA-443F-9243-26FF581438AF} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {A057A204-BACC-4D26-8087-36EE87E26986} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {C424171E-592A-415A-9EB1-DFD6D95D3530} - Keine Datei
DPF: {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/DE-DE/a-UNO1/GAME_UNO1.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1211222955877
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} hxxp://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} hxxp://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/DigWXMSN.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-01-25] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default
FF DefaultSearchUrl: hxxp://homepage.am/?q=
FF SearchEngineOrder.1:
FF Homepage: hxxp://google.ru/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll [2014-03-08] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2009-07-13] ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2009-02-24] (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [2009-02-24] (DivX, Inc)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @java.com/DTPlugin -> C:\Program Files\Java\jre6\bin\npDeployJava1.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=12.0.1.669 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=12.0.1.669 -> c:\program files\real\realplayer\Netscape6\nprjplug.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=12.0.1.669 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=12.0.1.669 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=12.0.1.669 -> c:\program files\real\realplayer\Netscape6\nprpjplug.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=1.0.5.0 -> C:\Program Files\Kartina.TV\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\Kartina.TV\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\Kartina.TV\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-723902195-3043266244-887298501-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Osteria\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2012-10-12] (Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\libdivx.dll [2009-02-24] (The OpenSSL Project, hxxp://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdivx32.dll [2009-02-24] (DivX,Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll [2009-02-24] (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprjplug.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2011-11-08] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ssldivx.dll [2009-02-24] (The OpenSSL Project, hxxp://www.openssl.org/)
FF SearchPlugin: C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\searchplugins\mailru---.xml [2011-11-09]
FF Extension: Avira Browser Safety - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\abs@avira.com [2016-06-17]
FF Extension: Ovi maps browser plugin - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\maps@ovi.com [2010-03-19] [ist nicht signiert]
FF Extension: Бар знакомств - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\toolbar@mamba.ru [2012-03-01] [ist nicht signiert]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-05-25] [ist nicht signiert]
FF Extension: Google Toolbar for Firefox - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2011-07-02] [ist nicht signiert]
FF Extension: Спутник @Mail.Ru - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D} [2015-12-29]
FF Extension: VLC Mozilla plugin - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\{79AB5E93-0AE2-4759-891A-3F1B322F9F9A} [2010-05-25] [ist nicht signiert]
FF Extension: Google Toolbar for Firefox - C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2016-04-27] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-25] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [{79AB5E93-0AE2-4759-891A-3F1B322F9F9A}] - C:\Program Files\Kartina.TV\VLC\npvlc.dll
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2013-06-27] [ist nicht signiert]
Chrome:
=======
CHR Profile: C:\Users\Osteria\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Osteria\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-04]
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\Osteria\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2013-10-07]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Osteria\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-19]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2011-11-08]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [466408 2015-12-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [466408 2015-12-05] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [302680 2016-06-01] (Avira Operations GmbH & Co. KG)
R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [Datei ist nicht signiert]
R2 PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
R2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [1021256 2009-10-30] (TuneUp Software)
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [73728 2007-06-28] (Sony Corporation) [Datei ist nicht signiert]
R2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [182392 2007-07-24] (Sony Corporation)
S3 VAIOMediaPlatform-IntegratedServer-AppServer; C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe [2523136 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-IntegratedServer-HTTP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [397312 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-IntegratedServer-UPnP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [1089536 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-Mobile-Gateway; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe [499712 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-UCLS-AppServer; C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe [745472 2007-01-10] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-UCLS-HTTP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [397312 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VAIOMediaPlatform-UCLS-UPnP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [1089536 2007-06-20] (Sony Corporation) [Datei ist nicht signiert]
S3 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [292152 2007-07-05] (Sony Corporation)
R3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [274432 2007-06-28] (Sony Corporation) [Datei ist nicht signiert]
S3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1013808 2013-03-26] (Sony Corporation)
R2 VzCdbSvc; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [192512 2007-08-28] (Sony Corporation) [Datei ist nicht signiert]
R2 VzFw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [131072 2007-08-28] (Sony Corporation) [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106968 2015-12-05] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136272 2015-12-05] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37896 2015-05-22] (Avira Operations GmbH & Co. KG)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [716272 2008-11-22] () [Datei ist nicht signiert]
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [31848 2015-06-09] (Avira Operations GmbH & Co. KG)
R3 ti21sony; C:\Windows\System32\drivers\ti21sony.sys [812544 2007-06-06] (Texas Instruments)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [10064 2009-10-14] (TuneUp Software)
U3 aaqiagep; C:\Windows\system32\Drivers\aaqiagep.sys [0 ] (Microsoft Corporation) <==== ACHTUNG (Null Byte Datei/Ordner)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 catchme; \??\C:\Users\Osteria\AppData\Local\Temp\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 TSMPacket; system32\DRIVERS\tsmpkt.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Datei ist nicht signiert]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-18 17:41 - 2016-06-18 17:42 - 00032995 _____ C:\Users\Osteria\Desktop\FRST.txt
2016-06-18 17:21 - 2016-06-18 17:21 - 00006945 _____ C:\Users\Osteria\Desktop\JRT.txt
2016-06-18 17:01 - 2016-06-18 17:01 - 00001216 _____ C:\Users\Osteria\Desktop\mbam.txt
2016-06-18 15:30 - 2016-06-18 15:32 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-06-18 15:29 - 2016-06-18 15:29 - 00000899 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-06-18 15:29 - 2016-06-18 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-06-18 15:28 - 2016-06-18 15:28 - 00000000 ____D C:\Program Files\ Malwarebytes Anti-Malware
2016-06-18 15:28 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-06-18 15:28 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-06-18 15:17 - 2016-06-18 15:17 - 00004617 _____ C:\Users\Osteria\Desktop\AdwCleaner[C1].txt
2016-06-18 15:01 - 2016-06-18 15:12 - 00000000 ____D C:\AdwCleaner
2016-06-18 14:59 - 2016-06-18 14:59 - 03703360 _____ C:\Users\Osteria\Desktop\AdwCleaner_5.200.exe
2016-06-18 14:59 - 2016-06-18 14:59 - 01610816 _____ (Malwarebytes) C:\Users\Osteria\Desktop\JRT.exe
2016-06-18 14:58 - 2016-06-18 15:00 - 22851472 _____ (Malwarebytes ) C:\Users\Osteria\Desktop\mbam-setup-2.2.1.1043.exe
2016-06-17 19:43 - 2016-06-17 19:56 - 00218910 _____ C:\TDSSKiller.3.1.0.9_17.06.2016_19.43.43_log.txt
2016-06-17 19:39 - 2016-06-17 19:39 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Osteria\Desktop\tdsskiller.exe
2016-06-17 16:28 - 2016-06-17 16:29 - 01737216 _____ (Farbar) C:\Users\Osteria\Desktop\FRST.exe
2016-06-17 16:26 - 2016-06-17 16:26 - 02086728 _____ (Лаборатория Касперского) C:\Users\Osteria\Downloads\kfa16.0.1.445ru_9358.exe
2016-06-17 16:15 - 2016-06-17 16:15 - 00001003 _____ C:\Users\Osteria\Desktop\Avira Launcher.lnk
2016-06-17 16:15 - 2016-06-17 16:15 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-17 14:56 - 2016-06-17 14:56 - 04657056 _____ (Avira Operations GmbH & Co. KG) C:\Users\Osteria\Downloads\avira_de_av_5763f36d8c9b3__ws.exe
2016-06-07 12:54 - 2016-06-07 12:54 - 00025536 _____ C:\Users\Osteria\Downloads\MON_M_042384_20160606205417_MOfb5d7df0_0000848674_PREC (3).pdf
2016-06-07 12:54 - 2016-06-07 12:54 - 00025536 _____ C:\Users\Osteria\Downloads\MON_M_042384_20160606205417_MOfb5d7df0_0000848674_PREC (2).pdf
2016-06-07 12:51 - 2016-06-07 12:51 - 00025536 _____ C:\Users\Osteria\Downloads\MON_M_042384_20160606205417_MOfb5d7df0_0000848674_PREC.pdf
2016-06-07 12:51 - 2016-06-07 12:51 - 00025536 _____ C:\Users\Osteria\Downloads\MON_M_042384_20160606205417_MOfb5d7df0_0000848674_PREC (1).pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-18 17:41 - 2013-06-27 16:44 - 00000000 ____D C:\FRST
2016-06-18 17:09 - 2007-12-18 23:00 - 00100595 _____ C:\Users\Osteria\AppData\Roaming\nvModes.001
2016-06-18 17:05 - 2006-11-02 14:47 - 00003696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-18 17:05 - 2006-11-02 14:47 - 00003696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-18 17:05 - 2006-11-02 14:47 - 00000000 ____D C:\Windows\Setup
2016-06-18 17:03 - 2007-08-15 14:39 - 00000012 _____ C:\Windows\bthservsdp.dat
2016-06-18 17:02 - 2013-07-01 16:56 - 00000000 ____D C:\Users\Osteria\AppData\Roaming\Yhir
2016-06-18 15:29 - 2013-06-30 14:20 - 00000000 ____D C:\Users\Osteria\AppData\Roaming\Malwarebytes
2016-06-18 15:29 - 2013-06-30 14:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-06-18 15:13 - 2007-12-27 04:26 - 00000000 ____D C:\Users\Osteria\AppData\Roaming\Yahoo!
