| |
| |||||||
Log-Analyse und Auswertung: 0_3u_l.exe *32 Virus? Trojaner?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
07.07.2012, 14:33
| #1 |
| |  0_3u_l.exe *32 Virus? Trojaner? Ich habe seit Gestern abend einen Virus oder Trojaner auf meinem Rechner, welcher jedesmal bei aufstarten das 0_3u_l.exe *32 ausführt, welches versucht mich mit einer internetseite zu verbinden welche blockiert ist. Aus diesem fenster kann ich nicht mehr weg, weder mit Taskmanager noch mit allem anderen was mir einfällt. Starte ich den Taskmanager direkt nach einloggen und beende den Prozess, funktioniert alles einwandfrei. bei einer Googlesuche sties ich hier auf den thread: http://www.trojaner-board.de/118613-...-log-post.html da ich nicht weis, in wie weit ich das machen musste was dort geschrieben steht, habe ich hier einen separaten thread dazu geöffnet. hier sind die Logs von Malwarebyte und OTL: Code:
ATTFilter Malwarebytes Anti-Malware 1.61.0.1400 www.malwarebytes.org Datenbank Version: v2012.07.06.14 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 8.0.7601.17514 Jochum :: JOCHUM-VAIO [Administrator] 07.07.2012 10:41:58 mbam-log-2012-07-07 (10-41-58).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 396312 Laufzeit: 1 Stunde(n), 37 Minute(n), 5 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 3 C:\Users\Jochum\Downloads\applianflv.exe (PUP.BundleOffers.IIQ) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Jochum\Downloads\SoftonicDownloader_fuer_mcpatcher.exe (PUP.ToolbarDownloader) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Jochum\AppData\Local\Temp\0_0u_l.exe (Exploit.Drop.GS) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter OTL logfile created on: 07.07.2012 11:38:57 - Run 2 OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Jochum\Desktop 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 8.0.7601.17514) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,86 Gb Total Physical Memory | 1,68 Gb Available Physical Memory | 43,53% Memory free 7,71 Gb Paging File | 5,18 Gb Available in Paging File | 67,20% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 455,04 Gb Total Space | 313,92 Gb Free Space | 68,99% Space Free | Partition Type: NTFS Computer Name: JOCHUM-VAIO | User Name: Jochum | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.07.07 10:47:26 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Jochum\Desktop\OTL.exe PRC - [2012.06.20 00:30:36 | 000,529,232 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe PRC - [2012.06.14 14:49:07 | 001,535,176 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_257.exe PRC - [2012.05.26 06:32:24 | 004,327,744 | ---- | M] (Akamai Technologies, Inc) -- C:\Users\Jochum\AppData\Local\Akamai\netsession_win.exe PRC - [2012.05.02 01:42:28 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe PRC - [2012.05.02 00:55:21 | 000,465,360 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe PRC - [2012.05.02 00:34:34 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2012.05.02 00:31:35 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe PRC - [2012.04.04 15:56:38 | 000,981,680 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe PRC - [2012.03.08 02:54:55 | 000,218,624 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe PRC - [2012.01.18 19:19:40 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe PRC - [2012.01.04 20:20:50 | 001,391,272 | ---- | M] (Ask) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe PRC - [2011.10.21 20:24:33 | 003,077,528 | ---- | M] () -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe PRC - [2011.10.01 11:43:04 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2011.10.01 09:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe PRC - [2011.10.01 09:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe PRC - [2011.06.17 19:33:04 | 000,272,528 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe PRC - [2011.02.25 11:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE PRC - [2011.02.14 14:23:50 | 000,044,736 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Care\VCService.exe PRC - [2011.01.29 06:36:18 | 000,081,016 | ---- | M] (Sony of America Corporation) -- C:\Programme\Sony\VAIO Care\listener.exe PRC - [2010.11.16 15:37:30 | 000,230,912 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe PRC - [2010.10.05 09:32:58 | 001,811,800 | ---- | M] (Logitech(c)) -- C:\Program Files (x86)\Logitech\G35\G35.exe PRC - [2010.09.06 18:56:38 | 000,247,096 | ---- | M] () -- C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe PRC - [2010.07.23 04:09:20 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2010.05.28 11:14:24 | 000,205,168 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe PRC - [2010.05.22 03:01:37 | 000,026,624 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe PRC - [2010.05.21 00:52:06 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin PRC - [2010.05.21 00:52:04 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe PRC - [2010.02.28 02:33:14 | 000,077,664 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE PRC - [2010.02.19 19:19:24 | 000,529,776 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe PRC - [2009.12.14 22:06:24 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2009.12.14 22:06:08 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2009.12.01 22:03:52 | 000,112,488 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe PRC - [2009.11.21 00:25:24 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2009.11.21 00:25:22 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe PRC - [2009.10.24 03:18:54 | 000,360,224 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\PMB\PMBDeviceInfoProvider.exe PRC - [2009.10.24 03:18:52 | 000,597,792 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe PRC - [2009.09.14 19:24:08 | 000,206,336 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe PRC - [2009.09.14 18:53:48 | 000,642,416 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe PRC - [2009.09.04 22:35:14 | 000,013,600 | ---- | M] (Broadcom Corporation.) -- C:\Programme\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe PRC - [2009.08.26 19:24:00 | 000,320,880 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe PRC - [2008.09.18 10:59:10 | 000,104,960 | ---- | M] (ArcSoft, Inc.) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe ========== Modules (No Company Name) ========== MOD - [2012.06.20 00:30:34 | 020,313,384 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll MOD - [2012.06.20 00:30:32 | 000,895,312 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll MOD - [2012.06.20 00:30:30 | 000,123,192 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll MOD - [2012.06.20 00:30:28 | 000,190,776 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll MOD - [2012.06.20 00:30:26 | 001,099,576 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll MOD - [2012.06.14 14:49:07 | 009,459,912 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll MOD - [2012.06.14 14:33:17 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\69ca4a43ba14b66689715ad62aed70e6\System.ServiceProcess.ni.dll MOD - [2012.06.14 14:32:54 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll MOD - [2012.06.13 23:41:36 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll MOD - [2012.05.10 12:12:41 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll MOD - [2012.05.10 12:11:54 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll MOD - [2012.05.10 12:11:48 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll MOD - [2012.05.10 12:11:44 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll MOD - [2012.05.10 12:11:43 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll MOD - [2012.05.10 12:11:36 | 011,492,864 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll MOD - [2011.10.21 20:24:33 | 003,077,528 | ---- | M] () -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe MOD - [2010.11.13 02:08:41 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll MOD - [2010.07.23 04:09:20 | 001,015,768 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\js3250.dll MOD - [2010.05.04 15:36:28 | 000,970,752 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll MOD - [2010.02.28 02:33:14 | 000,077,664 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE ========== Win32 Services (SafeList) ========== SRV:64bit: - [2011.01.29 06:36:18 | 000,259,192 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Care\VCPerfService.exe -- (SampleCollector) SRV:64bit: - [2010.01.27 22:10:56 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV - [2012.06.20 00:30:36 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012.05.30 23:27:15 | 003,417,376 | ---- | M] () [Auto | Running] -- c:\program files (x86)\common files\akamai/netsession_win_80c2ffa.dll -- (Akamai) SRV - [2012.05.02 01:42:28 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2012.05.02 00:55:21 | 000,465,360 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe -- (AntiVirWebService) SRV - [2012.05.02 00:34:34 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2012.03.08 02:54:55 | 000,218,624 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc) SRV - [2012.02.29 08:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012.01.13 10:55:10 | 001,256,040 | ---- | M] (Sony Corporation) [On_Demand | Running] -- C:\Programme\Sony\VAIO Update Common\VUAgent.exe -- (VUAgent) SRV - [2011.10.01 11:43:04 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2011.10.01 09:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa) SRV - [2011.10.01 09:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist) SRV - [2011.06.17 19:33:04 | 000,237,008 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe -- (McComponentHostService) SRV - [2011.02.28 19:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc) SRV - [2011.02.25 11:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort) SRV - [2011.02.14 14:23:50 | 000,044,736 | ---- | M] (Sony Corporation) [On_Demand | Running] -- C:\Programme\Sony\VAIO Care\VCService.exe -- (VCService) SRV - [2010.11.16 15:38:16 | 000,339,456 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\HWDeviceService64.exe -- (HWDeviceService64.exe) SRV - [2010.09.22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Programme\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV - [2010.09.21 14:49:00 | 002,286,976 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc) SRV - [2010.09.06 18:56:38 | 000,247,096 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service) SRV - [2010.05.28 11:14:24 | 000,205,168 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe -- (VAIO Event Service) SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010.03.18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2010.02.19 19:19:28 | 000,115,568 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe -- (VcmXmlIfHelper) SRV - [2010.02.19 19:19:24 | 000,529,776 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Programme\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe -- (VcmIAlzMgr) SRV - [2010.01.09 21:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc) SRV - [2009.12.14 22:06:24 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R) SRV - [2009.12.14 22:06:08 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R) SRV - [2009.11.30 19:51:18 | 000,571,248 | ---- | M] (Sony Corporation) [On_Demand | Running] -- C:\Programme\Sony\VAIO Power Management\SPMService.exe -- (VAIO Power Management) SRV - [2009.11.25 19:06:06 | 000,821,760 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Programme\Sony\VAIO Smart Network\VSNService.exe -- (VSNService) SRV - [2009.11.21 00:25:24 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R) SRV - [2009.10.24 03:18:54 | 000,360,224 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\SONY\PMB\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider) SRV - [2009.10.15 16:34:36 | 000,427,304 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe -- (SOHDms) SRV - [2009.10.15 16:34:36 | 000,091,432 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe -- (SOHPlMgr) SRV - [2009.10.15 16:34:36 | 000,075,048 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe -- (SOHDs) SRV - [2009.10.15 16:34:34 | 000,120,104 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe -- (SOHCImp) SRV - [2009.10.15 16:34:34 | 000,070,952 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe -- (SOHDBSvr) SRV - [2009.09.14 19:24:08 | 000,206,336 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe -- (VzCdbSvc) SRV - [2009.09.14 19:24:08 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe -- (VAIO Entertainment TV Device Arbitration Service) SRV - [2009.09.14 18:53:48 | 000,642,416 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe -- (VCFw) SRV - [2009.09.04 22:35:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Programme\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins) SRV - [2009.09.01 21:42:00 | 000,361,840 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Programme\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe -- (VcmINSMgr) SRV - [2009.08.31 01:59:30 | 000,362,992 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe -- (Roxio Upnp Server 10) SRV - [2009.08.31 01:59:18 | 000,313,840 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe -- (Roxio UPnP Renderer 10) SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008.09.18 10:59:10 | 000,104,960 | ---- | M] (ArcSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe -- (uCamMonitor) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012.05.02 15:24:12 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr) DRV:64bit: - [2012.04.27 10:20:04 | 000,132,832 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb) DRV:64bit: - [2012.04.25 00:32:27 | 000,098,848 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:64bit: - [2012.03.08 02:54:55 | 000,421,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbwwan.sys -- (ewusbmbb) DRV:64bit: - [2012.03.08 02:54:55 | 000,221,312 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard) DRV:64bit: - [2012.03.08 02:54:55 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev) DRV:64bit: - [2012.03.08 02:54:55 | 000,086,016 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator) DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2011.10.01 09:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol) DRV:64bit: - [2011.10.01 09:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay) DRV:64bit: - [2011.10.01 09:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir) DRV:64bit: - [2011.10.01 09:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs) DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2010.11.20 11:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2010.09.29 11:34:50 | 000,377,176 | ---- | M] (Logitech) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ladfSBVMamd64.sys -- (LADF_SBVM) DRV:64bit: - [2010.09.29 11:34:48 | 000,062,168 | ---- | M] (Logitech) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ladfDHP2amd64.sys -- (LADF_DHP2) DRV:64bit: - [2010.09.23 00:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr) DRV:64bit: - [2010.08.10 10:38:49 | 000,050,056 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SaiBus.sys -- (SaiNtBus) DRV:64bit: - [2010.08.10 10:38:49 | 000,022,792 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SaiMini.sys -- (SaiMini) DRV:64bit: - [2010.08.10 10:38:39 | 000,171,016 | ---- | M] (Saitek) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SaiK0CCB.sys -- (SaiK0CCB) DRV:64bit: - [2010.08.10 10:38:39 | 000,041,096 | ---- | M] (Saitek) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SaiU0CCB.sys -- (SaiU0CCB) DRV:64bit: - [2010.01.27 22:10:59 | 006,106,624 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag) DRV:64bit: - [2009.12.16 22:03:59 | 000,244,736 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R) DRV:64bit: - [2009.12.16 22:03:04 | 007,778,176 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx) DRV:64bit: - [2009.12.16 04:49:48 | 000,213,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService) DRV:64bit: - [2009.12.14 22:06:07 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R) DRV:64bit: - [2009.11.21 00:09:48 | 000,537,112 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:64bit: - [2009.11.18 06:30:44 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid) DRV:64bit: - [2009.11.18 06:30:32 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt) DRV:64bit: - [2009.11.18 06:30:32 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio) DRV:64bit: - [2009.11.18 06:30:21 | 000,052,264 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btusbflt.sys -- (btusbflt) DRV:64bit: - [2009.11.18 06:23:46 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap) DRV:64bit: - [2009.11.13 22:08:21 | 000,151,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd) DRV:64bit: - [2009.11.12 22:16:19 | 000,395,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) DRV:64bit: - [2009.11.12 22:06:44 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:64bit: - [2009.11.06 22:27:30 | 000,093,696 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimssne64.sys -- (rimspci) DRV:64bit: - [2009.11.05 22:35:45 | 000,034,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\point64k.sys -- (Point64) DRV:64bit: - [2009.11.05 22:35:45 | 000,027,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d) MS Hardware Device Detection Driver (USB) DRV:64bit: - [2009.11.04 11:59:59 | 000,253,488 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService) DRV:64bit: - [2009.09.15 22:09:08 | 000,075,776 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\risdsne64.sys -- (risdsnpe) DRV:64bit: - [2009.08.19 22:09:21 | 000,011,392 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SFEP.sys -- (SFEP) DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009.05.26 14:32:04 | 000,019,968 | ---- | M] (ArcSoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys -- (ArcSoftKsUFilter) DRV:64bit: - [2009.05.20 12:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - [2009.03.18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi) DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=SVEC&bmod=EU01 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/ IE - HKCU\..\URLSearchHook: - No CLSID value found IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKCU\..\SearchScopes,DefaultScope = {707F621D-E1B1-4DF0-91B1-19DCB8FA4F8E} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd IE - HKCU\..\SearchScopes\{707F621D-E1B1-4DF0-91B1-19DCB8FA4F8E}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SVEC IE - HKCU\..\SearchScopes\{D13C250E-F602-499F-9168-9F8918600E52}: "URL" = hxxp://de.shopping.com/?linkin_id=8056363 IE - HKCU\..\SearchScopes\{EBE89142-2A4A-420A-9396-090227AA04B0}: "URL" = hxxp://www.zinio.com/search/index.jsp?s={searchTerms}&rf=sonyie8search IE - HKCU\..\SearchScopes\{FEF719FE-3A6F-4A90-B5DA-A3050A7F75CA}: "URL" = hxxp://rover.ebay.com/rover/1/707-37276-16609-0/4?satitle={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local> ========== FireFox ========== FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.defaultthis.engineName: "Veoh Web Player Customized Web Search" FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "http" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}:6.0.27 FF - prefs.js..keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.2.6&q=" FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_257.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files (x86)\Google\Update\1.2.183.7\npGoogleOneClick8.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Jochum\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.11.06 16:03:20 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.04.29 14:32:36 | 000,000,000 | ---D | M] [2010.08.28 18:30:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jochum\AppData\Roaming\mozilla\Extensions [2012.07.06 21:12:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jochum\AppData\Roaming\mozilla\Firefox\Profiles\ywhwyc63.default\extensions [2011.07.02 12:59:07 | 000,000,000 | ---D | M] (Veoh Web Player Community Toolbar) -- C:\Users\Jochum\AppData\Roaming\mozilla\Firefox\Profiles\ywhwyc63.default\extensions\{cd90bf73-20f6-44ef-993d-bb920303bd2e} [2010.10.09 10:46:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jochum\AppData\Roaming\mozilla\Firefox\Profiles\ywhwyc63.default\extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca} [2011.06.22 14:59:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jochum\AppData\Roaming\mozilla\Firefox\Profiles\ywhwyc63.default\extensions\staged-xpis [2011.06.22 14:13:14 | 000,000,933 | ---- | M] () -- C:\Users\Jochum\AppData\Roaming\Mozilla\Firefox\Profiles\ywhwyc63.default\searchplugins\conduit.xml [2012.06.30 10:51:53 | 000,000,950 | ---- | M] () -- C:\Users\Jochum\AppData\Roaming\Mozilla\Firefox\Profiles\ywhwyc63.default\searchplugins\icqplugin-1.xml [2011.07.02 13:03:36 | 000,000,950 | ---- | M] () -- C:\Users\Jochum\AppData\Roaming\Mozilla\Firefox\Profiles\ywhwyc63.default\searchplugins\icqplugin-2.xml [2010.05.12 17:40:48 | 000,001,042 | ---- | M] () -- C:\Users\Jochum\AppData\Roaming\Mozilla\Firefox\Profiles\ywhwyc63.default\searchplugins\icqplugin.xml [2011.09.10 23:14:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions [2010.10.06 22:37:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010.11.01 23:40:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010.12.26 10:45:17 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2011.02.28 15:23:35 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [2011.06.29 03:15:02 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [2011.09.10 23:11:33 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} [2011.07.19 05:05:25 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2010.07.23 02:48:56 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2010.07.23 02:48:56 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2010.07.23 02:48:56 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2010.07.23 02:48:56 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2010.07.23 02:48:56 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ) O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O4:64bit: - HKLM..\Run: [Apoint] C:\Programme\Apoint\Apoint.exe (Alps Electric Co., Ltd.) O4:64bit: - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [ProfilerU] C:\Programme\Saitek\SD6\Software\ProfilerU.exe (Saitek) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [SaiMfd] C:\Programme\Saitek\SD6\Software\SaiMfd.exe (Saitek) O4:64bit: - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe" File not found O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [Logitech G35] C:\Program Files (x86)\Logitech\G35\G35.exe (Logitech(c)) O4 - HKLM..\Run: [MarketingTools] C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe (Sony Corporation) O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation) O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe (Sony Corporation) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKCU..\Run: [] C:\Users\Jochum\AppData\Local\Temp\0_3u_l.exe (Canon) O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Jochum\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc) O4 - HKCU..\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe () O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_257_Plugin.exe (Adobe Systems Incorporated) O4 - Startup: C:\Users\Jochum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech blank Produktregistrierung.lnk = C:\Program Files (x86)\Logitech\G35\eReg.exe (Leader Technologies/Logitech) O4 - Startup: C:\Users\Jochum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:64bit: - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8:64bit: - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.) O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll (Evernote Corporation) O9 - Extra 'Tools' menuitem : Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll (Evernote Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000020 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O16:64bit: - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27) O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1EFB8A60-ADE3-4852-AA62-C8616E1EABDA}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{876B557C-9929-4F0C-8361-5969A63AA0D1}: NameServer = 194.230.1.103 194.230.1.71 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{927587AB-1894-493E-8E72-6063314BF69A}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CCDD4D37-ABF4-49C2-82EB-8B79ADBC32C4}: NameServer = 195.141.56.5 193.192.227.3 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O20 - Winlogon\Notify\VESWinlogon: DllName - (VESWinlogon.dll) - C:\Windows\SysWow64\VESWinlogon.dll (Sony Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{94641ff1-5345-11e1-8219-5442495e4550}\Shell - "" = AutoRun O33 - MountPoints2\{94641ff1-5345-11e1-8219-5442495e4550}\Shell\AutoRun\command - "" = G:\AutoRun.exe O33 - MountPoints2\{affc9973-b61c-11e1-a578-001e101fb4df}\Shell - "" = AutoRun O33 - MountPoints2\{affc9973-b61c-11e1-a578-001e101fb4df}\Shell\AutoRun\command - "" = G:\AutoRun.exe O33 - MountPoints2\{beaeec0e-68b7-11e1-8a43-f07bcbe7a718}\Shell - "" = AutoRun O33 - MountPoints2\{beaeec0e-68b7-11e1-8a43-f07bcbe7a718}\Shell\AutoRun\command - "" = G:\AutoRun.exe O33 - MountPoints2\{beaeec18-68b7-11e1-8a43-f07bcbe7a718}\Shell - "" = AutoRun O33 - MountPoints2\{beaeec18-68b7-11e1-8a43-f07bcbe7a718}\Shell\AutoRun\command - "" = G:\AutoRun.exe O33 - MountPoints2\{dbdbc66b-3c7f-11e1-ae3a-f07bcbe7a718}\Shell - "" = AutoRun O33 - MountPoints2\{dbdbc66b-3c7f-11e1-ae3a-f07bcbe7a718}\Shell\AutoRun\command - "" = G:\AutoRun.exe O33 - MountPoints2\{dbdbc679-3c7f-11e1-ae3a-f07bcbe7a718}\Shell - "" = AutoRun O33 - MountPoints2\{dbdbc679-3c7f-11e1-ae3a-f07bcbe7a718}\Shell\AutoRun\command - "" = G:\AutoRun.exe O33 - MountPoints2\{f86aef09-bc29-11e1-92fe-5442495e4550}\Shell - "" = AutoRun O33 - MountPoints2\{f86aef09-bc29-11e1-92fe-5442495e4550}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a O33 - MountPoints2\G\Shell - "" = AutoRun O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\AutoRun.exe O33 - MountPoints2\H\Shell - "" = AutoRun O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2012.07.07 11:35:15 | 000,000,000 | ---D | C] -- C:\Users\Jochum\Documents\OTL [2012.07.07 10:46:29 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Jochum\Desktop\OTL.exe [2012.07.07 00:39:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus [2012.07.07 00:38:44 | 000,000,000 | ---D | C] -- C:\Users\Jochum\AppData\Roaming\Malwarebytes [2012.07.07 00:38:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2012.07.07 00:38:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2012.07.07 00:38:03 | 000,024,904 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2012.07.07 00:38:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2012.07.06 21:02:59 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee Security Scan [2012.07.06 21:02:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee Security Scan [2012.06.21 09:36:10 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll [2012.06.21 09:36:10 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe [2012.06.21 09:36:10 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll [2012.06.21 09:35:51 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll [2012.06.21 09:35:51 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll [2012.06.21 09:35:51 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll [2012.06.21 09:35:38 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll [2012.06.21 09:35:38 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe [2012.06.14 14:50:45 | 000,000,000 | ---D | C] -- C:\Users\Jochum\AppData\Local\Macromedia [2012.06.13 15:48:22 | 000,735,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2012.06.13 15:48:20 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2012.06.13 15:48:20 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2012.06.13 15:48:19 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2012.06.13 15:48:19 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2012.06.13 15:48:18 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2012.06.13 15:48:18 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2012.06.13 15:41:10 | 000,918,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2012.06.13 15:41:10 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2012.06.13 15:36:04 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll [2012.06.13 15:36:04 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll [2012.06.13 15:36:04 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe [2012.06.13 15:32:35 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2012.06.13 15:32:34 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2012.06.13 15:32:34 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2012.06.13 15:31:28 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll [2012.06.13 15:31:20 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll [2012.06.13 15:31:20 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll [2012.06.08 17:28:25 | 000,000,000 | ---D | C] -- C:\Users\Jochum\AppData\Roaming\Avira [2012.06.08 06:14:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2012.06.08 06:14:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ask.com [2012.06.08 06:14:03 | 000,027,760 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avkmgr.sys [2012.06.08 06:14:02 | 000,132,832 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys [2012.06.08 06:14:02 | 000,098,848 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2012.06.08 06:13:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2012.06.08 06:13:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.07.07 11:48:01 | 000,001,122 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012.07.07 10:47:26 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Jochum\Desktop\OTL.exe [2012.07.07 10:40:09 | 000,013,872 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.07.07 10:40:09 | 000,013,872 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.07.07 10:27:18 | 000,001,118 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012.07.07 10:27:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.07.07 10:27:01 | 3106,480,128 | -HS- | M] () -- C:\hiberfil.sys [2012.07.07 00:39:54 | 000,002,054 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk [2012.07.07 00:39:54 | 000,002,054 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2012.07.07 00:39:45 | 001,500,294 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.07.07 00:39:45 | 000,654,852 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2012.07.07 00:39:45 | 000,616,694 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012.07.07 00:39:45 | 000,130,434 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2012.07.07 00:39:45 | 000,106,816 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012.07.07 00:38:07 | 000,001,073 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2012.07.04 22:02:47 | 000,001,145 | ---- | M] () -- C:\Users\Jochum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech blank Produktregistrierung.lnk [2012.06.20 11:53:02 | 000,280,976 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2012.06.20 11:53:02 | 000,280,976 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.06.14 14:49:07 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2012.06.14 14:49:07 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2012.06.14 14:31:14 | 000,336,240 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.06.08 06:14:56 | 000,001,954 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2012.07.07 00:38:07 | 000,001,073 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2012.07.06 21:02:59 | 000,002,054 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk [2012.07.06 21:02:59 | 000,002,054 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2012.07.04 22:02:47 | 000,001,145 | ---- | C] () -- C:\Users\Jochum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech blank Produktregistrierung.lnk [2012.06.08 06:14:56 | 000,001,954 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.02.26 21:37:03 | 005,680,848 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-28.avi [2012.02.26 21:37:02 | 006,649,616 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-23.avi [2012.02.26 21:37:02 | 005,962,502 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-24.avi [2012.02.26 21:37:02 | 005,787,664 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-25.avi [2012.02.26 21:37:02 | 005,285,738 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-26.avi [2012.02.26 21:37:02 | 003,384,032 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-27.avi [2012.02.26 21:37:01 | 006,885,994 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-19.avi [2012.02.26 21:37:01 | 005,834,404 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-21.avi [2012.02.26 21:37:01 | 004,772,972 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-22.avi [2012.02.26 21:37:01 | 003,725,724 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-17.avi [2012.02.26 21:37:01 | 002,326,460 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-20.avi [2012.02.26 21:37:01 | 001,908,046 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-18.avi [2012.02.26 21:37:00 | 030,084,325 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-11.wmv [2012.02.26 21:37:00 | 012,697,897 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-16.wmv [2012.02.26 21:37:00 | 009,191,395 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-13.wmv [2012.02.26 21:37:00 | 005,619,395 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-12.wmv [2012.02.26 21:37:00 | 003,888,711 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-15.wmv [2012.02.26 21:37:00 | 003,177,743 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-14.wmv [2012.02.26 21:37:00 | 002,903,541 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-9.wmv [2012.02.26 21:37:00 | 002,753,401 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-10.wmv [2012.02.26 21:36:59 | 002,720,536 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-7.avi [2012.02.26 21:36:59 | 001,496,460 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-8.avi [2012.02.26 21:36:59 | 001,342,746 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-1.avi [2012.02.26 21:36:59 | 001,161,674 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-5.avi [2012.02.26 21:36:59 | 000,913,334 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-4.avi [2012.02.26 21:36:59 | 000,669,558 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-2.avi [2012.02.26 21:36:59 | 000,603,022 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-6.avi [2012.02.26 21:36:59 | 000,554,034 | ---- | C] () -- C:\Users\Jochum\maddiepopsicle-3.avi [2012.02.26 21:36:59 | 000,000,123 | ---- | C] () -- C:\Users\Jochum\www.anoncams.net.url [2011.07.20 19:01:47 | 000,007,601 | ---- | C] () -- C:\Users\Jochum\AppData\Local\Resmon.ResmonCfg [2010.10.01 19:58:52 | 000,280,976 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2010.10.01 19:58:49 | 000,794,408 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe [2010.10.01 19:58:49 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2010.09.03 08:10:31 | 001,527,912 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI ========== LOP Check ========== [2010.09.07 20:18:37 | 000,000,000 | -HSD | M] -- C:\Users\Jochum\AppData\Roaming\.# [2012.04.20 15:14:05 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\.minecraft [2012.04.30 12:52:26 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\.spoutcraft [2012.04.20 23:23:09 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\.spoutcraftLogs [2011.04.07 14:46:07 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\GetRightToGo [2012.04.18 12:29:47 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\ICQ [2011.08.05 22:19:19 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\Leadertech [2011.10.21 21:21:25 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\LolClient [2012.05.31 22:06:38 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\LolClient2 [2010.09.30 17:05:42 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\My Games [2010.08.30 19:22:42 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\OpenOffice.org [2012.03.10 10:17:51 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\Origin [2011.09.28 15:17:43 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\PunkBuster [2012.06.22 11:44:17 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\SoftGrid Client [2010.09.03 08:11:06 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\TP [2012.05.13 23:13:28 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\TS3Client [2012.06.20 11:52:51 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\Ubisoft [2011.11.02 22:17:51 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\Unity [2011.01.20 00:49:27 | 000,000,000 | ---D | M] -- C:\Users\Jochum\AppData\Roaming\Windows Live Writer [2012.07.05 11:57:57 | 000,032,576 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== < End of report > Code:
ATTFilter OTL Extras logfile created on: 07.07.2012 11:38:57 - Run 2
OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Jochum\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,86 Gb Total Physical Memory | 1,68 Gb Available Physical Memory | 43,53% Memory free
7,71 Gb Paging File | 5,18 Gb Available in Paging File | 67,20% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 455,04 Gb Total Space | 313,92 Gb Free Space | 68,99% Space Free | Partition Type: NTFS
Computer Name: JOCHUM-VAIO | User Name: Jochum | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0AC667AD-1076-4CF7-B9BB-2E8AE1A97A05}" = rport=445 | protocol=6 | dir=out | app=system |
"{0B7AD97B-0A15-4C9D-9D10-480D4FAFA8F9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{191CB31F-4DF1-4F84-A5D8-75C0CBDDF78F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1C2E9BD9-D62B-4A41-9D19-E78315DFD7C5}" = lport=137 | protocol=17 | dir=in | app=system |
"{1D05B502-8C5E-4731-A0A9-DFBA79CA08D0}" = rport=137 | protocol=17 | dir=out | app=system |
"{2475C724-848E-4872-B16C-8F19BC21F2E0}" = lport=138 | protocol=17 | dir=in | app=system |
"{362BF11C-22B6-46AB-9308-96A2FAEE1713}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4B2F4B8B-BB3C-4979-85F7-C5803C88C2F3}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5AFFB4AF-D3C3-4922-95F3-C8F1B9C2E6B5}" = lport=2869 | protocol=6 | dir=in | app=system |
"{5F678263-B696-4662-80FA-03B1A44E96E1}" = lport=2869 | protocol=6 | dir=in | app=system |
"{7272DAD0-D954-4E05-8446-255E68B9C84A}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7BDDC555-8773-4DFB-A1BF-90940DBEA5F8}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{7F84A9A3-88E3-43C3-9D54-02387F61487D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{88506A2C-58F5-4ECA-9E62-6966E30DA5EF}" = lport=139 | protocol=6 | dir=in | app=system |
"{998B6906-057B-4C25-94FB-BE982790C8BB}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A89784FE-2926-4605-8102-1EAE9A0EA8EB}" = rport=138 | protocol=17 | dir=out | app=system |
"{B228ADA4-F856-4F8F-A850-83A3692D4431}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{C6775EFB-79BA-48D8-BC88-FA8FFFAEE8E7}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CE0A13DB-AA51-413A-BC18-85398A4D2D9B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{E5713B95-D1D2-4BA8-B815-7ED8DA361785}" = rport=139 | protocol=6 | dir=out | app=system |
"{E854F89F-D365-496D-AB09-C12235088FE7}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EE89A67F-B7DB-416A-BEDC-363B950F0895}" = rport=10243 | protocol=6 | dir=out | app=system |
"{F6F481A0-47AF-4D6E-B0A2-E4920E33F61D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{FA305380-8BAD-4831-902C-68F57077D26B}" = lport=10243 | protocol=6 | dir=in | app=system |
"{FBF525C6-F024-4092-BC63-7708A2B76A84}" = lport=445 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{06224C68-0B2B-4B87-914B-B4C2F4EDAE5F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{08CF0CA8-B241-4236-A6D7-55DFE3FA1E79}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{08EE3169-4A3B-442B-A130-86A9881BED60}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.4\icq.exe |
"{095D777C-8517-48B4-B15D-F4D4FA55E8CF}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.4\icq.exe |
"{0A812157-2F76-4C2B-8426-34A05371077F}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\kingdoms of amalur reckoning\reckoning.exe |
"{131AB4C6-E449-4635-8904-1431926EF92F}" = protocol=17 | dir=in | app=c:\users\jochum\appdata\local\akamai\netsession_win.exe |
"{194230DD-1071-4B67-9D18-71C39E90462D}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{19DB7CC6-F8AC-4B54-B644-ADB1E80AAFCA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1AC68F42-7B2D-40B5-B621-8C90ED875B70}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{20296708-A9B7-4DB2-864A-027D829B965C}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{211AC6DC-0A94-4F7E-ACB2-AFC34A295AAA}" = protocol=17 | dir=in | app=c:\program files (x86)\firaxis games\sid meier's civilization 4\civilization4.exe |
"{23A4B4A4-4973-4C5D-A582-A4BEDFD788C4}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe |
"{283A326B-CD61-4BB2-ABD2-40D8A6E21176}" = protocol=6 | dir=in | app=c:\program files (x86)\gamigo\heroes in the sky\his.exe |
"{2B1DA967-E1D7-4496-A25D-A519356B00C6}" = protocol=6 | dir=in | app=c:\users\jochum\downloads\sweetimsetup.exe |
"{2BCB34AB-B0DC-4C6D-B783-30DAC0300D1A}" = protocol=6 | dir=out | app=system |
"{2D4BCBA6-469B-432D-B5C4-5D3C07E8AC9C}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe |
"{2EDA33AC-F435-4CD4-A588-4E2A1DE83BA4}" = protocol=17 | dir=in | app=c:\program files (x86)\gameforge4d\elsword_de\data\x2.exe |
"{2FB55F01-7F9D-4DC9-869E-0B10D1BDD3EF}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\might and magic clash of heroes\clashofheroes.exe |
"{3337B229-21E8-4CA8-B928-B3208C7B58C1}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{3B2812BC-5E37-4CF1-95A9-0C3934AB0151}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.4\icq.exe |
"{3D8C686E-9594-4BBF-9F80-A7941DBE768C}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed revelations\acrmp.exe |
"{40FA29EB-DEFE-415B-A56E-3E9475840A65}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{416886CE-262E-45B4-9A27-FCD111693708}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed revelations\acrsp.exe |
"{49418EFC-7575-4917-8EB4-DAA2A9B760F9}" = protocol=17 | dir=in | app=c:\program files (x86)\gameforge4d\elsword_de\data\hshield\ahnrpt.exe |
"{4942575F-C825-4F24-B3FF-AFF6605A5E11}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed revelations\acrsp.exe |
"{49BD7D85-12C1-4B01-9FEF-6904C0DB53D6}" = protocol=6 | dir=in | app=c:\program files (x86)\firaxis games\sid meier's civilization 4\civilization4.exe |
"{4F1FE793-54B9-4D81-8E40-97BA7E5C6752}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{50E4A331-B225-4575-997D-228425CFD3DA}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.4\icq.exe |
"{53532EA3-3F04-4D01-9174-32CA9C49BAEB}" = protocol=17 | dir=in | app=c:\users\jochum\downloads\sweetimsetup.exe |
"{55502EB7-4F33-4DEB-A24E-539D1DAEFA7E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5651683A-5C96-4DC4-9F12-44188B61C2A7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{59C0E6D6-3B85-422D-8761-D0C105F429EE}" = protocol=17 | dir=in | app=c:\program files (x86)\gameforge4d\elsword_de\elsword.exe |
"{5B035324-4196-4C6B-AD53-FE8F7DF4F834}" = protocol=17 | dir=in | app=c:\program files (x86)\gameforge4d\elsword_de\data\x2.exe |
"{5FA7B825-FF8A-4F47-8657-F0B67CE3559E}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\might and magic clash of heroes\clashofheroes.exe |
"{61A942DA-FC14-42E0-B07F-DCC7FC031038}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\assassinscreedbrotherhood.exe |
"{63BE6F4F-A098-4645-A1AD-1EE031C9A709}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{649AC110-D36F-4799-9129-7D57B780E5E3}" = protocol=6 | dir=in | app=c:\users\jochum\appdata\local\akamai\netsession_win.exe |
"{64E42C32-3BB8-4858-A0C2-DC37442650E5}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.4\icq.exe |
"{7015AD32-8E11-4731-B194-B80125188D2D}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{73F8B0A8-3ECC-446C-80FA-B4989C82C45F}" = protocol=6 | dir=in | app=c:\program files (x86)\gameforge4d\elsword_de\elsword.exe |
"{76BBEFBA-B46C-4997-8F18-06CE039BB479}" = protocol=6 | dir=in | app=c:\program files (x86)\firefly studios\stronghold 2\stronghold2.exe |
"{78FF49E0-627A-4293-BF00-730FD7615D93}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{7D4AEC22-FB88-4A70-80A5-9F0A1765CB7F}" = protocol=17 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe |
"{8161ED01-AEB3-4C32-8AA5-868E23B9F41D}" = protocol=6 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe |
"{872F15C4-3950-4EDD-AD98-17B7EB0200C0}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{87C3938B-ACA8-405E-A700-B2513F12504B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{88A06FFE-0EBD-4D2D-ADAD-7D4CE3AF2448}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\assassinscreedbrotherhood.exe |
"{88B042DC-1C6C-4742-A92A-B28A2D5AD7C1}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8F7BF4C7-6D6D-4666-A0A3-1E70BE019533}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{92BB40D6-B27C-4BD0-A046-16CEB3FEC169}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{95CB702F-62A5-4807-9CF5-4A02B705EC64}" = protocol=17 | dir=in | app=c:\program files\hp\hp deskjet 3050 j610 series\bin\hpnetworkcommunicator.exe |
"{95D27512-C814-43CA-B656-76757881BE87}" = dir=in | app=c:\program files (x86)\common files\mcafee\mna\mcnasvc.exe |
"{98045714-DE6B-45D9-B55B-96D5E552D19F}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe |
"{9B95FADB-6131-4037-87A3-27AAA8F972BB}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\kingdoms of amalur reckoning\reckoning.exe |
"{9BE71DCB-55FB-4651-B8BF-78146936381D}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{9BF87F9A-AA52-407E-BC15-ECC49DFD7A4E}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe |
"{A0854BAF-CF22-4B9A-8182-E8E44897F54E}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{A209DAB4-E826-4943-A4A3-B96292B8D3E3}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{A919E178-A3E1-40A2-B024-ED24634F87D7}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{A977B9F0-D1E6-4DA7-B94D-FCC60768D51E}" = protocol=17 | dir=in | app=c:\program files (x86)\firefly studios\stronghold 2\stronghold2.exe |
"{AD80EF48-7F5B-4AAC-8540-9DDDE0CDB70A}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{ADA6E499-58CE-4CE1-B9B9-2D4FBA9B43BA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AF1462CC-E510-475C-8AB4-C79F69CA9673}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{B5760140-F19A-436D-932F-9064427E2C6B}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed revelations\acrmp.exe |