2016-06-18 15:04 - 2013-03-29 00:56 - 00000000 ____D C:\Users\Osteria\AppData\Roaming\Avira
2016-06-17 19:28 - 2016-05-13 16:17 - 00000000 ____D C:\ProgramData\Avg
2016-06-17 19:28 - 2015-05-25 08:06 - 00000000 ____D C:\Users\Osteria\AppData\Local\Avg
2016-06-17 19:28 - 2015-03-29 15:33 - 00000000 ____D C:\ProgramData\MFAData
2016-06-17 16:15 - 2015-03-29 13:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-06-17 16:15 - 2013-03-28 23:50 - 00000000 ____D C:\ProgramData\Avira
2016-06-17 16:15 - 2013-03-28 23:50 - 00000000 ____D C:\Program Files\Avira
2016-06-17 15:17 - 2016-02-22 21:41 - 00000000 ____D C:\Users\Osteria\AppData\Local\AvgSetupLog
2016-06-17 15:13 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\inf
2016-05-28 18:12 - 2015-08-09 18:25 - 00000000 ____D C:\Users\Osteria\Desktop\VN Gastro GmbH
2016-05-25 18:56 - 2006-11-02 17:33 - 08904078 _____ C:\Windows\system32\perfh007.dat
2016-05-25 18:56 - 2006-11-02 17:33 - 02863636 _____ C:\Windows\system32\perfc007.dat
2016-05-25 18:56 - 2006-11-02 12:33 - 00006634 _____ C:\Windows\system32\PerfStringBackup.INI
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2007-12-18 23:00 - 2016-06-18 17:09 - 0100595 _____ () C:\Users\Osteria\AppData\Roaming\nvModes.001
2007-12-18 23:00 - 2012-03-05 16:48 - 0100595 _____ () C:\Users\Osteria\AppData\Roaming\nvModes.dat
2008-01-05 03:46 - 2010-07-26 20:26 - 0025773 _____ () C:\Users\Osteria\AppData\Roaming\UserTile.png
2009-01-04 23:24 - 2009-01-04 23:24 - 0000000 _____ () C:\Users\Osteria\AppData\Roaming\wklnhst.dat
2007-12-18 23:00 - 2014-10-24 09:23 - 0007592 _____ () C:\Users\Osteria\AppData\Local\d3d9caps.dat
2007-12-18 23:00 - 2012-05-29 21:58 - 0065024 _____ () C:\Users\Osteria\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-09-09 18:56 - 2009-10-15 12:53 - 0000093 _____ () C:\Users\Osteria\AppData\Local\jmxddilo.bat
2008-11-18 14:47 - 2009-02-17 23:14 - 0000092 _____ () C:\Users\Osteria\AppData\Local\msafciou.bat
2012-08-04 19:10 - 2012-08-04 19:10 - 0000752 _____ () C:\Users\Osteria\AppData\Local\recently-used.xbel
2009-10-15 22:36 - 2009-10-30 12:39 - 0000092 _____ () C:\Users\Osteria\AppData\Local\xiscnxar.bat
2011-07-23 14:06 - 2011-07-23 14:06 - 0000000 _____ () C:\Users\Osteria\AppData\Local\{F801315B-3A8A-4B33-9579-619C263FBCAC}
2007-12-21 07:33 - 2007-12-21 07:33 - 0000305 _____ () C:\ProgramData\addr_file.html
2010-03-20 15:39 - 2010-03-20 15:39 - 0000000 _____ () C:\ProgramData\cmn_upld.log
2008-01-03 19:06 - 2008-01-03 19:06 - 0000032 _____ () C:\ProgramData\ezsid.dat
2010-03-20 16:07 - 2013-03-30 11:25 - 0000504 _____ () C:\ProgramData\FastPics.log
2014-03-06 11:19 - 2014-03-06 11:19 - 95027928 ____T () C:\ProgramData\gerjttd.fee
2010-09-25 02:54 - 2013-02-27 10:15 - 0056196 _____ () C:\ProgramData\lxeb.log
2010-03-20 16:21 - 2010-03-27 12:58 - 0010868 _____ () C:\ProgramData\lxebJSW.log
2010-03-20 15:47 - 2013-03-30 11:21 - 0309838 _____ () C:\ProgramData\lxebscan.log
2010-07-17 16:12 - 2013-03-28 16:00 - 0058619 _____ () C:\ProgramData\lxee.log
2010-03-28 01:50 - 2011-12-20 22:38 - 0077042 _____ () C:\ProgramData\lxeeJSW.log
2010-03-28 01:27 - 2013-03-30 11:25 - 0318032 _____ () C:\ProgramData\lxeescan.log
2010-03-20 15:39 - 2010-03-20 15:39 - 0000000 _____ () C:\ProgramData\LxWbGwLog.log
2010-03-20 15:39 - 2010-03-20 15:39 - 0000000 _____ () C:\ProgramData\UpdaterLog.txt
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\ezsid.dat
C:\ProgramData\gerjttd.fee
Einige Dateien in TEMP:
====================
C:\Users\Osteria\AppData\Local\temp\avg-0b7ede44-b883-4237-a1f8-b61429d79163.exe
C:\Users\Osteria\AppData\Local\temp\avg-5fd1444a-745a-480a-8071-6f6a05d92635.exe
C:\Users\Osteria\AppData\Local\temp\avgnt.exe
C:\Users\Osteria\AppData\Local\temp\avguirn_081023301489.exe
C:\Users\Osteria\AppData\Local\temp\jre-8u51-windows-au.exe
C:\Users\Osteria\AppData\Local\temp\jre-8u60-windows-au.exe
C:\Users\Osteria\AppData\Local\temp\libeay32.dll
C:\Users\Osteria\AppData\Local\temp\msvcr120.dll
C:\Users\Osteria\AppData\Local\temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-06-18 17:27
==================== Ende vom FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:16-06-2016 01
durchgeführt von Osteria (2016-06-18 17:44:46)
Gestartet von C:\Users\Osteria\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) (2007-12-18 20:47:33)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-723902195-3043266244-887298501-500 - Administrator - Disabled)
Gast (S-1-5-21-723902195-3043266244-887298501-501 - Limited - Disabled)
Mcx1 (S-1-5-21-723902195-3043266244-887298501-1001 - Administrator - Enabled) => C:\Users\Mcx1
Osteria (S-1-5-21-723902195-3043266244-887298501-1000 - Administrator - Enabled) => C:\Users\Osteria
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Out of date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Out of date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 15.14 (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
ABBYY FineReader 6.0 Sprint (HKLM\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.2146.41621 - ABBYY Software House)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.7.700.224 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Illustrator CS (HKLM\...\{91A4AD99-69CE-4745-97B7-0E0DFBECFDE5}) (Version: 11 - Adobe Systems, Inc.)