"{B647EEBB-ABBC-4E52-A4B2-B3E58E1B0BB9}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B6D6C175-3824-4199-9C4F-FE5FCDEEBF3A}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B7DE67C2-9411-409B-8512-D46897180BFE}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{C059C9BC-CD00-4623-BE28-1E08B02A7C61}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{C0E34314-79ED-4314-B91D-E5EAF678D6D7}" = protocol=6 | dir=in | app=c:\program files (x86)\gameforge4d\elsword_de\data\hshield\ahnrpt.exe |
"{C5FA3C5F-7D26-4C7B-9053-CD1CBC79BD75}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\uplaybrowser.exe |
"{C83F6E4A-0776-471C-BBCF-41489046A15A}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{C99C2803-9686-402A-9806-DAAB53AC9B7B}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{CAABCED2-75AA-4F2E-9140-94FF83E3C8CF}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CBA5E910-E1D8-4217-B845-C7B0A0D98F5B}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{D2AE66B8-9A2F-49F8-BED3-D2B6D4B06791}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D44CBBA3-363D-4E2A-B5C9-5A88777BDD3B}" = protocol=6 | dir=in | app=c:\program files\hp\hp deskjet 3050 j610 series\bin\devicesetup.exe |
"{D4AD549C-71B5-4A60-80DB-C8477B50037E}" = protocol=6 | dir=in | app=c:\program files (x86)\gameforge4d\elsword_de\data\x2.exe |
"{D50EAFE6-6F7F-409F-8045-52A543871A17}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed revelations\assassinscreedrevelations.exe |
"{D613AE74-4159-475C-AC9A-37536D1E316D}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{D77E1DCC-BF65-49A0-8DDC-18233C15D23D}" = protocol=17 | dir=in | app=c:\program files\hp\hp deskjet 3050 j610 series\bin\devicesetup.exe |
"{DA544F82-8382-45ED-8285-077D3E41A11D}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{DB13FA24-7868-4300-9DED-E218EE1C7487}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DCA3CBAF-7072-472D-9BDF-5B1AA15FE7B3}" = protocol=17 | dir=in | app=c:\program files (x86)\gamigo\heroes in the sky\his.exe |
"{E0F56318-B1FD-4491-9CA3-E5095E7FD577}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\uplaybrowser.exe |
"{E5D42F3E-CB12-48F6-8F31-30D51F5A74E1}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E7B63CE8-7749-4C4E-8006-920DF207CAF2}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.4\icq.exe |
"{E9C06696-FBD3-444E-9B68-65AE2E78E175}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{EC57A49A-0090-414E-8227-8CCEC92D8559}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed revelations\assassinscreedrevelations.exe |
"{F06CB520-AAC6-4379-BA8E-10EE7B7ABBBD}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{F17E6888-28EB-48A6-B808-D77DBEB586B0}" = protocol=6 | dir=in | app=c:\program files\hp\hp deskjet 3050 j610 series\bin\hpnetworkcommunicator.exe |
"{F3CF283C-3D00-48FC-A818-B2994C30E3D9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{FD69B0D8-4499-4D42-B77F-251A6418254F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FDC92C76-F304-444E-96BB-9CFF1B211C39}" = protocol=6 | dir=in | app=c:\program files (x86)\gameforge4d\elsword_de\data\x2.exe |
"TCP Query User{52EFF8A7-80D8-4284-B149-D66D3FD27DA3}C:\aeriagames\rohan\rohanclient.exe" = protocol=6 | dir=in | app=c:\aeriagames\rohan\rohanclient.exe |
"TCP Query User{56120F89-B09A-4AE3-854D-AEB7E85FB49B}C:\program files (x86)\ubisoft\assassin's creed revelations\acrpr.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed revelations\acrpr.exe |
"TCP Query User{7B1DFC68-87A7-41C1-9E59-CC092ECD4879}C:\program files (x86)\usarmy\america's army 3\binaries\aa3game.exe" = protocol=6 | dir=in | app=c:\program files (x86)\usarmy\america's army 3\binaries\aa3game.exe |
"TCP Query User{AB9A5163-0695-4CFB-AD68-9346ACE91896}C:\program files (x86)\firefly studios\stronghold 2\stronghold2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\firefly studios\stronghold 2\stronghold2.exe |
"TCP Query User{AD6120A9-B6C5-41FE-BD50-3A39A9107136}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"TCP Query User{B477C399-01BE-48A0-99C0-E5D38FF39CEF}C:\program files (x86)\usarmy\america's army 3\binaries\aa3game.exe" = protocol=6 | dir=in | app=c:\program files (x86)\usarmy\america's army 3\binaries\aa3game.exe |
"TCP Query User{EA079153-1E39-4C68-B28C-78E2631E688F}C:\aeriagames\rohan\rohanclient.exe" = protocol=6 | dir=in | app=c:\aeriagames\rohan\rohanclient.exe |
"UDP Query User{1CCBD895-F9FD-480E-8738-8ACC3E09180C}C:\program files (x86)\usarmy\america's army 3\binaries\aa3game.exe" = protocol=17 | dir=in | app=c:\program files (x86)\usarmy\america's army 3\binaries\aa3game.exe |
"UDP Query User{50CBFE68-37E0-4435-A378-12ECCC601F12}C:\program files (x86)\ubisoft\assassin's creed revelations\acrpr.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed revelations\acrpr.exe |
"UDP Query User{557A0C48-E93B-45CA-BDF7-8E25D2FBCBE1}C:\program files (x86)\firefly studios\stronghold 2\stronghold2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\firefly studios\stronghold 2\stronghold2.exe |
"UDP Query User{AF68849C-407F-42DC-97EF-DDA869CC8065}C:\aeriagames\rohan\rohanclient.exe" = protocol=17 | dir=in | app=c:\aeriagames\rohan\rohanclient.exe |
"UDP Query User{B98CB22A-A237-42A6-B540-60B99AED7D81}C:\aeriagames\rohan\rohanclient.exe" = protocol=17 | dir=in | app=c:\aeriagames\rohan\rohanclient.exe |
"UDP Query User{C8A86DE3-9BCD-4A63-B974-C690E74D7BB7}C:\program files (x86)\usarmy\america's army 3\binaries\aa3game.exe" = protocol=17 | dir=in | app=c:\program files (x86)\usarmy\america's army 3\binaries\aa3game.exe |
"UDP Query User{F909FFFD-2D0F-47CC-9A79-5AC69145040B}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{11D25EF7-85FC-4B58-8278-485939C8637F}" = VAIO Update Merge Module x64
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1C55470A-7C9E-4C63-B466-6AFFC69E94E9}" = Windows Live Family Safety
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86417000FF}" = Java(TM) 7 (64-bit)
"{27607A94-33AC-4AA7-AACE-95AF6ACA3E30}" = Logitech G35
"{2B7F5983-7076-4D6E-9207-D9D05722502F}" = Smart Technology Programming Software 7.0.2.7
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{393A9268-A428-4F5A-9B20-BD753309A98E}" = Click to Disc MergeModules x64
"{3DF2B8CD-072D-49F5-BCF8-1DB86B0DF632}" = HP Deskjet 3050 J610 series - Grundlegende Software für das Gerät
"{46261E1C-5E0D-484E-8CCC-7F770375FBA2}" = VU5x64
"{46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}" = Windows Live Family Safety
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{5EBE0F1F-45DF-4298-AC6B-E8E54EAEC834}" = Microsoft IntelliPoint 7.1
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{7C3AC18F-F19B-4082-8D13-7D603848E06C}" = VAIO Update Merge Module x64
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{8D1163BE-5ECD-0303-87F7-35ED38BBB2E1}" = ATI Catalyst Install Manager
"{90140000-006D-0407-1000-0000000FF1CE}" = Microsoft Office Klick-und-Los 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = WIDCOMM Bluetooth Software
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Alps Pointing-device for VAIO
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B66CA6D0-8EA3-4838-91D1-47EACDCCFA2B}" = Studie zur Verbesserung von HP Deskjet 3050 J610 series Produkten
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{BF456ADA-407C-BFA2-52DA-08ECE9E18549}" = ccc-utility64
"{C37B6246-7D4A-4E5C-BFB4-11C8660BDC99}" = VAIO Movie Story MergeModules x64
"{D5876F0A-B2E9-4376-B9F5-CD47B7B8D820}" = Windows Live Remote Client Resources
"{D930AF5C-5193-4616-887D-B974CEFC4970}" = Windows Live Remote Service Resources
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{E743BA71-5955-420B-AA52-67508054AD66}" = VAIO Update Merge Module x64
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"3BA80AB4C7E9F8497C115C844953A3D4BEB84D21" = Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800)
"930E4792BDAEAFB62A9514EE7578775658A5D07C" = Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00B03993-F5A1-47B1-9C54-EC8FBDDDE17E}" = VAIO Care
"{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}" = Messenger Companion
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{08096C0A-B9B2-7F42-3760-BD9A1CBA9A6E}" = Catalyst Control Center Graphics Full Existing
"{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}" = VAIO Smart Network
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Central Data
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{10014C6B-F482-991B-8865-32BFEA347CE1}" = CCC Help Hungarian
"{12D0BE8D-538C-4AB1-86DE-C540308F50DA}" = VAIO Content Metadata Manager Settings
"{1404E04F-C98C-5195-251E-9CED867E37D7}" = CCC Help French
"{16D2C649-CBA8-44EE-B730-12584667D487}" = Stronghold 2 Deluxe
"{1873FFC1-FDCB-47E1-B7C7-F418211E3530}" = PMB VAIO Edition plug-in (VAIO Image Optimizer)
"{1AA0193C-398B-D400-A156-C060CFDDF132}" = Catalyst Control Center Core Implementation
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1E450972-E996-4EC1-A4C3-1518A46928D0}" = VAIO Content Metadata Intelligent Network Service Manager
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Central Tools
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FD416D0-CC16-41D1-A25C-C9986CD8BBAB}" = VAIO Content Metadata Intelligent Analyzing Manager
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{208345BE-27BB-4367-B245-A5B6E764FDD0}" = VAIO Content Metadata Intelligent Analyzing Manager
"{2110ECBD-BF15-4673-8852-8C68DDEB26AC}" = Media Gallery
"{233C14B1-D05F-96A7-1509-C87417F899F8}" = CCC Help Turkish
"{23825B69-36DF-4DAD-9CFD-118D11D80F16}" = Einstellungen für VAIO-Inhaltsüberwachung
"{2637552C-A1EE-D6C9-3D9E-716BCB76081D}" = ccc-core-static
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 27
"{291FB4BF-EEC7-4CF9-8469-F39ED1DBC4D8}" = VAIO Content Metadata XML Interface Library
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations 1.02
"{34DC654E-6E43-4BFA-9E00-6C16CFA7B9F0}" = VAIO Data Restore Tool
"{36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}" = VAIO Care
"{37531547-B1F4-45E6-98FC-8AF5F2F0EAA4}" = VAIO Content Metadata Manager Settings
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{4377F918-E6C9-4ECA-A7F5-754B310B7ED8}" = Sid Meier's Civilization 4
"{4427F384-B5BE-4769-B7D0-C784FC321EB1}" = VAIO Content Metadata Intelligent Network Service Manager
"{4882EBF5-CA37-4EF4-BCB8-9B0E78B907D0}" = VAIO Content Metadata Intelligent Analyzing Manager
"{49939C5A-7835-120D-1195-7374E1AE1CAB}" = CCC Help Spanish
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = PMB VAIO Edition plug-in (Click to Disc)
"{537BF16E-7412-448C-95D8-846E85A1D817}" = Roxio Easy Media Creator 10 LJ
"{5449FB4F-1802-4D5B-A6D8-087DB1142147}" = Realtek HDMI Audio Driver for ATI
"{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}" = VAIO Data Restore Tool
"{5810367F-CB89-1257-0283-EC37270741E7}" = CCC Help Russian
"{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}" = VAIO DVD Menu Data
"{5A4C0B1D-2379-AAE0-4907-56E83D6D8A8C}" = CCC Help Italian
"{5BEE8F1F-BD32-4553-8107-500439E43BD7}" = VAIO Update
"{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}" = VAIO-Support für Übertragungen
"{650CF18F-629C-3CF1-307D-5C93321B41CD}" = Catalyst Control Center Graphics Full New
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69131367-6458-6271-8277-25E408572433}" = CCC Help German
"{6A9D1594-7791-48f5-9CAA-DE9BCB968320}" = Kingdoms of Amalur: Reckoning
"{6B1F20F2-6321-4669-A58C-33DF8E7517FF}" = VAIO Entertainment Platform
"{6D8ED20E-E792-4DAC-BB66-009836CBD80B}" = VAIO Content Monitoring Settings
"{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}" = VAIO Movie Story Template Data
"{70991E0A-1108-437E-BA7D-085702C670C0}" =
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{72042FA6-5609-489F-A8EA-3C2DD650F667}" = VAIO Control Center
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72A6B2E5-3286-4D77-8AAC-A4BE2A8FCB90}" = CCC Help Finnish
"{7392AA60-133D-4761-94DB-8FBC9B6CD5EA}" = VAIO Content Metadata Intelligent Network Service Manager
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Central Audio
"{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}" = Bing Bar
"{787D1A33-A97B-4245-87C0-7174609A540C}" = HP Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7BB90344-0647-468E-925A-7F69F7983421}" = ArcSoft Magic-i Visual Effects 2
"{803E4FA5-A940-4420-B89D-A8BC2E160247}" = VAIO Energie Verwaltung
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{87A29380-9FFF-6D32-BBF1-61569DFD5BEA}" = CCC Help Portuguese
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{88C252C8-A7EE-4B60-BF74-8E5919A8048F}" = PMB VAIO Edition Guide
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8D047BB8-0D97-4163-27CE-351BDF225D00}" = Catalyst Control Center Localization All
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}" = VAIO Media plus
"{8F862B8C-D3F7-74F5-6C08-F0F70F744FF7}" = CCC Help Japanese
"{90140011-0066-0407-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Deutsch
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{9238E8A4-BEBA-43A3-B926-769BDBF194C5}" = VAIO Media plus Opening Movie
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{931FE23C-BB40-4C7A-A594-DB35908D8E83}" = VAIO Quick Web Access
"{935B5086-C002-0FBC-0723-5741D2478EE7}" = Catalyst Control Center InstallProxy
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{95140000-00AF-0407-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{96D0B6C6-5A72-4B47-8583-A87E55F5FE81}" =
"{96D8E26D-70CB-44DE-AE50-43095A39E5B2}" = VAIO Entertainment Platform
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B163B82-3B46-4CE5-BF01-A53E550A8E58}" = Sony Home Network Library
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DA53D22-D922-494C-B1D7-51CD9BCB9E4A}" = VAIO Hardware Diagnostics
"{9E48FF52-082C-4CC2-BB67-6E10D09C0431}" = Windows Live UX Platform Language Pack
"{9EAC0E21-510E-4259-A9C6-F5D5B8969036}" = Catalyst Control Center - Branding
"{A0F4F993-C4A7-F093-CF8D-5F03B39252F2}" = CCC Help Thai
"{A14B06FF-8534-4077-BF29-9D98631B2079}" = Patch 1.20 für Pauli Rezept-Katalog 3. Auflage
"{A3563827-B0DB-44DC-B037-15CC4E5E692F}" = VAIO Content Metadata XML Interface Library
"{A477F82B-F291-5BB0-74FF-6654A27B311A}" = CCC Help Dutch
"{A4EFAC49-5605-E9FA-5C1B-75D8AACF6139}" = Catalyst Control Center Graphics Light
"{A63E7492-A0BC-4BB9-89A7-352965222380}" = VAIO Original Funktion Einstellungen
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A7C30414-2382-4086-B0D6-01A88ABA21C3}" = VAIO Gate
"{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}" = Setting Utility Series
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A95187EF-BCF4-4468-B501-C0BAB976ADD1}" = VAIO Personalization Manager
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA668097-C081-B41E-DEDA-83BB12B7E85F}" = CCC Help Korean
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC050677-EAFC-4B57-8F83-8205F65134D2}" = VAIO Content Metadata XML Interface Library
"{AC76BA86-7AD7-1031-7B44-A95000000001}" = Adobe Reader 9.5.1 - Deutsch
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B1DADBEB-7F82-4B29-84D6-5F14A020F0A0}" = VAIO Content Metadata Intelligent Analyzing Manager
"{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}" = PMB VAIO Edition plug-in (VAIO Movie Story)
"{B2F0AAB1-8C1C-1EFE-6594-417BBB023D6B}" = CCC Help Czech
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Central Copy
"{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}" = PMB
"{B7546697-2A80-4256-A24B-1C33163F535B}" = VAIO Gate Default
"{B83FC356-B7C0-441F-8A4D-D71E088E7974}" = NVIDIA PhysX
"{BA0E9A20-010C-45C4-9E9A-EC3EFB6A7F91}" = Pauli Rezept-Katalog 3. Auflage
"{BCA907B6-5A0F-473E-8C63-0FF0CFAEB7B7}" = VAIO Personalization Manager
"{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood
"{C0618520-5C63-1583-B78A-CEE1139EF1E6}" = CCC Help Polish
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}" = Norton Online Backup
"{C7477742-DDB4-43E5-AC8D-0259E1E661B1}" = VAIO Event Service
"{C84E8865-5E2B-5A46-99F2-B8A35917B8BF}" = Catalyst Control Center Graphics Previews Common
"{CAE28200-F83E-4B83-8BEB-D8D6CA04883C}_is1" = Auto-Keyboard 9.0
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}" = Sid Meier's Civilization 4
"{D03D02D8-AB64-4785-A48E-5AA8B0FB8C14}" = Sony Home Network Library
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D2D23D08-D10E-43D6-883C-78E0B2AC9CC6}" = VU5x86
"{D36B6249-71E7-9E85-A9D6-E2239783301E}" = CCC Help Norwegian
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D5DC1775-F67A-6399-BE1D-960FC2254F91}" = CCC Help Chinese Standard
"{D604D3C7-337D-FE67-09DE-A641D3B4D886}" = CCC Help Danish
"{D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}" = VAIO Wallpaper Contents
"{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}" = Intel(R) Turbo Boost Technology Driver
"{DD23714B-A2C6-A6D2-9309-75AFAFF1F8E6}" = CCC Help English
"{DD88F979-FA58-41AC-980C-A6E1A82B61D9}" = Media Gallery
"{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}" = ArcSoft WebCam Companion 3
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DFFC0648-BC4B-47D1-93D2-6CA6B9457641}" = OpenOffice.org 3.2
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3DC1111-5D32-40F9-BB81-64E31294C1A4}" = VAIO Personalization Manager
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E7D5D189-E71D-EA01-419F-699F57B1ED65}" = Catalyst Control Center Graphics Previews Vista
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Central Core
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1432614-6183-49E6-98E8-674485463CFE}" = VAIO Original Function Settings
"{F2894826-BF35-CE79-5EA6-7BAD1DF6F8BF}" = CCC Help Greek
"{F392063E-8736-7812-47E7-7598F0B56D9D}" = CCC Help Swedish
"{F761359C-9CED-45AE-9A51-9D6605CD55C4}" = Evernote
"{F7632A9B-661E-4FD9-B1A4-3B86BC99847F}" = HP Deskjet 3050 J610 series Hilfe
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FB77DB0C-6951-47B6-9D80-A0FDBEE0334C}" =
"{FE51662F-D8F6-43B5-99D9-D4894AF00F83}" = Roxio Easy Media Creator Home
"{FF4EB4E5-55BB-D9AF-B5A2-3D6F359E7472}" = CCC Help Chinese Traditional
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Akamai" = Akamai NetSession Interface Service
"Avira AntiVir Desktop" = Avira Free Antivirus
"CDCE6956-DD16-4F82-ACA0-E4C7BAD6B26A_is1" = Divinity II - DKS
"FLV Player" = FLV Player 2.0 (build 25)
"Google Chrome" = Google Chrome
"HP Photo Creations" = HP Photo Creations
"ICQToolbar" = ICQ Toolbar
"InstallShield_{1873FFC1-FDCB-47E1-B7C7-F418211E3530}" = PMB VAIO Edition plug-in (VAIO Image Optimizer)
"InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = PMB VAIO Edition plug-in (Click to Disc)
"InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}" = VAIO Movie Story Template Data
"InstallShield_{88C252C8-A7EE-4B60-BF74-8E5919A8048F}" = PMB VAIO Edition Guide
"InstallShield_{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}" = PMB VAIO Edition plug-in (VAIO Movie Story)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.61.0.1400
"MarketingTools" = VAIO Marketing Tools
"McAfee Security Scan" = McAfee Security Scan Plus
"Mobile Partner" = Mobile Partner
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"NosTale(DE)_is1" = Nostale(DE)
"Office14.Click2Run" = Microsoft Office Klick-und-Los 2010
"Origin" = Origin
"PunkBusterSvc" = PunkBuster Services
"Rohan_DE" = R.O.H.A.N. Vendetta
"splashtop" = VAIO Quick Web Access
"Steam App 72850" = The Elder Scrolls V: Skyrim
"VAIO Help and Support" =
"VAIO Premium Partners" = VAIO Premium Partners
"VAIO screensaver" = VAIO screensaver
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"2a4f70b48f669acd" = AA3Deploy
"Akamai" = Akamai NetSession Interface
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"UnityWebPlayer" = Unity Web Player
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 06.07.2012 19:35:35 | Computer Name = Jochum-VAIO | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: firefox.exe, Version: 1.9.2.3855,
Zeitstempel: 0x4c48d5ce Name des fehlerhaften Moduls: NPSWF32_11_3_300_257.dll_unloaded,
Version: 0.0.0.0, Zeitstempel: 0x4fc821fc Ausnahmecode: 0xc0000005 Fehleroffset:
0x5fd19903 ID des fehlerhaften Prozesses: 0x2a7c Startzeit der fehlerhaften Anwendung:
0x01cd5bcefd8f063a Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Mozilla
Firefox\firefox.exe Pfad des fehlerhaften Moduls: NPSWF32_11_3_300_257.dll Berichtskennung:
48594e92-c7c3-11e1-a72a-f07bcbe7a718
Error - 06.07.2012 19:41:30 | Computer Name = Jochum-VAIO | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: FlashPlayerPlugin_11_3_300_257.exe,
Version: 11.3.300.257, Zeitstempel: 0x4fc82063 Name des fehlerhaften Moduls: NPSWF32_11_3_300_257.dll,
Version: 11.3.300.257, Zeitstempel: 0x4fc821fc Ausnahmecode: 0xc0000005 Fehleroffset:
0x00490fb1 ID des fehlerhaften Prozesses: 0x1738 Startzeit der fehlerhaften Anwendung:
0x01cd5bd01aac48dd Pfad der fehlerhaften Anwendung: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_257.exe
Pfad
des fehlerhaften Moduls: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll
Berichtskennung:
1c04411b-c7c4-11e1-a72a-f07bcbe7a718
Error - 06.07.2012 19:49:12 | Computer Name = Jochum-VAIO | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: firefox.exe, Version: 1.9.2.3855,
Zeitstempel: 0x4c48d5ce Name des fehlerhaften Moduls: NPSWF32_11_3_300_257.dll_unloaded,
Version: 0.0.0.0, Zeitstempel: 0x4fc821fc Ausnahmecode: 0xc0000005 Fehleroffset:
0x6fd89903 ID des fehlerhaften Prozesses: 0x28e4 Startzeit der fehlerhaften Anwendung:
0x01cd5bd0e19ddd28 Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Mozilla
Firefox\firefox.exe Pfad des fehlerhaften Moduls: NPSWF32_11_3_300_257.dll Berichtskennung:
2f98b91a-c7c5-11e1-a72a-f07bcbe7a718
Error - 06.07.2012 19:51:36 | Computer Name = Jochum-VAIO | Source = VzCdbSvc | ID = 7
Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA})
(Fehlercode = 0x80042000)
Error - 06.07.2012 19:51:36 | Computer Name = Jochum-VAIO | Source = VzCdbSvc | ID = 7
Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})
(Fehlercode = 0x80042019)
Error - 06.07.2012 19:54:11 | Computer Name = Jochum-VAIO | Source = VzCdbSvc | ID = 7
Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA})
(Fehlercode = 0x80042000)
Error - 06.07.2012 19:54:11 | Computer Name = Jochum-VAIO | Source = VzCdbSvc | ID = 7
Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})
(Fehlercode = 0x80042019)
Error - 07.07.2012 04:27:30 | Computer Name = Jochum-VAIO | Source = VzCdbSvc | ID = 7
Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA})
(Fehlercode = 0x80042000)
Error - 07.07.2012 04:27:30 | Computer Name = Jochum-VAIO | Source = VzCdbSvc | ID = 7
Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})
(Fehlercode = 0x80042019)
Error - 07.07.2012 05:42:17 | Computer Name = Jochum-VAIO | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: FlashPlayerPlugin_11_3_300_257.exe,
Version: 11.3.300.257, Zeitstempel: 0x4fc82063 Name des fehlerhaften Moduls: NPSWF32_11_3_300_257.dll,
Version: 11.3.300.257, Zeitstempel: 0x4fc821fc Ausnahmecode: 0xc0000005 Fehleroffset:
0x000ccb60 ID des fehlerhaften Prozesses: 0x167c Startzeit der fehlerhaften Anwendung:
0x01cd5c1ba046f94d Pfad der fehlerhaften Anwendung: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_257.exe
Pfad
des fehlerhaften Moduls: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll
Berichtskennung:
09b50334-c818-11e1-b9ed-f07bcbe7a718
[ System Events ]
Error - 06.07.2012 19:51:32 | Computer Name = Jochum-VAIO | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Roxio Upnp Server 10 erreicht.
Error - 06.07.2012 19:53:48 | Computer Name = Jochum-VAIO | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?07.?07.?2012 um 01:52:08 unerwartet heruntergefahren.
Error - 06.07.2012 19:54:06 | Computer Name = Jochum-VAIO | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Mobile Partner. OUC erreicht.
Error - 06.07.2012 19:54:06 | Computer Name = Jochum-VAIO | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Mobile Partner. OUC" wurde aufgrund folgenden Fehlers
nicht gestartet: %%1053
Error - 06.07.2012 19:54:07 | Computer Name = Jochum-VAIO | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Roxio Upnp Server 10 erreicht.
Error - 07.07.2012 04:27:08 | Computer Name = Jochum-VAIO | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?07.?07.?2012 um 01:55:41 unerwartet heruntergefahren.
Error - 07.07.2012 04:27:25 | Computer Name = Jochum-VAIO | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Mobile Partner. OUC erreicht.
Error - 07.07.2012 04:27:25 | Computer Name = Jochum-VAIO | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Mobile Partner. OUC" wurde aufgrund folgenden Fehlers
nicht gestartet: %%1053
Error - 07.07.2012 04:27:26 | Computer Name = Jochum-VAIO | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Roxio Upnp Server 10 erreicht.
Error - 07.07.2012 04:32:46 | Computer Name = Jochum-VAIO | Source = Service Control Manager | ID = 7022
Description = Der Dienst "VAIO Care Performance Service" wurde nicht richtig gestartet.
< End of report >
|
|
09.07.2012, 18:58
| #2 | |
| /// Malware-holic   | 0_3u_l.exe *32 Virus? Trojaner? hi
__________________Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!Downloade dir bitte Combofix von einem dieser Downloadspiegel Link 1 Link 2 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ |
|
13.07.2012, 12:06
| #3 |
| | 0_3u_l.exe *32 Virus? Trojaner? Danke für die Antwort. Ich habe hier die Combofix daten:
__________________Combofix Logfile: Code:
ATTFilter ComboFix 12-07-12.02 - Jochum 13.07.2012 12:09:36.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.3950.2191 [GMT 2:00]
ausgeführt von:: c:\users\Jochum\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Outdated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Outdated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-06-13 bis 2012-07-13 ))))))))))))))))))))))))))))))
.
.
2012-07-13 10:23 . 2012-07-13 10:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-13 10:14 . 2012-07-13 10:14 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{87552CDF-7281-462C-9018-EC2591B75EEE}\offreg.dll
2012-07-12 20:22 . 2012-06-12 03:08 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-07-12 16:40 . 2012-06-06 06:06 2004480 ----a-w- c:\windows\system32\msxml6.dll
2012-07-12 16:40 . 2012-06-06 06:06 1881600 ----a-w- c:\windows\system32\msxml3.dll
2012-07-12 16:40 . 2012-06-06 05:05 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll
2012-07-12 16:40 . 2012-06-06 05:05 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2012-07-12 16:40 . 2010-06-26 03:55 2048 ----a-w- c:\windows\system32\msxml3r.dll
2012-07-12 16:40 . 2010-06-26 03:24 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2012-07-12 16:39 . 2012-06-02 05:50 458704 ----a-w- c:\windows\system32\drivers\cng.sys
2012-07-12 16:39 . 2012-06-02 05:45 340992 ----a-w- c:\windows\system32\schannel.dll
2012-07-12 16:39 . 2012-06-02 05:48 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-07-12 16:39 . 2012-06-02 05:48 151920 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-07-12 16:39 . 2012-06-02 05:44 307200 ----a-w- c:\windows\system32\ncrypt.dll
2012-07-12 16:39 . 2012-06-02 04:40 225280 ----a-w- c:\windows\SysWow64\schannel.dll
2012-07-12 16:39 . 2012-06-02 04:39 219136 ----a-w- c:\windows\SysWow64\ncrypt.dll
2012-07-12 16:39 . 2012-06-02 04:40 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2012-07-12 16:39 . 2012-06-02 04:34 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2012-07-12 16:22 . 2012-05-31 04:04 9013136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{87552CDF-7281-462C-9018-EC2591B75EEE}\mpengine.dll
2012-07-07 13:20 . 2012-07-07 13:20 -------- d-----w- c:\program files (x86)\7-Zip
2012-07-06 22:38 . 2012-07-06 22:38 -------- d-----w- c:\users\Jochum\AppData\Roaming\Malwarebytes
2012-07-06 22:38 . 2012-07-06 22:38 -------- d-----w- c:\programdata\Malwarebytes
2012-07-06 22:38 . 2012-04-04 13:56 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-06 22:38 . 2012-07-06 22:38 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-06-21 07:36 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-21 07:36 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-21 07:36 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-21 07:36 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-21 07:35 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-21 07:35 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-21 07:35 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-21 07:35 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-21 07:35 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-06-14 12:50 . 2012-06-14 12:50 -------- d-----w- c:\users\Jochum\AppData\Local\Macromedia
2012-06-13 13:36 . 2012-04-26 05:41 77312 ----a-w- c:\windows\system32\rdpwsx.dll
2012-06-13 13:36 . 2012-04-26 05:41 149504 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-06-13 13:36 . 2012-04-26 05:34 9216 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-06-13 13:32 . 2012-05-01 05:40 209920 ----a-w- c:\windows\system32\profsvc.dll
2012-06-13 13:32 . 2012-05-04 11:06 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-06-13 13:32 . 2012-05-04 10:03 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-06-13 13:32 . 2012-05-04 10:03 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-06-13 13:31 . 2012-04-28 03:55 210944 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-06-13 13:31 . 2012-04-07 12:31 3216384 ----a-w- c:\windows\system32\msi.dll
2012-06-13 13:31 . 2012-04-07 11:26 2342400 ----a-w- c:\windows\SysWow64\msi.dll
2012-06-13 13:31 . 2012-04-24 05:37 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2012-06-13 13:31 . 2012-04-24 05:37 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-06-13 13:31 . 2012-04-24 05:37 1462272 ----a-w- c:\windows\system32\crypt32.dll
2012-06-13 13:31 . 2012-04-24 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-06-13 13:31 . 2012-04-24 04:36 1158656 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-06-13 13:31 . 2012-04-24 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-20 09:53 . 2010-10-01 18:05 280976 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-06-20 09:53 . 2010-10-01 17:58 280976 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-06-14 12:49 . 2012-04-02 18:18 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-06-14 12:49 . 2011-05-17 12:39 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-02 13:24 . 2012-06-08 04:14 27760 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-04-27 08:20 . 2012-06-08 04:14 132832 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-04-24 22:32 . 2012-06-08 04:14 98848 ----a-w- c:\windows\system32\drivers\avgntflt.sys
.
.
((((((((((((((((((((((((((((( SnapShot@2012-07-12_18.31.51 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-07-12 20:22 . 2012-07-12 20:22 13330 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\SoftGrid Client\Icon Cache\icon_ex.dat
- 2012-07-11 18:38 . 2012-07-11 18:38 13330 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\SoftGrid Client\Icon Cache\icon_ex.dat
+ 2009-07-14 04:54 . 2012-07-13 10:02 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-07-12 13:49 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-07-12 13:49 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-07-13 10:02 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-07-12 13:49 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-07-13 10:02 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-05-19 21:01 . 2012-07-13 10:05 82848 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
- 2010-05-19 21:01 . 2012-07-12 13:54 82848 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
- 2009-07-14 05:10 . 2012-07-12 13:54 38258 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-07-13 10:05 38258 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-08-28 15:56 . 2012-07-13 10:05 26922 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2928732780-1279311620-2045354258-1000_UserData.bin
+ 2010-05-22 00:36 . 2012-07-13 10:14 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-05-22 00:36 . 2012-07-12 15:50 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-07-12 15:50 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-07-13 10:14 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-08-28 19:53 . 2012-07-13 10:06 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-08-28 19:53 . 2012-07-12 13:52 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:46 . 2012-07-13 10:07 93696 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2010-08-28 19:53 . 2012-07-13 10:06 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-08-28 19:53 . 2012-07-12 13:52 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-08-28 19:53 . 2012-07-13 10:06 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-08-28 19:53 . 2012-07-12 13:52 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-08-28 19:53 . 2012-07-13 10:06 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-08-28 19:53 . 2012-07-12 18:09 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-08-28 19:53 . 2012-07-13 10:06 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-08-28 19:53 . 2012-07-12 18:09 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2012-07-13 10:02 . 2012-07-13 10:02 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-07-12 13:49 . 2012-07-12 13:49 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-07-13 10:02 . 2012-07-13 10:02 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-07-12 13:49 . 2012-07-12 13:49 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-07-12 16:33 . 2012-06-06 05:03 805376 c:\windows\SysWOW64\cdosys.dll
- 2011-06-23 10:51 . 2010-11-20 12:18 805376 c:\windows\SysWOW64\cdosys.dll
+ 2009-07-14 04:45 . 2012-07-13 10:02 336240 c:\windows\system32\FNTCACHE.DAT
- 2009-07-14 04:45 . 2012-06-14 12:31 336240 c:\windows\system32\FNTCACHE.DAT
+ 2009-07-14 05:12 . 2012-07-13 10:14 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-07-14 05:12 . 2012-02-16 07:41 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2010-05-22 00:36 . 2012-07-12 15:50 212992 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-05-22 00:36 . 2012-07-13 10:14 212992 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 05:01 . 2012-07-11 18:38 309240 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-07-12 20:22 309240 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2011-06-23 10:51 . 2010-11-20 13:25 1133568 c:\windows\system32\cdosys.dll
+ 2012-07-12 16:33 . 2012-06-06 06:02 1133568 c:\windows\system32\cdosys.dll
+ 2009-07-14 04:45 . 2012-07-13 10:06 7172133 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
- 2009-07-14 04:45 . 2012-06-22 05:24 7172133 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
- 2010-08-28 17:02 . 2012-07-11 18:38 2215152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2928732780-1279311620-2045354258-1000-8192.dat
+ 2010-08-28 17:02 . 2012-07-12 20:22 2215152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2928732780-1279311620-2045354258-1000-8192.dat
+ 2012-07-12 16:42 . 2012-06-09 04:41 12873728 c:\windows\SysWOW64\shell32.dll
+ 2009-07-14 02:34 . 2012-07-13 10:00 10747904 c:\windows\system32\SMI\Store\Machine\schema.dat
- 2009-07-14 02:34 . 2012-06-21 07:48 10747904 c:\windows\system32\SMI\Store\Machine\schema.dat
- 2012-02-15 16:09 . 2012-01-04 10:44 14172672 c:\windows\system32\shell32.dll
+ 2012-07-12 16:42 . 2012-06-09 05:43 14172672 c:\windows\system32\shell32.dll
.
-- Snapshot auf jetziges Datum zurückgesetzt --
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-01-04 18:20 1514152 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2012-01-04 1514152]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2011-10-21 3077528]
"Akamai NetSession Interface"="c:\users\Jochum\AppData\Local\Akamai\netsession_win.exe" [2012-05-26 4327744]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2012-01-18 1242448]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-11-20 284696]
"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2009-08-26 320880]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-13 98304]
"NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-06-17 538472]
"PMBVolumeWatcher"="c:\program files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2009-10-24 597792]
"MarketingTools"="c:\program files (x86)\Sony\Marketing Tools\MarketingTools.exe" [2010-05-22 26624]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2010-03-12 49208]
"Logitech G35"="c:\program files (x86)\Logitech\G35\G35.exe" [2010-10-05 1811800]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]
"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2012-01-04 1391272]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-05-01 348624]
.
c:\users\Jochum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech blank Produktregistrierung.lnk - c:\program files (x86)\Logitech\G35\eReg.exe [2008-2-13 493832]
OpenOffice.org 3.2.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-9-4 1081632]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2009-12-01 20:03 98304 ----a-w- c:\windows\System32\VESWinlogon.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-22 133104]
R2 Mobile Partner. RunOuc;Mobile Partner. OUC;c:\program files (x86)\Mobile Partner\UpdateDog\ouc.exe [2012-03-08 218624]
R2 Roxio Upnp Server 10;Roxio Upnp Server 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [2009-08-30 362992]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [2009-11-18 52264]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-11-18 35104]
R3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [2009-11-05 27504]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2012-03-08 117248]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2009-11-13 151936]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2009-12-16 244736]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64k.sys [2009-11-05 34160]
R3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2009-08-30 313840]
R3 SaiK0CCB;SaiK0CCB;c:\windows\system32\DRIVERS\SaiK0CCB.sys [2010-08-10 171016]
R3 SaiU0CCB;SaiU0CCB;c:\windows\system32\DRIVERS\SaiU0CCB.sys [2010-08-10 41096]
R3 SOHCImp;VAIO Media plus Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2009-10-15 120104]
R3 SOHDBSvr;VAIO Media plus Database Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [2009-10-15 70952]
R3 SOHDms;VAIO Media plus Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2009-10-15 427304]
R3 SOHDs;VAIO Media plus Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2009-10-15 75048]
R3 SOHPlMgr;VAIO Media plus Playlist Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [2009-10-15 91432]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2009-09-01 361840]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2010-02-19 115568]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [2010-08-29 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-05-20 55280]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2012-05-02 27760]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-01-27 202752]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-05-01 86224]
S2 AntiVirWebService;Avira Browser Schutz;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2012-05-01 465360]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 HWDeviceService64.exe;HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe [2010-11-16 339456]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-20 13336]
S2 ICQ Service;ICQ Service;c:\program files (x86)\ICQ6Toolbar\ICQ Service.exe [2010-09-06 247096]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2009-10-24 360224]
S2 rimspci;rimspci;c:\windows\system32\drivers\rimssne64.sys [2009-11-06 93696]
S2 risdsnpe;risdsnpe;c:\windows\system32\drivers\risdsne64.sys [2009-09-15 75776]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [2011-01-29 259192]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-14 2320920]
S2 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2009-09-14 642416]
S2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2010-02-19 529776]
S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2009-11-25 821760]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 19968]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [2012-03-08 421376]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-12-14 56344]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2012-03-08 86016]
S3 LADF_DHP2;G35 DHP2 Filter Driver;c:\windows\system32\DRIVERS\ladfDHP2amd64.sys [2010-09-29 62168]
S3 LADF_SBVM;G35 SBVM Filter Driver;c:\windows\system32\DRIVERS\ladfSBVMamd64.sys [2010-09-29 377176]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys [2009-08-19 11392]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2009-11-30 571248]
S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe [2011-02-14 44736]
S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update Common\VUAgent.exe [2012-01-13 1256040]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-11-12 395264]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Inhalt des "geplante Tasks" Ordners
.
2012-07-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-22 00:43]
.
2012-07-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-22 00:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-16 9636896]
"Apoint"="c:\program files (x86)\Apoint\Apoint.exe" [BU]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2009-11-05 2320752]
"ProfilerU"="c:\program files\Saitek\SD6\Software\ProfilerU.exe" [2010-07-29 310272]
"SaiMfd"="c:\program files\Saitek\SD6\Software\SaiMfd.exe" [2010-07-29 158208]
"SunJavaUpdateSched"="c:\program files\Java\jre7\bin\jusched.exe" [BU]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://start.icq.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = 127.0.0.1:9421;<local>
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files (x86)\ICQ7.4\ICQ.exe
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
TCP: Interfaces\{876B557C-9929-4F0C-8361-5969A63AA0D1}: NameServer = 194.230.1.103 194.230.1.71
TCP: Interfaces\{CCDD4D37-ABF4-49C2-82EB-8B79ADBC32C4}: NameServer = 195.141.56.5 193.192.227.3
FF - ProfilePath - c:\users\Jochum\AppData\Roaming\Mozilla\Firefox\Profiles\ywhwyc63.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - http
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.2.6&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\% C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-2928732780-1279311620-2045354258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-2928732780-1279311620-2045354258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-07-13 12:47:55
ComboFix-quarantined-files.txt 2012-07-13 10:47
ComboFix2.txt 2012-07-12 18:55
.
Vor Suchlauf: 21 Verzeichnis(se), 344.792.891.392 Bytes frei
Nach Suchlauf: 22 Verzeichnis(se), 344.357.425.152 Bytes frei
.