Adobe Reader X (10.1.16) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Adobe SVG Viewer 3.0 (HKLM\...\Adobe SVG Viewer) (Version: 3.0 - Adobe Systems, Inc.)
Alice Software 4.9.2 (HKLM\...\Alice Software) (Version: 4.9.2 - HanseNet Telekommunikation GmbH)
Apple Application Support (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AppMon Utility (HKLM\...\{09A84598-E18A-4E7B-A49A-E19BB8D5C648}) (Version: 2.2.00.07120 - Sony Corporation)
ArcSoft Magic-i Visual Effects Installer (HKLM\...\{9AB83A3C-604D-4B4F-AA25-A23A3FC39844}) (Version: - ArcSoft)
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 15.0.8.656 - Avira)
Avira Launcher (HKLM\...\{3d9e0476-943f-4962-99dc-b9c937a43840}) (Version: 1.1.65.9690 - Avira Operations GmbH & Co. KG)
Avira Launcher (Version: 1.1.65.9690 - Avira Operations GmbH & Co. KG) Hidden
Benutzerdefinierte Voreinstellungen für SonicStage Mastering Studio Audio Filter (HKLM\...\{EC37A846-53AC-4DA7-98FA-76A4E74AA900}) (Version: 2.3 - Sony Corporation)
Bing Bar (HKLM\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
Brother MFL-Pro Suite MFC-J6510DW (HKLM\...\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CASIO Easy Programming (HKLM\...\CASIO Easy Programming) (Version: 3.14.9999 - CASIO Europe GmbH)
CASIO Easy Programming (Version: 3.14.9999 - CASIO Europe GmbH) Hidden
CASIO Easy Store Fiskal (HKLM\...\CASIO Easy Store Fiskal) (Version: 4.3.3 - CASIO Europe GmbH)
CASIO Easy Store Fiskal (Version: 4.3.3 - CASIO Europe GmbH) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
Click to DVD 2.0.05 Menu Data (HKLM\...\{9E407618-D9CD-4F39-9490-9ED45294073D}) (Version: 2.0.05 - Sony Corporation)
Click to DVD 2.6.00 (HKLM\...\{E809063C-51A3-4269-8984-D1EB742F2151}) (Version: 2.6.00 - Sony Corporation)
DHTML Editing Component (HKLM\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)
DivX Codec (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.8.5 - DivX, Inc.)
DivX Converter (HKLM\...\{B13A7C41581B411290FBC0395694E2A9}) (Version: 7.0.0 - DivX, Inc.)
DivX Player (HKLM\...\{8ADFC4160D694100B5B8A22DE9DCABD9}) (Version: 7.1.0 - DivX, Inc.)
DivX Plus DirectShow Filters (HKLM\...\DivX Plus DirectShow Filters) (Version: - DivX, Inc.)
DivX Web Player (HKLM\...\{B7050CBDB2504B34BC2A9CA0A692CC29}) (Version: 1.4.3 - DivX,Inc.)
doPDF 6.2 printer (HKLM\...\doPDF 6 printer_is1) (Version: - Softland)
DSD Direct (HKLM\...\{82D5BACA-3619-4D34-99DB-3A65CFB4DA33}) (Version: 2.0.01 - Sony Corporation)
DSD Direct Player (HKLM\...\{533D0A8A-D7E7-4F15-BC9E-FF2916A6BAA7}) (Version: 1.0 - Sony Corporation)
DSD Playback Plug-in (HKLM\...\{009E7FB7-1775-4D89-8956-F5C9A1C019FC}) (Version: 1.1 - Sony Corporation)
EasyBits GO (HKU\S-1-5-21-723902195-3043266244-887298501-1000\...\Game Organizer) (Version: - EasyBits Media)
EasyBits GO (HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Game Organizer) (Version: - EasyBits Media)
Empire: Total War Demo (HKLM\...\Steam App 10620) (Version: - The Creative Assembly)
Facebook Video Calling 1.2.0.287 (HKLM\...\{B92C5909-1D37-4C51-8397-A28BB28E5DC3}) (Version: 1.2.287 - Skype Limited)
GearDrvs (Version: 1 - Symantec Corporation) Hidden
Gemeinsam genutzte Internet-Komponenten von Westwood (HKLM\...\WOLAPI) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Earth (HKLM\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Toolbar for Firefox (HKLM\...\{2CCBABCB-6427-4A55-B091-49864623C43F}) (Version: 7.1.20101113b1 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.30.3 - Google Inc.) Hidden
HDAUDIO SoftV92 Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_104D0200) (Version: - )
IDT Audio (HKLM\...\{07D8511D-C9FE-4A93-933F-EAA5C8F20095}) (Version: 5.10.5303.0 - IDT)
Inkscape 0.48.3.1 (HKLM\...\Inkscape) (Version: 0.48.3.1 - )
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
iTunes (HKLM\...\{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944}) (Version: 8.2.1.6 - Apple Inc.)
Java(TM) 6 Update 22 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
JNLP (HKU\S-1-5-21-723902195-3043266244-887298501-1000\...\JNLP) (Version: - JNLP)
Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Lexmark Tools for Office (HKLM\...\{10812DE7-2E57-4740-B226-6B3BE34AF9D7}) (Version: 1.29.0.0 - )
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.0.318.3 - McAfee, Inc.)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM\...\{4EA2F95F-A537-4d17-9E7F-6B3FF8D9BBE3}) (Version: 08.05.0822 - Microsoft Corporation)
Mobile Partner (HKLM\...\Mobile Partner) (Version: 16.002.03.01.40 - Huawei Technologies Co.,Ltd)
Mozilla Firefox 46.0.1 (x86 ru) (HKLM\...\Mozilla Firefox 46.0.1 (x86 ru)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser und SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Norton 360 (Version: 1.2.0.10 - Symantec Corporation) Hidden
Nuance PaperPort 12 (HKLM\...\{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}) (Version: 12.1.0000 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
OpenMG Limited Patch 4.7-07-15-19-01 (HKLM\...\OpenMG HotFix4.7-07-13-22-01) (Version: - )
OpenMG Secure Module 4.7.00 (HKLM\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140 - Sony Corporation) Hidden
OpenOffice.org 3.3 (HKLM\...\{4286716B-1287-48E7-9078-3DC8248DBA96}) (Version: 3.3.9567 - OpenOffice.org)
Opera 12.18 (HKLM\...\Opera 12.18.1872) (Version: 12.18.1872 - Opera Software ASA)
Paint.NET v3.5.8 (HKLM\...\{9CF4A37B-A8C4-44D7-8C53-13B9D9594BB2}) (Version: 3.58.0 - dotPDN LLC)
Premiere Internet TV Version 1.3.0 (HKLM\...\Premiere Internet TV_is1) (Version: - Premiere Interactive GmbH)
Python 3.2.2 (HKLM\...\{4CDE3168-D060-4b7c-BC74-4D8F9BB01AFD}) (Version: 3.2.2150 - Python Software Foundation)
QuickTime (HKLM\...\{C78EAC6F-7A73-452E-8134-DBB2165C5A68}) (Version: 7.62.14.0 - Apple Inc.)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM\...\RealPlayer 12.0) (Version: - RealNetworks)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5433 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Roxio Easy Media Creator Home (HKLM\...\{B7FB0C86-41A4-4402-9A33-912C462042A0}) (Version: 9.0.178 - Roxio)
Scansoft PDF Professional (Version: - ) Hidden
Setting Utility Series (HKLM\...\{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}) (Version: 3.0.00.07240 - Sony Corporation)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SonicStage Mastering Studio (HKLM\...\{6332AFF1-9D9A-429C-AA03-F82749FA4F49}) (Version: 2.3.01 - Sony Corporation)
SonicStage Mastering Studio (Version: 2.3.01 - Sony Corporation) Hidden
SonicStage Mastering Studio Audio Filter (HKLM\...\{DF7DB916-90E5-40F2-9010-B8125EB5FD6F}) (Version: 2.3.01 - Sony Corporation)
SonicStage Mastering Studio Plugins (HKLM\...\{9C1C8A04-F8CA-4472-A92D-4288CE32DE86}) (Version: 2.4 - Sony Corporation)
Sony Ericsson Media Manager 1.2 (HKLM\...\{98EA51C9-B0B0-45BC-8641-3E119EA47D7B}) (Version: 1.2.610 - Sony Ericsson)
Sony Video Shared Library (HKLM\...\{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}) (Version: 3.2.00 - Sony Corporation)
Spelling Dictionaries Support For Adobe Reader 8 (HKLM\...\{AC76BA86-7AD7-5464-3428-800000000003}) (Version: 8.0.0 - Adobe Systems)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 9.1.13.0 - Synaptics)
T-Online WLAN-Access Finder (HKLM\...\{295C31E5-3F91-498E-9623-DA24D2FA2B6A}) (Version: - )
TuneUp Utilities (HKLM\...\TuneUp Utilities) (Version: 9.0.2000.15 - TuneUp Software)
TuneUp Utilities (Version: 9.0.2000.15 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (Version: 9.0.2000.15 - TuneUp Software) Hidden
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VAIO Aqua Breeze Wallpaper (HKLM\...\{97BCD719-6ECB-458F-97D6-F38D2E07375E}) (Version: 1.0.11.13240 - Sony Corporation)
VAIO Azure Float Wallpaper (HKLM\...\{0312BD0D-A1FE-4E1A-9208-D436F566D867}) (Version: 1.0.00.10100 - Sony Corporation)
VAIO Camera Capture Utility (HKLM\...\{6D2576EC-A0E9-418A-A09A-409933A3B6F4}) (Version: 2.7.01.08030 - Sony Corporation)
VAIO Content Folder Setting (HKLM\...\{23825B69-36DF-4DAD-9CFD-118D11D80F16}) (Version: 1.1.02.11070 - Sony Corporation)
VAIO Content Importer VAIO Content Exporter (Version: 1.2.00.06270 - Sony Corporation) Hidden
VAIO Content Importer / VAIO Content Exporter (HKLM\...\{68A69CFF-130D-4CDE-AB0E-7374ECB144C8}) (Version: 1.2.00.06270 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (HKLM\...\{FAA6B94E-78A7-489C-B2DB-050D9FEBFADA}) (Version: 2.0.01.07051 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 2.0.01.07051 - Sony Corporation) Hidden
VAIO Content Metadata Manager Settings (HKLM\...\{12D0BE8D-538C-4AB1-86DE-C540308F50DA}) (Version: 3.6.0.09240 - Sony Corporation)
VAIO Content Metadata Manager Settings (Version: 3.6.0.09240 - Sony Corporation) Hidden
VAIO Content Metadata XML Interface Library (HKLM\...\{291FB4BF-EEC7-4CF9-8469-F39ED1DBC4D8}) (Version: 3.6.0.09080 - Sony Corporation)
VAIO Content Metadata XML Interface Library (Version: 3.6.0.09080 - Sony Corporation) Hidden
VAIO Control Center (HKLM\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 2.1.00.07110 - Sony Corporation)
VAIO Cozy Orange Wallpaper (HKLM\...\{2A2FF7F5-6F0E-4A5D-A881-39365E718BD6}) (Version: 1.0.11.13240 - Sony Corporation)
VAIO Data Restore Tool (HKLM\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.0.02.06190 - Sony Corporation)
VAIO Entertainment Platform (HKLM\...\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}) (Version: 3.0.00.06280 - Sony Corporation)
VAIO Event Service (HKLM\...\{F0D85ADD-DD61-4B43-87A0-6DA52A211A8B}) (Version: 3.2.00.07240 - Sony Corporation)
VAIO Launcher (HKLM\...\{15D5C238-4C2E-4AEA-A66D-D6989A4C586B}) (Version: 1.0.00.07090 - Sony Corporation)