- - End Of File - - CCA9E3650E0CC145EC17169DC749494F
was noch erwähnenswärt ist. als ich das letzte mal meinen Laptop eingeschaltet habe, hat mir Avira gemeldet das der Prozess " 0_3u_l.exe *32" ein Troianer ist und in quarantäne verschoben wurde. Seitdem habe ich keine probleme mehr, aber das verschwinden der symptome bedeutetja nicht, das mein rechner sauber ist. Geändert von Jochum (13.07.2012 um 12:13 Uhr) |
|
14.07.2012, 17:57
| #4 |
| /// Malware-holic | 0_3u_l.exe *32 Virus? Trojaner? hi internet sollte funktionieren denke ich. wenn dem so ist: lade den CCleaner standard: CCleaner Download - CCleaner 3.20.1750 falls der CCleaner bereits instaliert, überspringen. instalieren, öffnen, extras, liste der instalierten programme, als txt speichern. öffnen. hinter, jedes von dir benötigte programm, schreibe notwendig. hinter, jedes, von dir nicht benötigte, unnötig. hinter, dir unbekannte, unbekannt. liste posten.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
14.07.2012, 19:54
| #5 |
| | 0_3u_l.exe *32 Virus? Trojaner? Mein Internet geht, allerdings mit gewissen problemen. Mir stürzt Firefox immer ab. Ob auf Youtube, Facebook oder beim èberprüfen meiner mails, es lädt und dann stürtzt es ab ohne fehlermeldung. Selten bekomme ich die meldung das mein Flashplayer nicht antwortet, allerdings sagt mit die seite von dem Player, das ich die aktuellste version besitze. Es kahm auch schon vor, das ich bei Firefox keinen sound hatte. Also auf youtube und co, kommt kein sound. Auch mein WIndows media player hat in letzter zeit komische probleme, wo ich plötzlich nichts wiedergeben kann, werder musik noch filme. Da ich keine ahnung auf dem Gebiet von Rechnern habe, sind die meisten der Programme mit UnBekannt gezeichnet, weil ich nicht wuste ob die Benötigt werden oder nicht. Hier mal die erwähnte liste: Code:
ATTFilter 7-Zip 9.20 07.07.2012 Nötig AA3Deploy Army Game 24.01.2011 1.2.1.4 UnB Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 07.07.2012 10.0.42.34 UnB Adobe Flash Player 11 Plugin Adobe Systems Incorporated 07.07.2012 6,00MB 11.3.300.257 UnB Adobe Reader 9.5.1 - Deutsch Adobe Systems Incorporated 29.04.2012 118MB 9.5.1 UnB Akamai NetSession Interface Akamai Technologies, Inc 24.06.2012 UnB Akamai NetSession Interface Service 07.07.20 UnB Alps Pointing-device for VAIO ALPS ELECTRIC CO., LTD. 22.05.2010 Nötig ArcSoft Magic-i Visual Effects 2 ArcSoft 07.07.2012 2.0.1.85 UnB ArcSoft WebCam Companion 3 ArcSoft 07.07.2012 3.0.21.278 UnB Ask Toolbar Ask.com 08.06.2012 3,38MB 1.14.1.0 UnN Ask Toolbar Updater Ask.com 08.06.2012 1.2.0.20064 UnN Assassin's Creed Brotherhood Ubisoft 28.09.2011 1.03 Nötig Assassin's Creed Revelations 1.02 Ubisoft 16.02.2012 1.02 Nötig ATI Catalyst Install Manager ATI Technologies, Inc. 22.05.2010 20,7MB 3.0.750.0 UnB Auto-Keyboard 9.0 Auto-Keyboard 09.06.2011 Nötig Avira Free Antivirus Avira 07.07.2012 125MB 12.0.0.1125 Nötig Bing Bar Microsoft Corporation 18.03.2011 24,4MB 7.0.609.0 Nötig CCleaner Piriform 22.06.2012 3.20 Nötig Divinity II - DKS Focus 09.12.2010 (#version} Nötig Einstellungen für VAIO-Inhaltsüberwachung Sony Corporation 22.05.2010 2.4.1.09180 UnB Evernote Evernote Corp. 22.05.2010 53,1MB 3.5.0.545 UnN FLV Player 2.0 (build 25) Martijn de Visser 07.07.2012 2.0 (build 25) Nötig Google Chrome Google Inc. 22.05.2010 3.0.195.21 UnN HP Deskjet 3050 J610 series - Grundlegende Software für das Gerät Hewlett-Packard Co. 25.12.2010 105MB 22.0.334.0 Nötig HP Deskjet 3050 J610 series Hilfe Hewlett Packard 25.12.2010 12,8MB 140.0.63.63 Nötig HP Photo Creations HP Photo Creations Powered by RocketLife 07.07.2012 14,6MB 1.0.0.3341 Nötig HP Update Hewlett-Packard 25.12.2010 2,96MB 5.002.005.003 Nötig ICQ Toolbar ICQ 07.07.2012 3.0.0 UnN ICQ7.4 ICQ 07.04.2011 7.4 UnB Intel(R) Control Center Intel Corporation 22.05.2010 1.2.1.1007 Intel(R) Management Engine Components Intel Corporation 22.05.2010 6.0.0.1179 Nötig Intel(R) Rapid Storage Technology Intel Corporation 22.05.2010 9.5.4.1001 Nötig Intel(R) Turbo Boost Technology Driver Intel Corporation 22.05.2010 01.00.01.1002 Nötig Java(TM) 6 Update 27 Oracle 06.10.2010 94,8MB 6.0.270 UnB Java(TM) 7 (64-bit) Oracle 26.08.2011 93,3MB 7.0.0 UnB Java(TM) 7 Update 5 Oracle 14.07.2012 99,3MB 7.0.50 UnB JavaFX 2.1.1 Oracle Corporation 14.07.2012 20,8MB 2.1.1 UnB Kingdoms of Amalur: Reckoning Electronic Arts 07.07.2012 1.0.0.0 Nötig League of Legends Riot Games 21.10.2011 1.02.0000 Nötig Logitech G35 Logitech 05.08.2011 5,17MB 1.1.178 Nötig Malwarebytes Anti-Malware Version 1.61.0.1400 Malwarebytes Corporation 07.07.2012 18,0MB 1.61.0.1400 Nötig Media Gallery Sony Corporation 22.05.2010 1.1.1.11200 UnB Microsoft .NET Framework 4 Client Profile Microsoft Corporation 24.11.2010 38,8MB 4.0.30319 UnB Microsoft IntelliPoint 7.1 Microsoft 28.08.2010 32,3MB 7.10.344.0 UnB Microsoft Office 2010 Microsoft Corporation 22.05.2010 6,31MB 14.0.4763.1000 UnB Microsoft Office Klick-und-Los 2010 Microsoft Corporation 07.07.2012 14.0.4763.1000 UnB Microsoft Office Starter 2010 - Deutsch Microsoft Corporation 07.07.2012 14.0.4763.1000 UnB Microsoft PowerPoint Viewer Microsoft Corporation 16.02.2012 196MB 14.0.6029.1000 UnB Microsoft Silverlight Microsoft Corporation 10.05.2012 180MB 4.1.10329.0 UnB Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 22.05.2010 1,72MB 3.1.0000 UnB Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Corporation 30.08.2010 258KB 8.0.50727.4053 UnB Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 30.08.2010 250KB 8.0.50727.4053 UnB Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 17.06.2011 300KB 8.0.56336 UnB Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 22.05.2010 708KB 8.0.61000 UnB Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 Microsoft Corporation 14.04.2011 580KB 8.0.51011 UnB Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 Microsoft Corporation 31.08.2010 212KB 9.0.30729.4148 UnB Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 20.10.2010 198KB 9.0.30729.4148 UnB Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 Microsoft Corporation 14.04.2011 790KB 9.0.30729.5570 UnB Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 14.04.2011 598KB 9.0.30729.5570 UnB Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 30.08.2010 2,52MB 9.0.21022 UnB Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 17.06.2011 788KB 9.0.30729.6161 UnB Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 19.10.2010 588KB 9.0.30729 UnB Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 17.06.2011 600KB 9.0.30729.6161 UnB Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 04.03.2012 13,8MB 10.0.40219 UnB Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 04.03.2012 15,0MB 10.0.40219 UnB Mobile Partner Huawei Technologies Co.,Ltd 07.07.2012 21.005.11.01.154 Nötig Mozilla Firefox (3.6.8) Mozilla 07.07.2012 3.6.8 (de) Nötig MSXML 4.0 SP2 (KB954430) Microsoft Corporation 28.08.2010 1,27MB 4.20.9870.0 UnB MSXML 4.0 SP2 (KB973688) Microsoft Corporation 28.08.2010 1,33MB 4.20.9876.0 UnB Norton Online Backup Symantec 22.05.2010 2,04MB 1.2.20.0 UnB Nostale(DE) Gameforge 4D GmbH 22.09.2010 1,86GB UnN NVIDIA PhysX NVIDIA Corporation 09.12.2010 119MB 9.09.0428 UnB OpenOffice.org 3.2 OpenOffice.org 30.08.2010 380MB 3.2.9502 UnN Origin Electronic Arts, Inc. 07.07.2012 8.5.0.4550 Nötig Pando Media Booster Pando Networks Inc. 07.07.2012 5,46MB 2.3.6.0 UnB Patch 1.20 für Pauli Rezept-Katalog 3. Auflage Pauli Fachbuchverlag AG 09.11.2011 15,1MB 10.06.2007 Nötig Pauli Rezept-Katalog 3. Auflage Pauli Fachbuchverlag AG 09.11.2011 35,5MB 5.05.2005 Nötig PMB Sony Corporation 22.05.2010 257MB 5.0.00.10260 UnB PMB VAIO Edition Guide Sony Corporation 22.05.2010 197MB 1.0.00.09250 UnB PMB VAIO Edition plug-in (Click to Disc) Sony Corporation 28.08.2010 188MB 3.2.00.16060 UnB PMB VAIO Edition plug-in (VAIO Image Optimizer) Sony Corporation 22.05.2010 39,4MB 1.0.00.10150 UnB PMB VAIO Edition plug-in (VAIO Movie Story) Sony Corporation 29.08.2010 69,4MB 2.2.00.15250 UnB PunkBuster Services Even Balance, Inc. 07.07.2012 0.990 UnB R.O.H.A.N. Vendetta YNK-GAMES Entertainment 07.07.2012 1.00.0000 UnN Realtek HDMI Audio Driver for ATI Realtek Semiconductor Corp. 07.07.2012 6.0.1.5992 UnB Realtek High Definition Audio Driver Realtek Semiconductor Corp. 22.05.2010 6.0.1.5992 UnB Roxio Easy Media Creator 10 LJ Roxio 07.07.2012 125MB 10.3 UnB Setting Utility Series Sony Corporation 22.05.2010 5.1.0.11200 UnB Sid Meier's Civilization 4 Firaxis Games 30.09.2010 1.00.0000 UnB Skype™ 5.8 Skype Technologies S.A. 29.04.2012 19,0MB 5.8.158 Nötig Smart Technology Programming Software 7.0.2.7 Mad Catz 02.08.2011 66,5MB 7.0.2.7 UnB Sony Home Network Library Sony Corporation 22.05.2010 2.0.1.10160 UnB Steam Valve Corporation 18.01.2012 35,4MB 1.0.0.0 Nötig Stronghold 2 Deluxe Firefly Studios 27.11.2010 1.40.100 Nötig Studie zur Verbesserung von HP Deskjet 3050 J610 series Produkten Hewlett-Packard Co. 25.12.2010 6,90MB 22.0.334.0 UnB TeamSpeak 3 Client TeamSpeak Systems GmbH 19.11.2010 Nötig The Elder Scrolls V: Skyrim Bethesda Game Studios 07.07.2012 Nötig Ubisoft Game Launcher UBISOFT 28.09.2011 1.0.0.0 Nötig Unity Web Player Unity Technologies ApS 02.11.2011 12,0MB UnB VAIO Care Sony Corporation 02.12.2011 6.4.2.11150 UnB VAIO Content Metadata Intelligent Analyzing Manager Sony Corporation 22.05.2010 3.6.0.09250 UnB VAIO Content Metadata Intelligent Network Service Manager Sony Corporation 22.05.2010 3.6.0.09080 UnB VAIO Content Metadata Manager Settings Sony Corporation 22.05.2010 3.6.0.09240 UnB VAIO Content Metadata XML Interface Library Sony Corporation 22.05.2010 3.6.0.09080 UnB VAIO Control Center Sony Corporation 22.05.2010 4.1.0.10160 UnB VAIO Data Restore Tool Sony Corporation 22.05.2010 1.2.0.09150 UnB VAIO DVD Menu Data Sony Corporation 22.05.2010 2.1.00.15050 UnB VAIO Energie Verwaltung Sony Corporation 22.05.2010 5.0.0.11300 UnB VAIO Entertainment Platform Sony Corporation 22.05.2010 3.6.0.09150 UnB VAIO Event Service Sony Corporation 22.05.2010 5.1.0.12010 UnB VAIO Gate Sony Corporation 22.05.2010 1.2.0.09240 UnB VAIO Gate Default Sony Corporation 22.05.2010 1.0.0.10290 UnB VAIO Marketing Tools Sony Corporation 07.07.2012 UnB VAIO Media plus Sony Corporation 22.05.2010 2.0.1.10160 UnB VAIO Media plus Opening Movie Sony Corporation 22.05.2010 1.2.0.09100 UnB VAIO Movie Story Template Data Sony Corporation 22.05.2010 438MB 2.2.00.15250 UnB VAIO Original Funktion Einstellungen Sony Corporation 22.05.2010 2.0.0.07010 UnB VAIO Personalization Manager Sony Corporation 22.05.2010 2.0.0.06220 UnB VAIO Premium Partners Sony Europe 07.07.2012 1.0 UnB VAIO Quick Web Access Sony Corporation 22.05.2010 266MB 1.2.2.3 UnB VAIO screensaver Sony Europe 07.07.2012 1.0.0.0 UnB VAIO Smart Network Sony Corporation 22.05.2010 3.1.0.11250 UnB VAIO Update Sony Corporation 10.04.2012 5.6.1.02150 UnB VAIO Wallpaper Contents Sony Corporation 22.05.2010 2.0.0.06010 UnB VAIO-Support für Übertragungen Sony Corporation 28.08.2010 1.1.2.06030 UnB WIDCOMM Bluetooth Software Broadcom Corporation 19.05.2010 144MB 6.2.1.500 UnB Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405) Broadcom 28.08.2010 09/09/2009 6.2.0.9405 UnB Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) Broadcom 28.08.2010 07/28/2009 6.2.0.9800 UnB Windows Live Essentials Microsoft Corporation 09.10.2010 15.4.3502.0922 UnB Windows Live Mesh ActiveX control for remote connections Microsoft Corporation 09.10.2010 5,57MB 15.4.5722.2 UnB Windows Live Sync Microsoft Corporation 22.05.2010 2,79MB 14.0.8089.726 UnB WinRAR 07.07.2012 Nötig |
|
16.07.2012, 17:44
| #6 |
| /// Malware-holic | 0_3u_l.exe *32 Virus? Trojaner? download tdss killer: http://www.trojaner-board.de/82358-t...entfernen.html Klicke auf Change parameters • Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system • Klick auf OK und anschließend auf Start scan - bei funden erst mal immer skip wählen, log posten
__________________ --> 0_3u_l.exe *32 Virus? Trojaner? |
|
20.07.2012, 15:41
| #7 |
| | 0_3u_l.exe *32 Virus? Trojaner?Code:
ATTFilter 16:34:26.0261 1768 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
16:34:26.0915 1768 ============================================================
16:34:26.0915 1768 Current date / time: 2012/07/20 16:34:26.0915
16:34:26.0915 1768 SystemInfo:
16:34:26.0915 1768
16:34:26.0915 1768 OS Version: 6.1.7601 ServicePack: 1.0
16:34:26.0915 1768 Product type: Workstation
16:34:26.0915 1768 ComputerName: JOCHUM-VAIO
16:34:26.0916 1768 UserName: Jochum
16:34:26.0916 1768 Windows directory: C:\Windows
16:34:26.0916 1768 System windows directory: C:\Windows
16:34:26.0916 1768 Running under WOW64
16:34:26.0916 1768 Processor architecture: Intel x64
16:34:26.0916 1768 Number of processors: 4
16:34:26.0916 1768 Page size: 0x1000
16:34:26.0916 1768 Boot type: Normal boot
16:34:26.0916 1768 ============================================================
16:34:28.0886 1768 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:34:28.0906 1768 ============================================================
16:34:28.0906 1768 \Device\Harddisk0\DR0:
16:34:28.0906 1768 MBR partitions:
16:34:28.0907 1768 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x153E800, BlocksNum 0x32000
16:34:28.0907 1768 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1570800, BlocksNum 0x38E15030
16:34:28.0907 1768 ============================================================
16:34:28.0979 1768 C: <-> \Device\Harddisk0\DR0\Partition1
16:34:28.0979 1768 ============================================================
16:34:28.0979 1768 Initialize success
16:34:28.0979 1768 ============================================================
16:35:17.0925 6928 ============================================================
16:35:17.0925 6928 Scan started
16:35:17.0925 6928 Mode: Manual; SigCheck;
16:35:17.0925 6928 ============================================================
16:35:23.0138 6928 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
16:35:23.0264 6928 1394ohci - ok
16:35:23.0371 6928 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
16:35:23.0429 6928 ACDaemon - ok
16:35:23.0507 6928 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
16:35:23.0537 6928 ACPI - ok
16:35:23.0578 6928 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
16:35:23.0642 6928 AcpiPmi - ok
16:35:23.0738 6928 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
16:35:23.0806 6928 adp94xx - ok
16:35:23.0872 6928 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
16:35:23.0931 6928 adpahci - ok
16:35:23.0997 6928 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
16:35:24.0048 6928 adpu320 - ok
16:35:24.0102 6928 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
16:35:24.0226 6928 AeLookupSvc - ok
16:35:24.0350 6928 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
16:35:24.0418 6928 AFD - ok
16:35:24.0473 6928 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
16:35:24.0492 6928 agp440 - ok
16:35:24.0937 6928 Akamai (29584f02a43e427c4227e3b1d9ff1b22) c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll
16:35:24.0937 6928 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll. md5: 29584f02a43e427c4227e3b1d9ff1b22
16:35:24.0945 6928 Akamai ( HiddenFile.Multi.Generic ) - warning
16:35:24.0945 6928 Akamai - detected HiddenFile.Multi.Generic (1)
16:35:25.0076 6928 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
16:35:25.0134 6928 ALG - ok
16:35:25.0207 6928 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
16:35:25.0235 6928 aliide - ok
16:35:25.0290 6928 AMD External Events Utility (3260756e234083bd2bd1709c60b6e6d7) C:\Windows\system32\atiesrxx.exe
16:35:25.0341 6928 AMD External Events Utility - ok
16:35:25.0373 6928 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
16:35:25.0397 6928 amdide - ok
16:35:25.0449 6928 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
16:35:25.0527 6928 AmdK8 - ok
16:35:25.0546 6928 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
16:35:25.0603 6928 AmdPPM - ok
16:35:25.0659 6928 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
16:35:25.0708 6928 amdsata - ok
16:35:25.0758 6928 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
16:35:25.0780 6928 amdsbs - ok
16:35:25.0793 6928 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
16:35:25.0810 6928 amdxata - ok
16:35:25.0944 6928 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
16:35:25.0977 6928 AntiVirSchedulerService - ok
16:35:26.0048 6928 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
16:35:26.0070 6928 AntiVirService - ok
16:35:26.0151 6928 AntiVirWebService (676894fa57b671fec5c3f05f8929e03b) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
16:35:26.0184 6928 AntiVirWebService - ok
16:35:26.0257 6928 ApfiltrService (1661f9c9e4b0049fa0a5e30264375a87) C:\Windows\system32\drivers\Apfiltr.sys
16:35:26.0292 6928 ApfiltrService - ok
16:35:26.0356 6928 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
16:35:26.0454 6928 AppID - ok
16:35:26.0494 6928 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
16:35:26.0589 6928 AppIDSvc - ok
16:35:26.0658 6928 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
16:35:26.0750 6928 Appinfo - ok
16:35:26.0800 6928 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
16:35:26.0819 6928 arc - ok
16:35:26.0851 6928 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
16:35:26.0871 6928 arcsas - ok
16:35:26.0897 6928 ArcSoftKsUFilter (c130bc4a51b1382b2be8e44579ec4c0a) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
16:35:26.0911 6928 ArcSoftKsUFilter - ok
16:35:26.0943 6928 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
16:35:27.0016 6928 AsyncMac - ok
16:35:27.0059 6928 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
16:35:27.0091 6928 atapi - ok
16:35:27.0269 6928 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
16:35:27.0410 6928 athr - ok
16:35:28.0072 6928 atikmdag (f3a362b683b6158cc47d7e8e58b7ddc9) C:\Windows\system32\DRIVERS\atikmdag.sys
16:35:28.0368 6928 atikmdag - ok
16:35:28.0611 6928 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:35:28.0729 6928 AudioEndpointBuilder - ok
16:35:28.0735 6928 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:35:28.0785 6928 AudioSrv - ok
16:35:28.0894 6928 avgntflt (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
16:35:28.0926 6928 avgntflt - ok
16:35:28.0999 6928 avipbb (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
16:35:29.0037 6928 avipbb - ok
16:35:29.0088 6928 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
16:35:29.0113 6928 avkmgr - ok
16:35:29.0164 6928 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
16:35:29.0250 6928 AxInstSV - ok
16:35:29.0328 6928 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
16:35:29.0398 6928 b06bdrv - ok
16:35:29.0465 6928 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:35:29.0548 6928 b57nd60a - ok
16:35:29.0673 6928 BBSvc (825f81a6f7dd073509db101f0ba6dc59) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
16:35:29.0714 6928 BBSvc - ok
16:35:29.0755 6928 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
16:35:29.0801 6928 BDESVC - ok
16:35:29.0857 6928 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
16:35:29.0959 6928 Beep - ok
16:35:30.0079 6928 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
16:35:30.0204 6928 BFE - ok
16:35:30.0315 6928 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
16:35:30.0404 6928 BITS - ok
16:35:30.0460 6928 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
16:35:30.0497 6928 blbdrive - ok
16:35:30.0551 6928 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
16:35:30.0598 6928 bowser - ok
16:35:30.0648 6928 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
16:35:30.0700 6928 BrFiltLo - ok
16:35:30.0723 6928 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
16:35:30.0755 6928 BrFiltUp - ok
16:35:30.0816 6928 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
16:35:30.0881 6928 BridgeMP - ok
16:35:30.0953 6928 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
16:35:31.0058 6928 Browser - ok
16:35:31.0122 6928 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
16:35:31.0188 6928 Brserid - ok
16:35:31.0224 6928 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
16:35:31.0264 6928 BrSerWdm - ok
16:35:31.0308 6928 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:35:31.0363 6928 BrUsbMdm - ok
16:35:31.0410 6928 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
16:35:31.0445 6928 BrUsbSer - ok
16:35:31.0511 6928 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
16:35:31.0594 6928 BthEnum - ok
16:35:31.0636 6928 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
16:35:31.0681 6928 BTHMODEM - ok
16:35:31.0716 6928 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
16:35:31.0759 6928 BthPan - ok
16:35:31.0859 6928 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
16:35:31.0921 6928 BTHPORT - ok
16:35:31.0961 6928 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
16:35:32.0043 6928 bthserv - ok
16:35:32.0074 6928 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
16:35:32.0105 6928 BTHUSB - ok
16:35:32.0149 6928 btusbflt (6e04458e98daf28826482e41a7a62df5) C:\Windows\system32\drivers\btusbflt.sys
16:35:32.0169 6928 btusbflt - ok
16:35:32.0219 6928 btwaudio (4bdbdb86abba924e029fb2683be7c505) C:\Windows\system32\drivers\btwaudio.sys
16:35:32.0242 6928 btwaudio - ok
16:35:32.0283 6928 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\drivers\btwavdt.sys
16:35:32.0327 6928 btwavdt - ok
16:35:32.0497 6928 btwdins (31da517946ffe416442e864592548f8a) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
16:35:32.0534 6928 btwdins - ok
16:35:32.0561 6928 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
16:35:32.0574 6928 btwl2cap - ok
16:35:32.0597 6928 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\DRIVERS\btwrchid.sys
16:35:32.0614 6928 btwrchid - ok
16:35:32.0634 6928 catchme - ok
16:35:32.0672 6928 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
16:35:32.0762 6928 cdfs - ok
16:35:32.0820 6928 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
16:35:32.0871 6928 cdrom - ok
16:35:32.0914 6928 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:35:33.0000 6928 CertPropSvc - ok
16:35:33.0047 6928 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
16:35:33.0109 6928 circlass - ok
16:35:33.0175 6928 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
16:35:33.0207 6928 CLFS - ok
16:35:33.0279 6928 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:35:33.0306 6928 clr_optimization_v2.0.50727_32 - ok
16:35:33.0343 6928 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:35:33.0363 6928 clr_optimization_v2.0.50727_64 - ok
16:35:33.0467 6928 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:35:33.0488 6928 clr_optimization_v4.0.30319_32 - ok
16:35:33.0537 6928 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:35:33.0554 6928 clr_optimization_v4.0.30319_64 - ok
16:35:33.0582 6928 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
16:35:33.0598 6928 CmBatt - ok
16:35:33.0637 6928 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
16:35:33.0655 6928 cmdide - ok
16:35:33.0741 6928 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
16:35:33.0800 6928 CNG - ok
16:35:33.0852 6928 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
16:35:33.0879 6928 Compbatt - ok
16:35:33.0917 6928 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
16:35:33.0962 6928 CompositeBus - ok
16:35:33.0977 6928 COMSysApp - ok
16:35:34.0013 6928 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
16:35:34.0034 6928 crcdisk - ok
16:35:34.0100 6928 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
16:35:34.0144 6928 CryptSvc - ok
16:35:34.0337 6928 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:35:34.0390 6928 cvhsvc - ok
16:35:34.0427 6928 dc3d (51c55da62cd9bcec3494a3a362ea793c) C:\Windows\system32\DRIVERS\dc3d.sys
16:35:34.0443 6928 dc3d - ok
16:35:34.0543 6928 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:35:34.0622 6928 DcomLaunch - ok
16:35:34.0665 6928 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
16:35:34.0762 6928 defragsvc - ok
16:35:34.0806 6928 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
16:35:34.0872 6928 DfsC - ok
16:35:34.0942 6928 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
16:35:35.0040 6928 Dhcp - ok
16:35:35.0081 6928 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
16:35:35.0152 6928 discache - ok
16:35:35.0203 6928 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
16:35:35.0239 6928 Disk - ok
16:35:35.0293 6928 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
16:35:35.0340 6928 Dnscache - ok
16:35:35.0393 6928 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
16:35:35.0478 6928 dot3svc - ok
16:35:35.0528 6928 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
16:35:35.0603 6928 DPS - ok
16:35:35.0636 6928 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
16:35:35.0676 6928 drmkaud - ok
16:35:35.0791 6928 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
16:35:35.0842 6928 DXGKrnl - ok
16:35:35.0874 6928 EagleX64 - ok
16:35:35.0905 6928 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
16:35:35.0998 6928 EapHost - ok
16:35:36.0292 6928 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
16:35:36.0454 6928 ebdrv - ok
16:35:36.0593 6928 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
16:35:36.0653 6928 EFS - ok
16:35:36.0767 6928 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
16:35:36.0835 6928 ehRecvr - ok
16:35:36.0875 6928 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
16:35:36.0937 6928 ehSched - ok
16:35:37.0046 6928 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
16:35:37.0095 6928 elxstor - ok
16:35:37.0133 6928 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
16:35:37.0174 6928 ErrDev - ok
16:35:37.0248 6928 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
16:35:37.0333 6928 EventSystem - ok
16:35:37.0422 6928 ewusbmbb (334c907536e815e56cd13108a6d5fb9d) C:\Windows\system32\DRIVERS\ewusbwwan.sys
16:35:37.0508 6928 ewusbmbb - ok
16:35:37.0556 6928 ew_hwusbdev (86f7951bbcee4a86e79a97306bd14318) C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
16:35:37.0605 6928 ew_hwusbdev - ok
16:35:37.0672 6928 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
16:35:37.0766 6928 exfat - ok
16:35:37.0805 6928 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
16:35:37.0905 6928 fastfat - ok
16:35:38.0017 6928 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
16:35:38.0069 6928 Fax - ok
16:35:38.0114 6928 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
16:35:38.0141 6928 fdc - ok
16:35:38.0159 6928 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
16:35:38.0226 6928 fdPHost - ok
16:35:38.0249 6928 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
16:35:38.0317 6928 FDResPub - ok
16:35:38.0356 6928 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
16:35:38.0374 6928 FileInfo - ok
16:35:38.0390 6928 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
16:35:38.0483 6928 Filetrace - ok
16:35:38.0509 6928 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
16:35:38.0543 6928 flpydisk - ok
16:35:38.0602 6928 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
16:35:38.0647 6928 FltMgr - ok
16:35:38.0783 6928 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
16:35:38.0874 6928 FontCache - ok
16:35:38.0959 6928 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:35:38.0983 6928 FontCache3.0.0.0 - ok
16:35:39.0042 6928 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
16:35:39.0071 6928 FsDepends - ok
16:35:39.0118 6928 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
16:35:39.0146 6928 fssfltr - ok
16:35:39.0390 6928 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
16:35:39.0501 6928 fsssvc - ok
16:35:39.0654 6928 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
16:35:39.0680 6928 Fs_Rec - ok
16:35:39.0761 6928 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
16:35:39.0789 6928 fvevol - ok
16:35:39.0832 6928 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
16:35:39.0856 6928 gagp30kx - ok
16:35:39.0969 6928 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
16:35:40.0066 6928 gpsvc - ok
16:35:40.0144 6928 gupdate (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:35:40.0165 6928 gupdate - ok
16:35:40.0212 6928 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
16:35:40.0242 6928 hamachi - ok
16:35:40.0281 6928 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
16:35:40.0323 6928 hcw85cir - ok
16:35:40.0413 6928 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
16:35:40.0460 6928 HdAudAddService - ok
16:35:40.0490 6928 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
16:35:40.0525 6928 HDAudBus - ok
16:35:40.0567 6928 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
16:35:40.0596 6928 HECIx64 - ok
16:35:40.0623 6928 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
16:35:40.0659 6928 HidBatt - ok
16:35:40.0700 6928 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
16:35:40.0748 6928 HidBth - ok
16:35:40.0790 6928 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
16:35:40.0817 6928 HidIr - ok
16:35:40.0849 6928 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
16:35:40.0924 6928 hidserv - ok
16:35:40.0979 6928 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
16:35:41.0022 6928 HidUsb - ok
16:35:41.0062 6928 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
16:35:41.0159 6928 hkmsvc - ok
16:35:41.0214 6928 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
16:35:41.0288 6928 HomeGroupListener - ok
16:35:41.0339 6928 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
16:35:41.0391 6928 HomeGroupProvider - ok
16:35:41.0450 6928 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
16:35:41.0484 6928 HpSAMD - ok
16:35:41.0590 6928 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
16:35:41.0655 6928 HTTP - ok
16:35:41.0699 6928 huawei_enumerator (1642c62f1fd5e1ff44608283994a7bb8) C:\Windows\system32\DRIVERS\ew_jubusenum.sys
16:35:41.0740 6928 huawei_enumerator - ok
16:35:41.0801 6928 hwdatacard (04d1de1e8ace40ca396502c90524e945) C:\Windows\system32\DRIVERS\ewusbmdm.sys
16:35:41.0862 6928 hwdatacard - ok
16:35:41.0947 6928 HWDeviceService64.exe - ok
16:35:41.0994 6928 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
16:35:42.0011 6928 hwpolicy - ok
16:35:42.0090 6928 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
16:35:42.0122 6928 i8042prt - ok
16:35:42.0196 6928 iaStor (073a606333b6f7bbf20aa856df7f0997) C:\Windows\system32\drivers\iaStor.sys
16:35:42.0225 6928 iaStor - ok
16:35:42.0301 6928 IAStorDataMgrSvc (cc800d2d9fd467542bac7c186c4774ad) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
16:35:42.0323 6928 IAStorDataMgrSvc - ok
16:35:42.0410 6928 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
16:35:42.0461 6928 iaStorV - ok
16:35:42.0577 6928 ICQ Service (b1a28fa1afde10b95ff9354b15701d70) C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
16:35:42.0598 6928 ICQ Service - ok
16:35:42.0740 6928 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:35:42.0830 6928 idsvc - ok
16:35:43.0645 6928 igfx (31d1aff484d8a0906cf8d44251ec390f) C:\Windows\system32\DRIVERS\igdkmd64.sys
16:35:43.0965 6928 igfx ( UnsignedFile.Multi.Generic ) - warning
16:35:43.0965 6928 igfx - detected UnsignedFile.Multi.Generic (1)
16:35:44.0114 6928 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
16:35:44.0147 6928 iirsp - ok
16:35:44.0266 6928 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
16:35:44.0369 6928 IKEEXT - ok
16:35:44.0442 6928 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\drivers\Impcd.sys
16:35:44.0492 6928 Impcd - ok
16:35:44.0746 6928 IntcAzAudAddService (0f144e5f46cb9043004b5e84aa4bca6a) C:\Windows\system32\drivers\RTKVHD64.sys
16:35:44.0824 6928 IntcAzAudAddService - ok
16:35:45.0013 6928 IntcDAud (408b401cd7cdb075c7470b0ff7ba8d0b) C:\Windows\system32\DRIVERS\IntcDAud.sys
16:35:45.0056 6928 IntcDAud ( UnsignedFile.Multi.Generic ) - warning
16:35:45.0056 6928 IntcDAud - detected UnsignedFile.Multi.Generic (1)
16:35:45.0089 6928 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
16:35:45.0111 6928 intelide - ok
16:35:45.0154 6928 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
16:35:45.0188 6928 intelppm - ok
16:35:45.0226 6928 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
16:35:45.0292 6928 IPBusEnum - ok
16:35:45.0325 6928 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:35:45.0385 6928 IpFilterDriver - ok
16:35:45.0491 6928 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
16:35:45.0563 6928 iphlpsvc - ok
16:35:45.0602 6928 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
16:35:45.0653 6928 IPMIDRV - ok
16:35:45.0693 6928 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
16:35:45.0781 6928 IPNAT - ok
16:35:45.0808 6928 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
16:35:45.0857 6928 IRENUM - ok
16:35:45.0889 6928 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
16:35:45.0905 6928 isapnp - ok
16:35:45.0967 6928 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
16:35:46.0019 6928 iScsiPrt - ok
16:35:46.0055 6928 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
16:35:46.0072 6928 kbdclass - ok
16:35:46.0107 6928 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
16:35:46.0139 6928 kbdhid - ok
16:35:46.0193 6928 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:35:46.0216 6928 KeyIso - ok
16:35:46.0260 6928 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
16:35:46.0292 6928 KSecDD - ok
16:35:46.0335 6928 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
16:35:46.0360 6928 KSecPkg - ok
16:35:46.0391 6928 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
16:35:46.0459 6928 ksthunk - ok
16:35:46.0512 6928 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
16:35:46.0612 6928 KtmRm - ok
16:35:46.0667 6928 LADF_DHP2 (86dcbf8a41c78561a1da07ab5e7b1ccc) C:\Windows\system32\DRIVERS\ladfDHP2amd64.sys
16:35:46.0692 6928 LADF_DHP2 - ok
16:35:46.0752 6928 LADF_SBVM (175c04c7813ce64616b5cb046e5e1383) C:\Windows\system32\DRIVERS\ladfSBVMamd64.sys
16:35:46.0784 6928 LADF_SBVM - ok
16:35:46.0844 6928 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
16:35:46.0924 6928 LanmanServer - ok
16:35:46.0965 6928 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
16:35:47.0035 6928 LanmanWorkstation - ok
16:35:47.0089 6928 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
16:35:47.0156 6928 lltdio - ok
16:35:47.0207 6928 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
16:35:47.0301 6928 lltdsvc - ok
16:35:47.0332 6928 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
16:35:47.0396 6928 lmhosts - ok
16:35:47.0542 6928 LMS (5460828f8951d310b42b442877603b8d) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:35:47.0566 6928 LMS - ok
16:35:47.0624 6928 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
16:35:47.0651 6928 LSI_FC - ok
16:35:47.0676 6928 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
16:35:47.0701 6928 LSI_SAS - ok
16:35:47.0729 6928 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
16:35:47.0749 6928 LSI_SAS2 - ok
16:35:47.0788 6928 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
16:35:47.0809 6928 LSI_SCSI - ok
16:35:47.0838 6928 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
16:35:47.0901 6928 luafv - ok
16:35:47.0980 6928 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
16:35:48.0055 6928 Mcx2Svc - ok
16:35:48.0092 6928 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
16:35:48.0123 6928 megasas - ok
16:35:48.0174 6928 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
16:35:48.0215 6928 MegaSR - ok
16:35:48.0238 6928 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:35:48.0293 6928 MMCSS - ok
16:35:48.0421 6928 Mobile Partner. RunOuc (38106c7bd34eae89d2769ac0ba2e846b) C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
16:35:48.0459 6928 Mobile Partner. RunOuc ( UnsignedFile.Multi.Generic ) - warning
16:35:48.0460 6928 Mobile Partner. RunOuc - detected UnsignedFile.Multi.Generic (1)
16:35:48.0493 6928 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
16:35:48.0561 6928 Modem - ok
16:35:48.0596 6928 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
16:35:48.0624 6928 monitor - ok
16:35:48.0683 6928 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
16:35:48.0712 6928 mouclass - ok
16:35:48.0743 6928 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
16:35:48.0763 6928 mouhid - ok
16:35:48.0813 6928 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
16:35:48.0841 6928 mountmgr - ok
16:35:48.0887 6928 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
16:35:48.0911 6928 mpio - ok
16:35:48.0961 6928 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
16:35:49.0027 6928 mpsdrv - ok
16:35:49.0134 6928 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
16:35:49.0219 6928 MpsSvc - ok
16:35:49.0257 6928 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
16:35:49.0308 6928 MRxDAV - ok
16:35:49.0356 6928 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:35:49.0412 6928 mrxsmb - ok
16:35:49.0486 6928 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:35:49.0542 6928 mrxsmb10 - ok
16:35:49.0571 6928 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:35:49.0608 6928 mrxsmb20 - ok
16:35:49.0655 6928 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
16:35:49.0685 6928 msahci - ok
16:35:49.0730 6928 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
16:35:49.0774 6928 msdsm - ok
16:35:49.0813 6928 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
16:35:49.0866 6928 MSDTC - ok
16:35:49.0917 6928 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
16:35:49.0970 6928 Msfs - ok
16:35:49.0998 6928 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
16:35:50.0057 6928 mshidkmdf - ok
16:35:50.0089 6928 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
16:35:50.0103 6928 msisadrv - ok
16:35:50.0134 6928 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
16:35:50.0211 6928 MSiSCSI - ok
16:35:50.0214 6928 msiserver - ok
16:35:50.0253 6928 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
16:35:50.0336 6928 MSKSSRV - ok
16:35:50.0366 6928 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
16:35:50.0434 6928 MSPCLOCK - ok
16:35:50.0476 6928 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
16:35:50.0542 6928 MSPQM - ok
16:35:50.0612 6928 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
16:35:50.0652 6928 MsRPC - ok
16:35:50.0691 6928 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
16:35:50.0704 6928 mssmbios - ok
16:35:50.0721 6928 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
16:35:50.0780 6928 MSTEE - ok
16:35:50.0807 6928 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
16:35:50.0844 6928 MTConfig - ok
16:35:50.0871 6928 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
16:35:50.0889 6928 Mup - ok
16:35:50.0954 6928 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
16:35:51.0047 6928 napagent - ok
16:35:51.0118 6928 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
16:35:51.0180 6928 NativeWifiP - ok
16:35:51.0311 6928 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
16:35:51.0353 6928 NDIS - ok
16:35:51.0387 6928 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
16:35:51.0452 6928 NdisCap - ok
16:35:51.0474 6928 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
16:35:51.0530 6928 NdisTapi - ok
16:35:51.0572 6928 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
16:35:51.0645 6928 Ndisuio - ok
16:35:51.0696 6928 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
16:35:51.0789 6928 NdisWan - ok
16:35:51.0825 6928 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
16:35:51.0892 6928 NDProxy - ok
16:35:51.0925 6928 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
16:35:51.0987 6928 NetBIOS - ok
16:35:52.0035 6928 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
16:35:52.0129 6928 NetBT - ok
16:35:52.0182 6928 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:35:52.0197 6928 Netlogon - ok
16:35:52.0264 6928 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
16:35:52.0350 6928 Netman - ok
16:35:52.0420 6928 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
16:35:52.0490 6928 netprofm - ok
16:35:52.0564 6928 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:35:52.0597 6928 NetTcpPortSharing - ok
16:35:52.0637 6928 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
16:35:52.0664 6928 nfrd960 - ok
16:35:52.0727 6928 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
16:35:52.0810 6928 NlaSvc - ok
16:35:52.0827 6928 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
16:35:52.0873 6928 Npfs - ok
16:35:52.0900 6928 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
16:35:52.0962 6928 nsi - ok
16:35:53.0005 6928 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
16:35:53.0073 6928 nsiproxy - ok
16:35:53.0256 6928 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
16:35:53.0364 6928 Ntfs - ok
16:35:53.0500 6928 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
16:35:53.0585 6928 Null - ok
16:35:53.0663 6928 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
16:35:53.0703 6928 nvraid - ok
16:35:53.0744 6928 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
16:35:53.0772 6928 nvstor - ok
16:35:53.0827 6928 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
16:35:53.0859 6928 nv_agp - ok
16:35:53.0895 6928 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
16:35:53.0930 6928 ohci1394 - ok
16:35:54.0020 6928 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:35:54.0061 6928 ose - ok
16:35:54.0494 6928 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:35:54.0766 6928 osppsvc - ok
16:35:54.0910 6928 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:35:54.0938 6928 p2pimsvc - ok
16:35:54.0995 6928 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
16:35:55.0056 6928 p2psvc - ok
16:35:55.0119 6928 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
16:35:55.0178 6928 Parport - ok
16:35:55.0217 6928 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
16:35:55.0247 6928 partmgr - ok
16:35:55.0291 6928 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
16:35:55.0346 6928 PcaSvc - ok
16:35:55.0395 6928 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
16:35:55.0421 6928 pci - ok
16:35:55.0461 6928 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
16:35:55.0481 6928 pciide - ok
16:35:55.0528 6928 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
16:35:55.0575 6928 pcmcia - ok
16:35:55.0609 6928 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
16:35:55.0632 6928 pcw - ok
16:35:55.0703 6928 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
16:35:55.0801 6928 PEAUTH - ok
16:35:55.0909 6928 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
16:35:55.0966 6928 PerfHost - ok
16:35:56.0207 6928 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
16:35:56.0359 6928 pla - ok
16:35:56.0448 6928 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
16:35:56.0532 6928 PlugPlay - ok
16:35:56.0683 6928 PMBDeviceInfoProvider (627fa58adc043704f9d14ca44340956f) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
16:35:56.0711 6928 PMBDeviceInfoProvider - ok
16:35:56.0755 6928 PnkBstrA - ok
16:35:56.0778 6928 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
16:35:56.0819 6928 PNRPAutoReg - ok
16:35:56.0868 6928 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:35:56.0892 6928 PNRPsvc - ok
16:35:56.0936 6928 Point64 (9abff71ff6f3b9492686d3403fa5dcdb) C:\Windows\system32\DRIVERS\point64k.sys
16:35:56.0956 6928 Point64 - ok
16:35:57.0030 6928 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
16:35:57.0122 6928 PolicyAgent - ok
16:35:57.0166 6928 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
16:35:57.0241 6928 Power - ok
16:35:57.0290 6928 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
16:35:57.0359 6928 PptpMiniport - ok
16:35:57.0391 6928 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
16:35:57.0412 6928 Processor - ok
16:35:57.0459 6928 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
16:35:57.0507 6928 ProfSvc - ok
16:35:57.0548 6928 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:35:57.0564 6928 ProtectedStorage - ok
16:35:57.0629 6928 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
16:35:57.0686 6928 Psched - ok
16:35:57.0713 6928 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
16:35:57.0729 6928 PxHlpa64 - ok
16:35:57.0898 6928 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
16:35:58.0023 6928 ql2300 - ok
16:35:58.0184 6928 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
16:35:58.0227 6928 ql40xx - ok
16:35:58.0282 6928 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
16:35:58.0347 6928 QWAVE - ok
16:35:58.0386 6928 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
16:35:58.0408 6928 QWAVEdrv - ok
16:35:58.0419 6928 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
16:35:58.0462 6928 RasAcd - ok
16:35:58.0496 6928 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:35:58.0547 6928 RasAgileVpn - ok
16:35:58.0581 6928 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
16:35:58.0651 6928 RasAuto - ok
16:35:58.0697 6928 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:35:58.0777 6928 Rasl2tp - ok
16:35:58.0850 6928 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
16:35:58.0943 6928 RasMan - ok