VAIO Media (Version: 6.0.10 - Sony Corporation) Hidden
VAIO Media 6.0 (HKLM\...\{560F6B2E-F0DF-44E5-8190-A4A161F0E205}) (Version: 6.0.10 - Sony Corporation)
VAIO Media AC3 Decoder 1.0 (HKLM\...\{2063C2E8-3812-4BBD-9998-6610F80C1DD4}) (Version: - )
VAIO Media Content Collection 6.0 (HKLM\...\{500162A0-4DD5-460A-BAFD-895AAE48C532}) (Version: - Sony Corporation)
VAIO Media Integrated Server 6.1 (HKLM\...\{785EB1D4-ECEC-4195-99B4-73C47E187721}) (Version: - Sony Corporation)
VAIO Media Redistribution 6.0 (HKLM\...\{5855C127-1F20-404D-B7FB-1FD84D7EAB5E}) (Version: 6.0.10 - Sony Corporation)
VAIO Media Registration Tool (Version: 6.0.10 - Sony Corporation) Hidden
VAIO Media Registration Tool 6.0 (HKLM\...\{AF9A04EB-7D8E-41DE-9EDE-4AB9BB2B71B6}) (Version: 6.0.10 - Sony Corporation)
VAIO Movie Story Template Data (HKLM\...\{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 1.0.00.18280 - Sony Corporation)
VAIO MusicBox (HKLM\...\{4EA55D20-27FB-45D7-8726-147E8A5F6C62}) (Version: 1.1.02.12100 - Sony Corporation)
VAIO MusicBox Sample Music (HKLM\...\{98FC7A64-774B-49B5-B046-4B4EBC053FA9}) (Version: 1.0.00.07030 - Sony Corporation)
VAIO Original Function Settings (Version: 2.0.2.02240 - Sony Corporation) Hidden
VAIO Original Funktion Einstellungen (HKLM\...\{7C404084-C5A6-42FF-B731-0BAC79A6E134}) (Version: 2.0.2.02240 - Sony Corporation)
VAIO Original Screen Saver (HKLM\...\{1BEF9285-5530-426B-A5F1-5836B95C7EB1}) (Version: - )
VAIO Power Management (HKLM\...\{802889F8-6AF5-45A5-9764-CA5B999E50FC}) (Version: 2.2.00.06130 - Sony Corporation)
VAIO Tender Green Wallpaper (HKLM\...\{934A3213-1CB6-4264-84A2-EE080C017BCA}) (Version: 1.0.11.10180 - Sony Corporation)
VAIO Update (HKLM\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 6.2.1.03260 - Sony Corporation)
VAIO Xblack Contents (HKLM\...\VAIO Xblack Contents) (Version: 1.0.0.0-ENU - )
VC80CRTRedist - 8.0.50727.762 (Version: 1.0.0 - DivX, Inc) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC TV Player (HKLM\...\{4937160D-9A3B-429C-A82E-645116A4EB17}) (Version: 1.0.5.0 - Kartina Digital GmbH)
VU5x86 (Version: 1.1.0 - Sony Corporation ) Hidden
WIDCOMM Bluetooth Software 6.1.0.1205 (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 6.1.0.1205 - Broadcom Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live ID-Anmelde-Assistent (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Sony Ericsson Mobile Communications (ggsemc) USB (02/22/2011 2.2.0.5) (HKLM\...\552F499C400E44850820F2525C7611BF677CAB6E) (Version: 02/22/2011 2.2.0.5 - Sony Ericsson Mobile Communications)
WinRAR 5.31 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wireless Switch Setting Utility (HKLM\...\{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}) (Version: 3.6.00.18210 - Sony Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\ProgramData\Skype\Plugins\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\ProgramData\Skype\Plugins\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Osteria\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{693566bc-21f8-401e-8d42-e2c5ce50dacc}\localserver32 -> C:\Users\Osteria\AppData\Local\Temp\{d5641912-e47a-429c-879e-cfe13eac7a13}\IDriver.NonElevated.exe = (Der Dateneintrag hat 13 mehr Zeichen).
CustomCLSID: HKU\S-1-5-21-723902195-3043266244-887298501-1000_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Osteria\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {005BA7A9-2E78-4716-A117-B76914ACFE42} - System32\Tasks\Google Updater and Installer => C:\Users\Osteria\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {0FFFEA12-A50C-4394-9598-A8E5F34D3BCF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {14981C69-225D-493E-BF06-838E358E67E5} - System32\Tasks\SONY\WSSU\WSSU => C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2007-06-15] (Sony Corporation)
Task: {2C6143D2-EC6E-4D78-88CB-1A22E26A6194} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-03-26] (Sony Corporation)
Task: {3EA6A82C-A408-4D26-82C4-5D9317E52079} - System32\Tasks\InstallShield Software-Aktualisierungsdienst => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2009-05-05] (Acresso Corporation)
Task: {41244E55-B4AF-4DD3-885D-CD4B7632006D} - System32\Tasks\MCVSurveyReminder1 => reminder.exe
Task: {412AB815-1BBF-4C85-9F96-FE9900EFFEBC} - System32\Tasks\{15DBB930-E9EE-4B20-B7D0-973B71BBF665} => Firefox.exe hxxp://ui.skype.com/ui/0/5.1.0.112/de/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;systemlevelpresent
Task: {447FA853-8633-42E3-A2C1-EE73EE002C21} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2013-03-26] (Sony Corporation)
Task: {4DF3DE62-EBD7-4D76-AED4-6365C0ECF1D3} - System32\Tasks\Automatische Problemsuche => C:\Program Files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [2009-10-30] (TuneUp Software)
Task: {4E789620-5793-430C-957B-87B0D18F7DB5} - System32\Tasks\MCVSurveyReminder4 => reminder.exe
Task: {526D90E2-7D35-4006-B283-2573E5CC145E} - System32\Tasks\MCVSurveyReminder2 => reminder.exe
Task: {5627335C-6A7B-4D92-8C41-A7905200E68B} - System32\Tasks\MCVRegistrationReminder1 => reminder.exe
Task: {67939CA1-12A5-480A-B7B8-F9591DE360B3} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-723902195-3043266244-887298501-1000Core => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {7193DD19-D48A-4F46-B604-7A87A69D80FB} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-723902195-3043266244-887298501-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2011-09-27] (RealNetworks, Inc.)
Task: {7FC326FE-0D65-493A-867B-B6847F28ECDD} - System32\Tasks\Real Networks Scheduler => c:\program files\real\realplayer\Update\realsched.exe [2011-11-08] (RealNetworks, Inc.)