16:35:58.0984 6928 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
16:35:59.0052 6928 RasPppoe - ok
16:35:59.0073 6928 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
16:35:59.0144 6928 RasSstp - ok
16:35:59.0207 6928 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
16:35:59.0291 6928 rdbss - ok
16:35:59.0325 6928 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
16:35:59.0350 6928 rdpbus - ok
16:35:59.0373 6928 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:35:59.0442 6928 RDPCDD - ok
16:35:59.0464 6928 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
16:35:59.0505 6928 RDPENCDD - ok
16:35:59.0522 6928 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
16:35:59.0563 6928 RDPREFMP - ok
16:35:59.0609 6928 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
16:35:59.0650 6928 RDPWD - ok
16:35:59.0712 6928 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
16:35:59.0759 6928 rdyboost - ok
16:35:59.0784 6928 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
16:35:59.0847 6928 RemoteAccess - ok
16:35:59.0897 6928 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
16:36:00.0009 6928 RemoteRegistry - ok
16:36:00.0056 6928 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
16:36:00.0084 6928 RFCOMM - ok
16:36:00.0143 6928 rimspci (5ca4abd888b602551b59baa26941c167) C:\Windows\system32\drivers\rimssne64.sys
16:36:00.0189 6928 rimspci - ok
16:36:00.0262 6928 risdsnpe (bb6e138aeb351728959da5e2731d8140) C:\Windows\system32\drivers\risdsne64.sys
16:36:00.0302 6928 risdsnpe - ok
16:36:00.0403 6928 Roxio UPnP Renderer 10 (d151224bc11078895a60fa970728ff59) C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
16:36:00.0454 6928 Roxio UPnP Renderer 10 - ok
16:36:00.0500 6928 Roxio Upnp Server 10 (5022a927944878bd750960bd21e751af) C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
16:36:00.0537 6928 Roxio Upnp Server 10 - ok
16:36:00.0562 6928 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
16:36:00.0611 6928 RpcEptMapper - ok
16:36:00.0638 6928 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
16:36:00.0654 6928 RpcLocator - ok
16:36:00.0725 6928 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:36:00.0792 6928 RpcSs - ok
16:36:00.0860 6928 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
16:36:00.0959 6928 rspndr - ok
16:36:01.0059 6928 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
16:36:01.0079 6928 RTHDMIAzAudService - ok
16:36:01.0165 6928 SaiK0CCB (f6d3e9793f22c92cef9b96bf47da01f1) C:\Windows\system32\DRIVERS\SaiK0CCB.sys
16:36:01.0224 6928 SaiK0CCB - ok
16:36:01.0285 6928 SaiMini (9e7e53891d1747a01f491ab25b95135d) C:\Windows\system32\DRIVERS\SaiMini.sys
16:36:01.0309 6928 SaiMini - ok
16:36:01.0365 6928 SaiNtBus (b3b86be19a0caf025f679c39fd21e735) C:\Windows\system32\drivers\SaiBus.sys
16:36:01.0389 6928 SaiNtBus - ok
16:36:01.0445 6928 SaiU0CCB (ff2d7435c79b273752f0912feab839c0) C:\Windows\system32\DRIVERS\SaiU0CCB.sys
16:36:01.0467 6928 SaiU0CCB - ok
16:36:01.0548 6928 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:36:01.0568 6928 SamSs - ok
16:36:01.0615 6928 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
16:36:01.0643 6928 sbp2port - ok
16:36:01.0698 6928 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
16:36:01.0804 6928 SCardSvr - ok
16:36:01.0872 6928 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
16:36:01.0959 6928 scfilter - ok
16:36:02.0075 6928 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
16:36:02.0182 6928 Schedule - ok
16:36:02.0213 6928 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:36:02.0254 6928 SCPolicySvc - ok
16:36:02.0312 6928 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
16:36:02.0386 6928 sdbus - ok
16:36:02.0436 6928 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
16:36:02.0491 6928 SDRSVC - ok
16:36:02.0604 6928 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
16:36:02.0632 6928 SeaPort - ok
16:36:02.0673 6928 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:36:02.0736 6928 secdrv - ok
16:36:02.0781 6928 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
16:36:02.0846 6928 seclogon - ok
16:36:02.0886 6928 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
16:36:02.0989 6928 SENS - ok
16:36:03.0019 6928 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
16:36:03.0058 6928 SensrSvc - ok
16:36:03.0099 6928 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
16:36:03.0146 6928 Serenum - ok
16:36:03.0188 6928 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
16:36:03.0243 6928 Serial - ok
16:36:03.0297 6928 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
16:36:03.0322 6928 sermouse - ok
16:36:03.0394 6928 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
16:36:03.0495 6928 SessionEnv - ok
16:36:03.0529 6928 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\drivers\SFEP.sys
16:36:03.0559 6928 SFEP - ok
16:36:03.0593 6928 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
16:36:03.0635 6928 sffdisk - ok
16:36:03.0659 6928 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
16:36:03.0682 6928 sffp_mmc - ok
16:36:03.0693 6928 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
16:36:03.0751 6928 sffp_sd - ok
16:36:03.0776 6928 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
16:36:03.0805 6928 sfloppy - ok
16:36:03.0930 6928 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
16:36:03.0990 6928 Sftfs - ok
16:36:04.0138 6928 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:36:04.0171 6928 sftlist - ok
16:36:04.0315 6928 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
16:36:04.0349 6928 Sftplay - ok
16:36:04.0363 6928 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
16:36:04.0372 6928 Sftredir - ok
16:36:04.0506 6928 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
16:36:04.0528 6928 Sftvol - ok
16:36:04.0596 6928 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:36:04.0622 6928 sftvsa - ok
16:36:04.0723 6928 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
16:36:04.0831 6928 SharedAccess - ok
16:36:04.0891 6928 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
16:36:04.0955 6928 ShellHWDetection - ok
16:36:05.0005 6928 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
16:36:05.0026 6928 SiSRaid2 - ok
16:36:05.0097 6928 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
16:36:05.0122 6928 SiSRaid4 - ok
16:36:05.0171 6928 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
16:36:05.0230 6928 SkypeUpdate - ok
16:36:05.0258 6928 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
16:36:05.0317 6928 Smb - ok
16:36:05.0370 6928 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
16:36:05.0391 6928 SNMPTRAP - ok
16:36:05.0469 6928 SOHCImp (98886c88a1cb13d61672ae2c638b7e1c) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
16:36:05.0502 6928 SOHCImp - ok
16:36:05.0524 6928 SOHDBSvr (442a13f395546f4564c377296d43b564) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
16:36:05.0540 6928 SOHDBSvr - ok
16:36:05.0589 6928 SOHDms (556681be668d71dc162391a45422b52c) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
16:36:05.0643 6928 SOHDms - ok
16:36:05.0669 6928 SOHDs (72b46103e4111439109acf5882627c24) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
16:36:05.0685 6928 SOHDs - ok
16:36:05.0704 6928 SOHPlMgr (725b6e9cd1959271ac993dc035e1606d) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
16:36:05.0734 6928 SOHPlMgr - ok
16:36:05.0756 6928 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
16:36:05.0773 6928 spldr - ok
16:36:05.0856 6928 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
16:36:05.0918 6928 Spooler - ok
16:36:06.0218 6928 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
16:36:06.0414 6928 sppsvc - ok
16:36:06.0542 6928 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
16:36:06.0606 6928 sppuinotify - ok
16:36:06.0710 6928 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
16:36:06.0782 6928 srv - ok
16:36:06.0834 6928 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
16:36:06.0895 6928 srv2 - ok
16:36:06.0932 6928 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
16:36:06.0990 6928 srvnet - ok
16:36:07.0041 6928 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
16:36:07.0104 6928 SSDPSRV - ok
16:36:07.0127 6928 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
16:36:07.0175 6928 SstpSvc - ok
16:36:07.0244 6928 Steam Client Service - ok
16:36:07.0270 6928 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
16:36:07.0296 6928 stexstor - ok
16:36:07.0383 6928 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
16:36:07.0468 6928 stisvc - ok
16:36:07.0504 6928 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
16:36:07.0533 6928 swenum - ok
16:36:07.0610 6928 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
16:36:07.0688 6928 swprv - ok
16:36:07.0872 6928 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
16:36:07.0971 6928 SysMain - ok
16:36:08.0122 6928 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
16:36:08.0168 6928 TabletInputService - ok
16:36:08.0234 6928 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
16:36:08.0300 6928 TapiSrv - ok
16:36:08.0337 6928 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
16:36:08.0403 6928 TBS - ok
16:36:08.0600 6928 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
16:36:08.0715 6928 Tcpip - ok
16:36:09.0061 6928 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
16:36:09.0113 6928 TCPIP6 - ok
16:36:09.0235 6928 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
16:36:09.0316 6928 tcpipreg - ok
16:36:09.0342 6928 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
16:36:09.0381 6928 TDPIPE - ok
16:36:09.0421 6928 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
16:36:09.0460 6928 TDTCP - ok
16:36:09.0499 6928 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
16:36:09.0600 6928 tdx - ok
16:36:09.0653 6928 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
16:36:09.0670 6928 TermDD - ok
16:36:09.0763 6928 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
16:36:09.0863 6928 TermService - ok
16:36:09.0883 6928 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
16:36:09.0929 6928 Themes - ok
16:36:09.0962 6928 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:36:10.0020 6928 THREADORDER - ok
16:36:10.0035 6928 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
16:36:10.0106 6928 TrkWks - ok
16:36:10.0193 6928 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
16:36:10.0274 6928 TrustedInstaller - ok
16:36:10.0310 6928 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:36:10.0354 6928 tssecsrv - ok
16:36:10.0409 6928 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
16:36:10.0444 6928 TsUsbFlt - ok
16:36:10.0527 6928 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
16:36:10.0632 6928 tunnel - ok
16:36:10.0677 6928 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
16:36:10.0697 6928 uagp35 - ok
16:36:10.0777 6928 uCamMonitor (63f6d08c54d5b3c1b12a6172032055c7) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
16:36:10.0797 6928 uCamMonitor - ok
16:36:10.0861 6928 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
16:36:10.0967 6928 udfs - ok
16:36:11.0000 6928 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
16:36:11.0023 6928 UI0Detect - ok
16:36:11.0075 6928 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
16:36:11.0108 6928 uliagpkx - ok
16:36:11.0153 6928 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
16:36:11.0198 6928 umbus - ok
16:36:11.0244 6928 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
16:36:11.0264 6928 UmPass - ok
16:36:11.0553 6928 UNS (9e89c2d6945389270de067ce51ff7425) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:36:11.0633 6928 UNS - ok
16:36:11.0782 6928 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
16:36:11.0859 6928 upnphost - ok
16:36:11.0935 6928 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
16:36:11.0975 6928 usbaudio - ok
16:36:12.0026 6928 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
16:36:12.0080 6928 usbccgp - ok
16:36:12.0119 6928 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
16:36:12.0183 6928 usbcir - ok
16:36:12.0212 6928 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
16:36:12.0243 6928 usbehci - ok
16:36:12.0290 6928 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
16:36:12.0327 6928 usbhub - ok
16:36:12.0363 6928 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
16:36:12.0403 6928 usbohci - ok
16:36:12.0428 6928 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
16:36:12.0472 6928 usbprint - ok
16:36:12.0528 6928 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
16:36:12.0567 6928 usbscan - ok
16:36:12.0648 6928 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:36:12.0699 6928 USBSTOR - ok
16:36:12.0743 6928 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
16:36:12.0768 6928 usbuhci - ok
16:36:12.0824 6928 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
16:36:12.0883 6928 usbvideo - ok
16:36:12.0922 6928 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
16:36:12.0982 6928 UxSms - ok
16:36:13.0108 6928 VAIO Entertainment TV Device Arbitration Service (4e7135d6d0127067e4cfee12259f895d) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
16:36:13.0157 6928 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - warning
16:36:13.0157 6928 VAIO Entertainment TV Device Arbitration Service - detected UnsignedFile.Multi.Generic (1)
16:36:13.0263 6928 VAIO Event Service (6b31c9cb94927dbeeb62e15275f4cc54) C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
16:36:13.0282 6928 VAIO Event Service - ok
16:36:13.0449 6928 VAIO Power Management (b8c9a7010afd5cbbe194cb9ef7c4fd14) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
16:36:13.0479 6928 VAIO Power Management - ok
16:36:13.0514 6928 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:36:13.0527 6928 VaultSvc - ok
16:36:13.0629 6928 VCFw (6a740f5ff3246c3be3dd317299efc88e) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
16:36:13.0664 6928 VCFw - ok
16:36:13.0758 6928 VcmIAlzMgr (10e212bfb7eab152a64c1aaec2f7f4e0) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
16:36:13.0775 6928 VcmIAlzMgr - ok
16:36:13.0836 6928 VcmINSMgr (9d9b34b430b4dc683112f59c80d20ab8) C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
16:36:13.0877 6928 VcmINSMgr - ok
16:36:13.0968 6928 VcmXmlIfHelper (8efaaccc7bfa1e9031efdfb01a1b0d69) C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
16:36:13.0984 6928 VcmXmlIfHelper - ok
16:36:14.0087 6928 VCService (d347d3abe070aa09c22fc37121555d52) C:\Program Files\Sony\VAIO Care\VCService.exe
16:36:14.0103 6928 VCService - ok
16:36:14.0270 6928 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
16:36:14.0288 6928 vdrvroot - ok
16:36:14.0351 6928 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
16:36:14.0402 6928 vds - ok
16:36:14.0447 6928 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
16:36:14.0469 6928 vga - ok
16:36:14.0517 6928 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
16:36:14.0600 6928 VgaSave - ok
16:36:14.0731 6928 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
16:36:14.0764 6928 vhdmp - ok
16:36:14.0793 6928 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
16:36:14.0808 6928 viaide - ok
16:36:14.0853 6928 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
16:36:14.0886 6928 volmgr - ok
16:36:14.0958 6928 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
16:36:14.0989 6928 volmgrx - ok
16:36:15.0071 6928 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
16:36:15.0118 6928 volsnap - ok
16:36:15.0168 6928 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
16:36:15.0198 6928 vsmraid - ok
16:36:15.0384 6928 VSNService (33655f6b36aa8702960ab1568ed82a01) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
16:36:15.0398 6928 VSNService ( UnsignedFile.Multi.Generic ) - warning
16:36:15.0398 6928 VSNService - detected UnsignedFile.Multi.Generic (1)
16:36:15.0542 6928 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
16:36:15.0640 6928 VSS - ok
16:36:15.0905 6928 VUAgent (fb4a1695d2d74f9c92ca5e84795cdbe1) C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
16:36:15.0945 6928 VUAgent - ok
16:36:16.0101 6928 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
16:36:16.0139 6928 vwifibus - ok
16:36:16.0166 6928 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
16:36:16.0205 6928 vwififlt - ok
16:36:16.0236 6928 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
16:36:16.0257 6928 vwifimp - ok
16:36:16.0358 6928 VzCdbSvc (d8bef4ac1eac809dbdbd441d6cff6c4c) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
16:36:16.0386 6928 VzCdbSvc ( UnsignedFile.Multi.Generic ) - warning
16:36:16.0386 6928 VzCdbSvc - detected UnsignedFile.Multi.Generic (1)
16:36:16.0454 6928 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
16:36:16.0517 6928 W32Time - ok
16:36:16.0562 6928 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
16:36:16.0598 6928 WacomPen - ok
16:36:16.0656 6928 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:36:16.0732 6928 WANARP - ok
16:36:16.0742 6928 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:36:16.0793 6928 Wanarpv6 - ok
16:36:16.0922 6928 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
16:36:17.0012 6928 WatAdminSvc - ok
16:36:17.0140 6928 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
16:36:17.0247 6928 wbengine - ok
16:36:17.0418 6928 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
16:36:17.0463 6928 WbioSrvc - ok
16:36:17.0514 6928 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
16:36:17.0543 6928 wcncsvc - ok
16:36:17.0561 6928 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
16:36:17.0595 6928 WcsPlugInService - ok
16:36:17.0648 6928 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
16:36:17.0668 6928 Wd - ok
16:36:17.0736 6928 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
16:36:17.0771 6928 Wdf01000 - ok
16:36:17.0805 6928 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:36:17.0835 6928 WdiServiceHost - ok
16:36:17.0838 6928 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:36:17.0869 6928 WdiSystemHost - ok
16:36:17.0921 6928 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
16:36:17.0978 6928 WebClient - ok
16:36:18.0016 6928 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
16:36:18.0073 6928 Wecsvc - ok
16:36:18.0107 6928 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
16:36:18.0167 6928 wercplsupport - ok
16:36:18.0200 6928 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
16:36:18.0264 6928 WerSvc - ok
16:36:18.0322 6928 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
16:36:18.0386 6928 WfpLwf - ok
16:36:18.0402 6928 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
16:36:18.0422 6928 WIMMount - ok
16:36:18.0452 6928 WinDefend - ok
16:36:18.0458 6928 WinHttpAutoProxySvc - ok
16:36:18.0524 6928 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
16:36:18.0592 6928 Winmgmt - ok
16:36:18.0745 6928 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
16:36:18.0873 6928 WinRM - ok
16:36:19.0040 6928 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
16:36:19.0061 6928 WinUsb - ok
16:36:19.0139 6928 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
16:36:19.0181 6928 Wlansvc - ok
16:36:19.0292 6928 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:36:19.0311 6928 wlcrasvc - ok
16:36:19.0520 6928 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:36:19.0589 6928 wlidsvc - ok
16:36:19.0728 6928 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
16:36:19.0763 6928 WmiAcpi - ok
16:36:19.0840 6928 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
16:36:19.0868 6928 wmiApSrv - ok
16:36:19.0913 6928 WMPNetworkSvc - ok
16:36:19.0941 6928 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
16:36:19.0956 6928 WPCSvc - ok
16:36:19.0990 6928 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
16:36:20.0011 6928 WPDBusEnum - ok
16:36:20.0031 6928 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
16:36:20.0099 6928 ws2ifsl - ok
16:36:20.0129 6928 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
16:36:20.0155 6928 wscsvc - ok
16:36:20.0159 6928 WSearch - ok
16:36:20.0328 6928 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
16:36:20.0415 6928 wuauserv - ok
16:36:20.0570 6928 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
16:36:20.0636 6928 WudfPf - ok
16:36:20.0668 6928 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:36:20.0743 6928 WUDFRd - ok
16:36:20.0787 6928 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
16:36:20.0846 6928 wudfsvc - ok
16:36:20.0895 6928 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
16:36:20.0926 6928 WwanSvc - ok
16:36:20.0975 6928 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
16:36:21.0009 6928 yukonw7 - ok
16:36:21.0055 6928 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
16:36:21.0314 6928 \Device\Harddisk0\DR0 - ok
16:36:21.0317 6928 Boot (0x1200) (f896cab607ed1295ed2ef84b2dce4f9c) \Device\Harddisk0\DR0\Partition0
16:36:21.0319 6928 \Device\Harddisk0\DR0\Partition0 - ok
16:36:21.0334 6928 Boot (0x1200) (8a1bc2a60dff31f4bb5c3d0d33e49b76) \Device\Harddisk0\DR0\Partition1
16:36:21.0336 6928 \Device\Harddisk0\DR0\Partition1 - ok
16:36:21.0337 6928 ============================================================
16:36:21.0337 6928 Scan finished
16:36:21.0337 6928 ============================================================
16:36:21.0345 2656 Detected object count: 7
16:36:21.0345 2656 Actual detected object count: 7
16:36:46.0658 2656 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
16:36:46.0658 2656 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
16:36:46.0658 2656 igfx ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:46.0658 2656 igfx ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:36:46.0660 2656 IntcDAud ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:46.0660 2656 IntcDAud ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:36:46.0664 2656 Mobile Partner. RunOuc ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:46.0664 2656 Mobile Partner. RunOuc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:36:46.0665 2656 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:46.0665 2656 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:36:46.0667 2656 VSNService ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:46.0667 2656 VSNService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:36:46.0668 2656 VzCdbSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:46.0668 2656 VzCdbSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:38:11.0494 5232 ============================================================
16:38:11.0494 5232 Scan started