Task: {84C456D6-7331-41FC-9D18-A5F732B430B8} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-723902195-3043266244-887298501-1000UA => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {93EE454A-790E-41D5-BB5D-BF9C2B55E8CC} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => C:\Program Files\TuneUp Utilities 2010\OneClick.exe [2009-10-30] (TuneUp Software)
Task: {94E1679C-67AE-4B89-BCC1-5FA71A58A700} - \{35DC3473-A719-4d14-B7C1-FD326CA84A0C} -> Keine Datei <==== ACHTUNG
Task: {97730CD7-6375-4425-80E6-16EF6623CDEC} - System32\Tasks\{D3133FF2-D4B9-4267-B206-6F7FC9F50BC7} => Firefox.exe hxxp://ui.skype.com/ui/0/4.1.0.141.259/ru/abandoninstall?source=lightinstaller&page=tsInstall&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;ienotdefaultbrowser2
Task: {9FBCAFBF-6F4B-4006-9A06-8909DAD30E6E} - System32\Tasks\{904B549D-56C3-4976-8556-7DD66913A3D9} => c:\program files\opera\opera.exe [2016-02-29] (Opera Software)
Task: {ADDE97A9-3C2A-44F7-B473-1D149D9CA926} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-08] (Adobe Systems Incorporated)
Task: {AF38E4A8-48A9-4595-B789-0C407284AC3B} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-19] (Microsoft Corporation)
Task: {B6DFF2D8-8E44-4B36-95C7-3F4C49B748FD} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-03-26] (Sony Corporation)
Task: {C568A047-39A9-4DDC-B219-82151930E4BC} - System32\Tasks\{3FCBF88E-970B-4227-B558-A38198042AFE} => pcalua.exe -a C:\Users\Osteria\AppData\Local\Temp\Low\Toolbarge.exe -d C:\Users\Osteria\Desktop -c -s -a /auto
Task: {D0CB1DF9-786D-4E14-925F-7B0E23B94BCB} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-08-04] (Oracle Corporation)
Task: {D11DE41F-3B5A-4689-B13D-1BDA6296DAC7} - System32\Tasks\{B73E1B27-225D-4017-87CB-DFF12C1431BD} => pcalua.exe -a C:\Users\Osteria\Downloads\IE8-Setup-Full.exe -d "C:\Program Files\Mozilla Firefox"
Task: {D2DC1C37-8017-412E-A7A6-8074B1CEA47B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {D5F8F6DF-D616-43F2-9BBD-29EC5B73BD34} - System32\Tasks\MCVRegistrationReminder4 => reminder.exe
Task: {D7C9F911-F30B-4D1B-AA45-3D48A64F6B38} - System32\Tasks\{93A183BB-CF77-451C-9775-EBBE435998A9} => pcalua.exe -a "C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\33G1EMHQ\ie8-setup-full_vista32[1].exe" -d C:\Users\Osteria\Desktop
Task: {D906790F-9313-477F-AEB9-EDCD1A59EEBC} - System32\Tasks\MCVRegistrationReminder3 => reminder.exe
Task: {D98F4B2B-2BA9-42FC-A438-633F86F0DA0D} - System32\Tasks\MCVSurveyReminder3 => reminder.exe
Task: {E9C848AB-AFE8-460D-8619-E05E8264AE76} - System32\Tasks\MCVRegistrationReminder2 => reminder.exe
Task: {EE2A701F-110F-4882-A5AC-64AEA4DCE7E2} - System32\Tasks\{D9281952-C68B-4AC7-9690-578E7D2B4A7F} => pcalua.exe -a "C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXVCC9JZ\IE8-Setup-Full[1].exe" -d C:\Users\Osteria\Desktop
Task: {F1741966-AAE3-4535-BBA5-4A969EDFAF31} - System32\Tasks\{64C27011-2026-41BA-940F-44C91F2AD633} => Firefox.exe hxxp://ui.skype.com/ui/0/5.0.0.123/de/go/help.faq.installer?source=lightinstaller&LastError=1618
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\0215piUpdateInfo.job => C:\ProgramData\Avg_Update_0215pi\0215pi_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\Adobe Acrobat Update Task.job => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AVG-SSU_0516av.job => C:\ProgramData\Avg_Update_0516av\AVG-Secure-Search-Update_0516av.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-723902195-3043266244-887298501-1000Core.job => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-723902195-3043266244-887298501-1000UA.job => C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8eaa99355720.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfea364f71260a.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfff744ffba5ac.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0415ac06a6457.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f291b40b6cc.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0bf8e5541441f.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0e15e73ccc8c0.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f09af71a9ff2.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d12ec594b5fe51.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d16569e373d29f.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1ab86317ce927.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-723902195-3043266244-887298501-1000.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2010-03-20 15:45 - 2009-12-31 02:16 - 00049152 _____ () C:\Windows\System32\LXEBPMON.DLL
2010-03-20 15:45 - 2009-01-13 09:15 - 04485120 _____ () C:\Windows\System32\LXEBOEM.DLL
2010-03-28 01:26 - 2009-11-26 02:08 - 00049152 _____ () C:\Windows\System32\LXEEPMON.DLL
2010-03-28 01:25 - 2009-01-13 09:15 - 04485120 _____ () C:\Windows\System32\LXEEOEM.DLL
2013-03-01 19:41 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2007-08-16 10:42 - 2007-07-24 19:26 - 00010752 _____ () C:\Program Files\Sony\VAIO Event Service\VESBasePS.dll
2007-08-16 10:42 - 2007-07-24 19:26 - 00009728 _____ () C:\Program Files\Sony\VAIO Event Service\VESMgrSubPS.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
HKLM\...\cmdfile\DefaultIcon: %SystemRoot%\System32\imageres.dll,-68 <===== ACHTUNG
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2006-11-02 12:23 - 2013-06-27 20:39 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-723902195-3043266244-887298501-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\img36.jpg
HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Control Panel\Desktop\\Wallpaper -> C:\windows\Web\Wallpaper\img24.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
MSCONFIG\startupreg: AppMon Utility => "C:\Program Files\Sony\AppMonUtil\AppMonUtility.exe" @@@Start
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: Facebook Update => "C:\Users\Osteria\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: NvMediaCenter => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
MSCONFIG\startupreg: PaperPort PTD => "C:\Program Files\Nuance\PaperPort\pptd40nt.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SealOne => "C:\Users\Osteria\AppData\Roaming\Seal One\SealOne.exe" /FASTRUN
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Steam => "C:\Program Files\Steam\Steam.exe" -silent
==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [{4FD287E5-BBF5-47A1-B437-080855632018}] => (Allow) C:\Program Files\Sony\VAIO Media 6.0\Vc.exe
FirewallRules: [{019D9718-A400-4742-89B8-161D174090AE}] => (Allow) C:\Program Files\Sony\VAIO Media 6.0\Vc.exe
FirewallRules: [TCP Query User{2F584AE3-28A4-4592-ACC7-5A2D8F5CD3FD}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{D65E8D0F-33D8-4F2D-9442-7D6A3CB50D0A}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{EB165B71-4653-4612-89B1-3E1EE00464B2}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [UDP Query User{875F791A-4B87-4BDD-B922-FE2476C53BE0}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [{EBFFF613-093A-414A-A76D-6B06B09CBCEC}] => (Allow) LPort=443
FirewallRules: [{E51A9E8F-A206-48E3-83B1-D25A5CEC5350}] => (Allow) LPort=443
FirewallRules: [{E6BC392F-006D-4A4E-A9DB-C08817F49A70}] => (Allow) LPort=37674
FirewallRules: [{575BF874-376D-48E2-8175-1E044D581130}] => (Allow) LPort=37674
FirewallRules: [{895702E9-00A8-41E0-BC8D-F29BF034CAA2}] => (Allow) LPort=37675
FirewallRules: [{7845FCF9-B387-415C-BD2B-77AF8775720E}] => (Allow) LPort=443
FirewallRules: [{2DABE8B9-37BF-493C-B5FC-5803F2ABE648}] => (Allow) LPort=443
FirewallRules: [{2A32E70E-3E1F-414D-B934-E6B11C8BCB87}] => (Allow) LPort=37674
FirewallRules: [{DDCDDE34-D7C2-423A-8804-A96A5B2A2D7C}] => (Allow) LPort=37674
FirewallRules: [{E09ED838-EEA0-450C-9D51-67B1359C1317}] => (Allow) LPort=37675
FirewallRules: [TCP Query User{273A99C8-3B9C-4B4E-94CA-AFACB0E8CCB6}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [UDP Query User{087DE222-B484-4AA4-A613-8623D3820A09}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [TCP Query User{F6530E7F-6BD9-4F1F-B3F3-755B03C94E17}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{E35E5AC7-0B8F-4F3E-B698-7758323A85F0}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [{4DEF3CCE-A098-4E5F-BCA6-EA4F0506C99D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{1086C55F-05DB-46DB-90B3-3C5B2BA86B0F}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{0A35A0F2-55E8-4527-9638-085B80411FBA}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{2DBB666F-8FC0-4633-9AF5-4D91D0041BCA}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{1012F961-AB27-4C5C-8EC0-7B591C2F0666}] => (Allow) C:\Program Files\Steam\steamapps\common\empire total war demo\Empire.exe
FirewallRules: [{D2238ED8-5C86-4525-A9DC-2A00A44211D1}] => (Allow) C:\Program Files\Steam\steamapps\common\empire total war demo\Empire.exe
FirewallRules: [{3D65F362-1A3C-4F6D-B3CB-E88A507AAAF2}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{22B1A053-F00B-4555-BEAE-6726F74BDC56}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D556AF65-177F-43DF-BCA5-63AACB7B195D}] => (Allow) C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe
FirewallRules: [{6500980D-3216-4178-873C-ECCC712E89D8}] => (Allow) C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe
FirewallRules: [{60760AAB-BBB9-4C2E-87CA-D70431FDC127}] => (Allow) C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe
FirewallRules: [{53666F33-28E0-4099-AED5-DE283281BBAD}] => (Allow) C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe
FirewallRules: [TCP Query User{CF0BC741-6973-45E0-8BF5-040790FF4B57}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{E47E50F8-AE2C-4B9F-AF72-EC1AB03205B9}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [{E264E545-0CB4-489F-A261-ECC04FD18E85}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{AA07C166-CC1B-45FF-835A-222D791C2DA7}] => (Allow) svchost.exe
FirewallRules: [{2986EAE6-C53E-423E-90D2-766BFBAE7046}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{00D458A0-C290-4BED-9611-3396E7A3887C}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{A2D549EC-5BC3-49F2-B484-FD9FE45B5EA3}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{9154AEFB-479D-447B-9331-EAE48FB50A57}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{A2E35D9E-7383-4499-9A30-7274D8222246}] => (Allow) LPort=80
FirewallRules: [{90BFCB9C-1222-404D-952A-AE423DF3E765}] => (Allow) LPort=80
FirewallRules: [{C8BB76D3-2646-4738-94BA-4CA122D73826}] => (Allow) LPort=80
FirewallRules: [{62FCB93B-5E60-43C9-BF6C-6C123EEB7BEF}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{93AD5143-0A54-45DB-9092-D1057A3865B0}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{9D24778F-3CEC-4ED5-B160-067773E1C04E}] => (Allow) C:\Users\Osteria\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{877723F4-CEF1-4865-9CA2-127D7958DA3F}] => (Allow) C:\Program Files\Brother\Brmfl10g\FAXRX.exe
FirewallRules: [{1ED8FB30-A5D7-43DF-8C16-D049ED805353}] => (Allow) C:\Program Files\Brother\Brmfl10g\FAXRX.exe
FirewallRules: [{91EBC06B-8895-44CF-ABB3-634CEEB70313}] => (Allow) LPort=54925
FirewallRules: [TCP Query User{3EA356BF-A9D1-4AA5-9233-255C078E4B53}C:\windows\system32\taskeng.exe] => (Block) C:\windows\system32\taskeng.exe
FirewallRules: [UDP Query User{9392FEA1-2730-414C-BC89-020F823ED9FB}C:\windows\system32\taskeng.exe] => (Block) C:\windows\system32\taskeng.exe
FirewallRules: [TCP Query User{F3E33FF7-2217-4E38-9DDE-962E28010D03}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [UDP Query User{1BA1DE04-24A7-42C9-8EB8-6A4869CD421F}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [{3CEE8F63-EF96-4CDF-947D-B3A9BA63B21C}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{55B8D8F7-7658-485C-8C14-17D11A48332A}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{C6BF6CF7-A624-4EC6-AC82-9D77D56D738A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C591ABE4-D736-4221-8D2D-C838DE2368C3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7E07E08C-A27E-4886-A158-DC69B99A4600}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{4D3B2D3C-3F71-4714-8384-7A35B09F3A8A}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{78984AA5-EC98-4F3F-8B1C-6921AC76AF3D}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{B511F8DD-E80A-4926-865A-F02D204EFD3D}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{B0A9658D-2E80-4E6E-9CF8-16BE56CBD83E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3C44C91B-FC7B-4F59-A704-6B5FC8F12CD4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3CC10A42-A057-4E6B-8A99-0425DBDD5BC2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{9695B7F8-5FD7-4C7E-A976-A1E0A19D932E}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{43F61045-E148-43D2-908C-78F032914FE1}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
==================== Wiederherstellungspunkte =========================
11-02-2016 09:16:36 Windows Update
13-02-2016 09:20:33 Windows Update
14-02-2016 09:17:19 Windows Update
09-03-2016 13:30:44 Windows Update
14-04-2016 07:17:41 Windows Update
13-05-2016 16:15:56 Windows Update
13-05-2016 16:42:41 Installed AVG
14-05-2016 03:00:42 Windows Update
17-06-2016 14:58:58 Removed AVG
17-06-2016 15:15:19 Removed AVG 2016
18-06-2016 17:12:23 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Microsoft-ISATAP-Adapter #8
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #11
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #10
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #23
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #27
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (06/18/2016 05:06:28 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019)
Error: (06/18/2016 04:13:09 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\PEPPER DATA\SHOCKWAVE FLASH\WRITABLEROOT\#SHAREDOBJECTS\L2ZZMRCT\MACROMEDIA.COM\##45EC4C9792AE2268\00000001.SOL> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/18/2016 04:13:08 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\PEPPER DATA\SHOCKWAVE FLASH\WRITABLEROOT\#SHAREDOBJECTS\L2ZZMRCT\MACROMEDIA.COM\##45EC4C9792AE2268\00000001.SOL> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/18/2016 03:33:34 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\LOCAL STATE> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/18/2016 03:33:34 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\LOCAL STATE> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/18/2016 03:23:47 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019)
Error: (06/18/2016 03:17:36 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019)
Error: (06/18/2016 03:14:01 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\SERVICE WORKER\CACHESTORAGE\E6622492FA163609DDD4212F54512BAA07929ED3\2208AEDE-A66B-479F-A8B9-BED89AA501BD\INDEX-DIR\TEMP-INDEX> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/18/2016 02:58:55 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\LOCAL STATE> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (06/18/2016 02:58:55 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\OSTERIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\LOCAL STATE> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Systemfehler:
=============
Error: (06/18/2016 05:06:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058 = Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (06/18/2016 03:23:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058 = Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (06/18/2016 03:22:55 PM) (Source: Microsoft-Windows-ResourcePublication) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Provider\Microsoft.Base.Publication/Publication/Computer
Error: (06/18/2016 03:22:37 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 18.06.2016 um 15:21:20 unerwartet heruntergefahren.
Error: (06/18/2016 03:17:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058 = Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (06/18/2016 03:12:41 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: 1Neustart des DienstsWindows Search%%1056 = Es wird bereits eine Instanz des Dienstes ausgeführt.
Error: (06/18/2016 03:12:37 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {9E175B6D-F52A-11D8-B9A5-505054503030}
Error: (06/18/2016 03:12:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Softwarelizenzierung11200001Neustart des Diensts
Error: (06/18/2016 03:12:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Windows Search1300001Neustart des Diensts
Error: (06/18/2016 03:12:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: BBUpdate1
CodeIntegrity:
===================================
Date: 2016-06-18 17:44:36.128
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-18 17:44:35.332
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-18 17:44:34.506
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-18 17:44:33.694
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-18 17:44:32.602
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-18 17:44:31.729
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-18 17:44:30.902
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-18 17:44:30.060
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-18 16:09:07.262
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-06-18 16:09:06.161
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T7250 @ 2.00GHz
Prozentuale Nutzung des RAM: 74%
Installierter physikalischer RAM: 2045.7 MB
Verfügbarer physikalischer RAM: 518.28 MB
Summe virtueller Speicher: 4330.64 MB
Verfügbarer virtueller Speicher: 2546.82 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:177.4 GB) (Free:93.54 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 186.3 GB) (Disk ID: 976E47FC)
Partition 1: (Not Active) - (Size=8.9 GB) - (Type=27)
Partition 2: (Active) - (Size=177.4 GB) - (Type=07 NTFS)
==================== Ende vom Addition.txt ============================
|
|
18.06.2016, 22:06
| #6 |
| /// TB-Ausbilder | Avira-Virus ("Gruppenrichtlinie blockiert") Servus, Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter start
CloseProcesses:
URLSearchHook: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 - (Kein Name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {25F97EB4-1C02-45BA-BA0C-E67AACE64D4A} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {09900DE8-1DCA-443F-9243-26FF581438AF} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {A057A204-BACC-4D26-8087-36EE87E26986} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - Keine Datei
Toolbar: HKU\S-1-5-21-723902195-3043266244-887298501-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> Kein Name - {C424171E-592A-415A-9EB1-DFD6D95D3530} - Keine Datei
FF DefaultSearchUrl: hxxp://homepage.am/?q=
FF SearchEngineOrder.1:
FF Homepage: hxxp://google.ru/
FF Extension: Бар знакомств - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\toolbar@mamba.ru [2012-03-01] [ist nicht signiert]
FF Extension: Спутник @Mail.Ru - C:\Users\Osteria\AppData\Roaming\Mozilla\Firefox\Profiles\b9sabiz4.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D} [2015-12-29]
C:\Users\Osteria\AppData\Local\*.bat
C:\ProgramData\ezsid.dat
C:\ProgramData\gerjttd.fee
Task: {94E1679C-67AE-4B89-BCC1-5FA71A58A700} - \{35DC3473-A719-4d14-B7C1-FD326CA84A0C} -> Keine Datei <==== ACHTUNG
Task: {C568A047-39A9-4DDC-B219-82151930E4BC} - System32\Tasks\{3FCBF88E-970B-4227-B558-A38198042AFE} => pcalua.exe -a C:\Users\Osteria\AppData\Local\Temp\Low\Toolbarge.exe -d C:\Users\Osteria\Desktop -c -s -a /auto
Task: {D11DE41F-3B5A-4689-B13D-1BDA6296DAC7} - System32\Tasks\{B73E1B27-225D-4017-87CB-DFF12C1431BD} => pcalua.exe -a C:\Users\Osteria\Downloads\IE8-Setup-Full.exe -d "C:\Program Files\Mozilla Firefox"
Task: {D7C9F911-F30B-4D1B-AA45-3D48A64F6B38} - System32\Tasks\{93A183BB-CF77-451C-9775-EBBE435998A9} => pcalua.exe -a "C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\33G1EMHQ\ie8-setup-full_vista32[1].exe" -d C:\Users\Osteria\Desktop
Task: {EE2A701F-110F-4882-A5AC-64AEA4DCE7E2} - System32\Tasks\{D9281952-C68B-4AC7-9690-578E7D2B4A7F} => pcalua.exe -a "C:\Users\Osteria\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXVCC9JZ\IE8-Setup-Full[1].exe" -d C:\Users\Osteria\Desktop
Task: C:\Windows\Tasks\0215piUpdateInfo.job => C:\ProgramData\Avg_Update_0215pi\0215pi_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\AVG-SSU_0516av.job => C:\ProgramData\Avg_Update_0516av\AVG-Secure-Search-Update_0516av.exe
C:\ProgramData\Avg_Update_0215pi
C:\ProgramData\Avg_Update_0516av
HKLM\...\cmdfile\DefaultIcon: %SystemRoot%\System32\imageres.dll,-68 <===== ACHTUNG
Folder: C:\Users\Osteria\AppData\Roaming\Yhir
CMD: dir "C:\ProgramData"
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 Lade dir die passende Version von SystemLook vom folgenden Spiegel herunter und speichere das Tool auf dem Desktop: SystemLook (32 bit) | SystemLook (64 bit)
Schritt 3
Bitte poste mit deiner nächsten Antwort
|
|
24.06.2016, 12:36
| #7 |
| | Avira-Virus ("Gruppenrichtlinie blockiert")Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x86) Version: 20-06-2016 01
durchgeführt von Mini-Laptop (2016-06-24 13:23:59) Run:2
Gestartet von C:\Users\Mini-Laptop\Downloads
Geladene Profile: Mini-Laptop & DefaultAppPool (Verfügbare Profile: Mini-Laptop & DefaultAppPool)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
start
CloseProcesses:
Toolbar: HKU\S-1-5-21-2077204040-2249965220-876822158-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
C:\Users\Mini-Laptop\AppData\LocalLow\Sun\Java\Deployment\cache\6.0
C:\Users\Mini-Laptop\AppData\Local\{26165995-1C4A-49E2-9FF9-A7FB5700B445}
C:\Users\Mini-Laptop\AppData\Local\{9994E313-5074-4D8F-9258-F13A2AF0130E}
C:\Users\Mini-Laptop\AppData\Roaming\kock
C:\Users\Mini-Laptop\AppData\Roaming\xmldm
Reboot:
end
*****************
Prozess erfolgreich geschlossen.
HKU\S-1-5-21-2077204040-2249965220-876822158-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Wert erfolgreich entfernt
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Schlüssel nicht gefunden.
C:\Users\Mini-Laptop\AppData\LocalLow\Sun\Java\Deployment\cache\6.0 => erfolgreich verschoben
C:\Users\Mini-Laptop\AppData\Local\{26165995-1C4A-49E2-9FF9-A7FB5700B445} => erfolgreich verschoben
C:\Users\Mini-Laptop\AppData\Local\{9994E313-5074-4D8F-9258-F13A2AF0130E} => erfolgreich verschoben
C:\Users\Mini-Laptop\AppData\Roaming\kock => erfolgreich verschoben
C:\Users\Mini-Laptop\AppData\Roaming\xmldm => erfolgreich verschoben
Das System musste neu gestartet werden.
==== Ende vom Fixlog 13:24:03 ====
Super Board, super Hilfe! Danke!!! |
|
24.06.2016, 20:57
| #8 |
| /// TB-Ausbilder | Avira-Virus ("Gruppenrichtlinie blockiert") Ich bin froh, dass wir helfen konnten  In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest: Lob, Kritik und Wünsche Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank!  Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM. Jeder andere bitte hier klicken und einen eigenen Thread erstellen. |
|
| Themen zu Avira-Virus ("Gruppenrichtlinie blockiert") |
| antivir, antivirus, avira, blockiert, converter, device driver, dnsapi.dll, downloader, error, excel, flash player, gebraucht, google, helper, home, iexplore.exe, realtek, safer networking, scan, security, software, svchost.exe, symantec, system, viren, virus, vista, vista32, windows |
Hybrid-Darstellung