16:38:11.0494 5232 Mode: Manual; SigCheck;
16:38:11.0494 5232 ============================================================
16:38:11.0688 5232 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
16:38:11.0712 5232 1394ohci - ok
16:38:11.0822 5232 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
16:38:11.0849 5232 ACDaemon - ok
16:38:11.0914 5232 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
16:38:11.0945 5232 ACPI - ok
16:38:11.0973 5232 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
16:38:11.0990 5232 AcpiPmi - ok
16:38:12.0068 5232 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
16:38:12.0101 5232 adp94xx - ok
16:38:12.0151 5232 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
16:38:12.0178 5232 adpahci - ok
16:38:12.0214 5232 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
16:38:12.0231 5232 adpu320 - ok
16:38:12.0264 5232 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
16:38:12.0313 5232 AeLookupSvc - ok
16:38:12.0388 5232 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
16:38:12.0424 5232 AFD - ok
16:38:12.0469 5232 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
16:38:12.0484 5232 agp440 - ok
16:38:12.0884 5232 Akamai (29584f02a43e427c4227e3b1d9ff1b22) c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll
16:38:12.0884 5232 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll. md5: 29584f02a43e427c4227e3b1d9ff1b22
16:38:12.0891 5232 Akamai ( HiddenFile.Multi.Generic ) - warning
16:38:12.0891 5232 Akamai - detected HiddenFile.Multi.Generic (1)
16:38:13.0016 5232 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
16:38:13.0044 5232 ALG - ok
16:38:13.0091 5232 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
16:38:13.0114 5232 aliide - ok
16:38:13.0163 5232 AMD External Events Utility (3260756e234083bd2bd1709c60b6e6d7) C:\Windows\system32\atiesrxx.exe
16:38:13.0184 5232 AMD External Events Utility - ok
16:38:13.0202 5232 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
16:38:13.0213 5232 amdide - ok
16:38:13.0243 5232 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
16:38:13.0257 5232 AmdK8 - ok
16:38:13.0297 5232 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
16:38:13.0323 5232 AmdPPM - ok
16:38:13.0365 5232 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
16:38:13.0384 5232 amdsata - ok
16:38:13.0419 5232 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
16:38:13.0440 5232 amdsbs - ok
16:38:13.0455 5232 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
16:38:13.0466 5232 amdxata - ok
16:38:13.0573 5232 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
16:38:13.0593 5232 AntiVirSchedulerService - ok
16:38:13.0643 5232 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
16:38:13.0655 5232 AntiVirService - ok
16:38:13.0734 5232 AntiVirWebService (676894fa57b671fec5c3f05f8929e03b) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
16:38:13.0768 5232 AntiVirWebService - ok
16:38:13.0815 5232 ApfiltrService (1661f9c9e4b0049fa0a5e30264375a87) C:\Windows\system32\drivers\Apfiltr.sys
16:38:13.0830 5232 ApfiltrService - ok
16:38:13.0873 5232 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
16:38:13.0920 5232 AppID - ok
16:38:13.0966 5232 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
16:38:14.0023 5232 AppIDSvc - ok
16:38:14.0062 5232 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
16:38:14.0105 5232 Appinfo - ok
16:38:14.0128 5232 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
16:38:14.0141 5232 arc - ok
16:38:14.0166 5232 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
16:38:14.0179 5232 arcsas - ok
16:38:14.0203 5232 ArcSoftKsUFilter (c130bc4a51b1382b2be8e44579ec4c0a) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
16:38:14.0216 5232 ArcSoftKsUFilter - ok
16:38:14.0238 5232 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
16:38:14.0286 5232 AsyncMac - ok
16:38:14.0331 5232 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
16:38:14.0341 5232 atapi - ok
16:38:14.0522 5232 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
16:38:14.0559 5232 athr - ok
16:38:15.0138 5232 atikmdag (f3a362b683b6158cc47d7e8e58b7ddc9) C:\Windows\system32\DRIVERS\atikmdag.sys
16:38:15.0234 5232 atikmdag - ok
16:38:15.0448 5232 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:38:15.0513 5232 AudioEndpointBuilder - ok
16:38:15.0519 5232 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:38:15.0566 5232 AudioSrv - ok
16:38:15.0620 5232 avgntflt (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
16:38:15.0649 5232 avgntflt - ok
16:38:15.0704 5232 avipbb (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
16:38:15.0730 5232 avipbb - ok
16:38:15.0772 5232 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
16:38:15.0792 5232 avkmgr - ok
16:38:15.0836 5232 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
16:38:15.0858 5232 AxInstSV - ok
16:38:15.0919 5232 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
16:38:15.0951 5232 b06bdrv - ok
16:38:16.0012 5232 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:38:16.0037 5232 b57nd60a - ok
16:38:16.0144 5232 BBSvc (825f81a6f7dd073509db101f0ba6dc59) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
16:38:16.0174 5232 BBSvc - ok
16:38:16.0204 5232 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
16:38:16.0219 5232 BDESVC - ok
16:38:16.0252 5232 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
16:38:16.0299 5232 Beep - ok
16:38:16.0395 5232 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
16:38:16.0453 5232 BFE - ok
16:38:16.0562 5232 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
16:38:16.0644 5232 BITS - ok
16:38:16.0700 5232 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
16:38:16.0725 5232 blbdrive - ok
16:38:16.0767 5232 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
16:38:16.0783 5232 bowser - ok
16:38:16.0820 5232 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
16:38:16.0840 5232 BrFiltLo - ok
16:38:16.0851 5232 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
16:38:16.0870 5232 BrFiltUp - ok
16:38:16.0889 5232 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
16:38:16.0930 5232 BridgeMP - ok
16:38:16.0967 5232 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
16:38:17.0010 5232 Browser - ok
16:38:17.0044 5232 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
16:38:17.0060 5232 Brserid - ok
16:38:17.0084 5232 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
16:38:17.0101 5232 BrSerWdm - ok
16:38:17.0125 5232 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:38:17.0144 5232 BrUsbMdm - ok
16:38:17.0170 5232 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
16:38:17.0185 5232 BrUsbSer - ok
16:38:17.0216 5232 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
16:38:17.0230 5232 BthEnum - ok
16:38:17.0252 5232 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
16:38:17.0273 5232 BTHMODEM - ok
16:38:17.0300 5232 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
16:38:17.0318 5232 BthPan - ok
16:38:17.0380 5232 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
16:38:17.0410 5232 BTHPORT - ok
16:38:17.0445 5232 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
16:38:17.0494 5232 bthserv - ok
16:38:17.0513 5232 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
16:38:17.0524 5232 BTHUSB - ok
16:38:17.0552 5232 btusbflt (6e04458e98daf28826482e41a7a62df5) C:\Windows\system32\drivers\btusbflt.sys
16:38:17.0564 5232 btusbflt - ok
16:38:17.0590 5232 btwaudio (4bdbdb86abba924e029fb2683be7c505) C:\Windows\system32\drivers\btwaudio.sys
16:38:17.0601 5232 btwaudio - ok
16:38:17.0619 5232 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\drivers\btwavdt.sys
16:38:17.0631 5232 btwavdt - ok
16:38:17.0749 5232 btwdins (31da517946ffe416442e864592548f8a) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
16:38:17.0783 5232 btwdins - ok
16:38:17.0810 5232 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
16:38:17.0818 5232 btwl2cap - ok
16:38:17.0836 5232 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\DRIVERS\btwrchid.sys
16:38:17.0847 5232 btwrchid - ok
16:38:17.0849 5232 catchme - ok
16:38:17.0887 5232 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
16:38:17.0932 5232 cdfs - ok
16:38:17.0982 5232 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
16:38:18.0007 5232 cdrom - ok
16:38:18.0042 5232 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:38:18.0093 5232 CertPropSvc - ok
16:38:18.0107 5232 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
16:38:18.0122 5232 circlass - ok
16:38:18.0179 5232 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
16:38:18.0207 5232 CLFS - ok
16:38:18.0284 5232 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:38:18.0303 5232 clr_optimization_v2.0.50727_32 - ok
16:38:18.0348 5232 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:38:18.0362 5232 clr_optimization_v2.0.50727_64 - ok
16:38:18.0428 5232 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:38:18.0443 5232 clr_optimization_v4.0.30319_32 - ok
16:38:18.0487 5232 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:38:18.0503 5232 clr_optimization_v4.0.30319_64 - ok
16:38:18.0520 5232 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
16:38:18.0538 5232 CmBatt - ok
16:38:18.0575 5232 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
16:38:18.0591 5232 cmdide - ok
16:38:18.0669 5232 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
16:38:18.0706 5232 CNG - ok
16:38:18.0735 5232 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
16:38:18.0747 5232 Compbatt - ok
16:38:18.0778 5232 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
16:38:18.0796 5232 CompositeBus - ok
16:38:18.0799 5232 COMSysApp - ok
16:38:18.0829 5232 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
16:38:18.0843 5232 crcdisk - ok
16:38:18.0889 5232 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
16:38:18.0903 5232 CryptSvc - ok
16:38:19.0073 5232 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:38:19.0116 5232 cvhsvc - ok
16:38:19.0144 5232 dc3d (51c55da62cd9bcec3494a3a362ea793c) C:\Windows\system32\DRIVERS\dc3d.sys
16:38:19.0154 5232 dc3d - ok
16:38:19.0237 5232 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:38:19.0297 5232 DcomLaunch - ok
16:38:19.0349 5232 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
16:38:19.0402 5232 defragsvc - ok
16:38:19.0469 5232 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
16:38:19.0524 5232 DfsC - ok
16:38:19.0582 5232 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
16:38:19.0646 5232 Dhcp - ok
16:38:19.0674 5232 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
16:38:19.0719 5232 discache - ok
16:38:19.0753 5232 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
16:38:19.0767 5232 Disk - ok
16:38:19.0822 5232 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
16:38:19.0849 5232 Dnscache - ok
16:38:19.0897 5232 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
16:38:19.0945 5232 dot3svc - ok
16:38:20.0000 5232 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
16:38:20.0063 5232 DPS - ok
16:38:20.0096 5232 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
16:38:20.0129 5232 drmkaud - ok
16:38:20.0246 5232 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
16:38:20.0293 5232 DXGKrnl - ok
16:38:20.0296 5232 EagleX64 - ok
16:38:20.0333 5232 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
16:38:20.0382 5232 EapHost - ok
16:38:20.0661 5232 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
16:38:20.0735 5232 ebdrv - ok
16:38:20.0876 5232 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
16:38:20.0900 5232 EFS - ok
16:38:21.0009 5232 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
16:38:21.0042 5232 ehRecvr - ok
16:38:21.0077 5232 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
16:38:21.0091 5232 ehSched - ok
16:38:21.0197 5232 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
16:38:21.0241 5232 elxstor - ok
16:38:21.0272 5232 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
16:38:21.0285 5232 ErrDev - ok
16:38:21.0349 5232 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
16:38:21.0434 5232 EventSystem - ok
16:38:21.0503 5232 ewusbmbb (334c907536e815e56cd13108a6d5fb9d) C:\Windows\system32\DRIVERS\ewusbwwan.sys
16:38:21.0533 5232 ewusbmbb - ok
16:38:21.0572 5232 ew_hwusbdev (86f7951bbcee4a86e79a97306bd14318) C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
16:38:21.0597 5232 ew_hwusbdev - ok
16:38:21.0644 5232 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
16:38:21.0710 5232 exfat - ok
16:38:21.0741 5232 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
16:38:21.0786 5232 fastfat - ok
16:38:21.0875 5232 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
16:38:21.0909 5232 Fax - ok
16:38:21.0930 5232 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
16:38:21.0942 5232 fdc - ok
16:38:21.0966 5232 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
16:38:22.0008 5232 fdPHost - ok
16:38:22.0022 5232 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
16:38:22.0063 5232 FDResPub - ok
16:38:22.0085 5232 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
16:38:22.0097 5232 FileInfo - ok
16:38:22.0107 5232 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
16:38:22.0147 5232 Filetrace - ok
16:38:22.0173 5232 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
16:38:22.0187 5232 flpydisk - ok
16:38:22.0242 5232 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
16:38:22.0277 5232 FltMgr - ok
16:38:22.0415 5232 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
16:38:22.0454 5232 FontCache - ok
16:38:22.0543 5232 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:38:22.0563 5232 FontCache3.0.0.0 - ok
16:38:22.0615 5232 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
16:38:22.0635 5232 FsDepends - ok
16:38:22.0669 5232 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
16:38:22.0679 5232 fssfltr - ok
16:38:22.0917 5232 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
16:38:22.0973 5232 fsssvc - ok
16:38:23.0128 5232 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
16:38:23.0150 5232 Fs_Rec - ok
16:38:23.0201 5232 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
16:38:23.0231 5232 fvevol - ok
16:38:23.0272 5232 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
16:38:23.0286 5232 gagp30kx - ok
16:38:23.0399 5232 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
16:38:23.0463 5232 gpsvc - ok
16:38:23.0538 5232 gupdate (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:38:23.0560 5232 gupdate - ok
16:38:23.0596 5232 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
16:38:23.0618 5232 hamachi - ok
16:38:23.0654 5232 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
16:38:23.0673 5232 hcw85cir - ok
16:38:23.0742 5232 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
16:38:23.0781 5232 HdAudAddService - ok
16:38:23.0807 5232 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
16:38:23.0827 5232 HDAudBus - ok
16:38:23.0851 5232 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
16:38:23.0865 5232 HECIx64 - ok
16:38:23.0885 5232 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
16:38:23.0900 5232 HidBatt - ok
16:38:23.0939 5232 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
16:38:23.0959 5232 HidBth - ok
16:38:23.0985 5232 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
16:38:24.0001 5232 HidIr - ok
16:38:24.0044 5232 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
16:38:24.0090 5232 hidserv - ok
16:38:24.0118 5232 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
16:38:24.0132 5232 HidUsb - ok
16:38:24.0169 5232 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
16:38:24.0217 5232 hkmsvc - ok
16:38:24.0278 5232 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
16:38:24.0309 5232 HomeGroupListener - ok
16:38:24.0368 5232 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
16:38:24.0391 5232 HomeGroupProvider - ok
16:38:24.0434 5232 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
16:38:24.0448 5232 HpSAMD - ok
16:38:24.0548 5232 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
16:38:24.0608 5232 HTTP - ok
16:38:24.0650 5232 huawei_enumerator (1642c62f1fd5e1ff44608283994a7bb8) C:\Windows\system32\DRIVERS\ew_jubusenum.sys
16:38:24.0662 5232 huawei_enumerator - ok
16:38:24.0718 5232 hwdatacard (04d1de1e8ace40ca396502c90524e945) C:\Windows\system32\DRIVERS\ewusbmdm.sys
16:38:24.0738 5232 hwdatacard - ok
16:38:24.0787 5232 HWDeviceService64.exe - ok
16:38:24.0823 5232 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
16:38:24.0842 5232 hwpolicy - ok
16:38:24.0885 5232 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
16:38:24.0902 5232 i8042prt - ok
16:38:24.0974 5232 iaStor (073a606333b6f7bbf20aa856df7f0997) C:\Windows\system32\drivers\iaStor.sys
16:38:24.0999 5232 iaStor - ok
16:38:25.0075 5232 IAStorDataMgrSvc (cc800d2d9fd467542bac7c186c4774ad) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
16:38:25.0094 5232 IAStorDataMgrSvc - ok
16:38:25.0176 5232 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
16:38:25.0208 5232 iaStorV - ok
16:38:25.0295 5232 ICQ Service (b1a28fa1afde10b95ff9354b15701d70) C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
16:38:25.0319 5232 ICQ Service - ok
16:38:25.0469 5232 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:38:25.0510 5232 idsvc - ok
16:38:26.0182 5232 igfx (31d1aff484d8a0906cf8d44251ec390f) C:\Windows\system32\DRIVERS\igdkmd64.sys
16:38:26.0282 5232 igfx ( UnsignedFile.Multi.Generic ) - warning
16:38:26.0282 5232 igfx - detected UnsignedFile.Multi.Generic (1)
16:38:26.0443 5232 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
16:38:26.0466 5232 iirsp - ok
16:38:26.0585 5232 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
16:38:26.0649 5232 IKEEXT - ok
16:38:26.0690 5232 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\drivers\Impcd.sys
16:38:26.0700 5232 Impcd - ok
16:38:26.0919 5232 IntcAzAudAddService (0f144e5f46cb9043004b5e84aa4bca6a) C:\Windows\system32\drivers\RTKVHD64.sys
16:38:26.0988 5232 IntcAzAudAddService - ok
16:38:27.0153 5232 IntcDAud (408b401cd7cdb075c7470b0ff7ba8d0b) C:\Windows\system32\DRIVERS\IntcDAud.sys
16:38:27.0165 5232 IntcDAud ( UnsignedFile.Multi.Generic ) - warning
16:38:27.0165 5232 IntcDAud - detected UnsignedFile.Multi.Generic (1)
16:38:27.0195 5232 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
16:38:27.0219 5232 intelide - ok
16:38:27.0248 5232 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
16:38:27.0270 5232 intelppm - ok
16:38:27.0309 5232 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
16:38:27.0368 5232 IPBusEnum - ok
16:38:27.0410 5232 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:38:27.0455 5232 IpFilterDriver - ok
16:38:27.0522 5232 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
16:38:27.0582 5232 iphlpsvc - ok
16:38:27.0619 5232 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
16:38:27.0632 5232 IPMIDRV - ok
16:38:27.0666 5232 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
16:38:27.0715 5232 IPNAT - ok
16:38:27.0725 5232 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
16:38:27.0743 5232 IRENUM - ok
16:38:27.0783 5232 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
16:38:27.0808 5232 isapnp - ok
16:38:27.0869 5232 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
16:38:27.0889 5232 iScsiPrt - ok
16:38:27.0915 5232 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
16:38:27.0927 5232 kbdclass - ok
16:38:27.0968 5232 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
16:38:27.0982 5232 kbdhid - ok
16:38:28.0032 5232 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:38:28.0047 5232 KeyIso - ok
16:38:28.0089 5232 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
16:38:28.0115 5232 KSecDD - ok
16:38:28.0175 5232 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
16:38:28.0203 5232 KSecPkg - ok
16:38:28.0229 5232 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
16:38:28.0274 5232 ksthunk - ok
16:38:28.0329 5232 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
16:38:28.0388 5232 KtmRm - ok
16:38:28.0416 5232 LADF_DHP2 (86dcbf8a41c78561a1da07ab5e7b1ccc) C:\Windows\system32\DRIVERS\ladfDHP2amd64.sys
16:38:28.0425 5232 LADF_DHP2 - ok
16:38:28.0481 5232 LADF_SBVM (175c04c7813ce64616b5cb046e5e1383) C:\Windows\system32\DRIVERS\ladfSBVMamd64.sys
16:38:28.0507 5232 LADF_SBVM - ok
16:38:28.0556 5232 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
16:38:28.0608 5232 LanmanServer - ok
16:38:28.0649 5232 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
16:38:28.0696 5232 LanmanWorkstation - ok
16:38:28.0727 5232 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
16:38:28.0767 5232 lltdio - ok
16:38:28.0809 5232 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
16:38:28.0864 5232 lltdsvc - ok
16:38:28.0883 5232 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
16:38:28.0924 5232 lmhosts - ok
16:38:29.0025 5232 LMS (5460828f8951d310b42b442877603b8d) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:38:29.0047 5232 LMS - ok
16:38:29.0096 5232 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
16:38:29.0112 5232 LSI_FC - ok
16:38:29.0137 5232 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
16:38:29.0150 5232 LSI_SAS - ok
16:38:29.0179 5232 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
16:38:29.0192 5232 LSI_SAS2 - ok
16:38:29.0227 5232 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
16:38:29.0243 5232 LSI_SCSI - ok
16:38:29.0277 5232 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
16:38:29.0324 5232 luafv - ok
16:38:29.0397 5232 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
16:38:29.0425 5232 Mcx2Svc - ok
16:38:29.0452 5232 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
16:38:29.0465 5232 megasas - ok
16:38:29.0526 5232 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
16:38:29.0556 5232 MegaSR - ok
16:38:29.0578 5232 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:38:29.0626 5232 MMCSS - ok
16:38:29.0749 5232 Mobile Partner. RunOuc (38106c7bd34eae89d2769ac0ba2e846b) C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
16:38:29.0760 5232 Mobile Partner. RunOuc ( UnsignedFile.Multi.Generic ) - warning
16:38:29.0761 5232 Mobile Partner. RunOuc - detected UnsignedFile.Multi.Generic (1)
16:38:29.0810 5232 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
16:38:29.0870 5232 Modem - ok
16:38:29.0880 5232 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
16:38:29.0895 5232 monitor - ok
16:38:29.0931 5232 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
16:38:29.0943 5232 mouclass - ok
16:38:29.0958 5232 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
16:38:29.0971 5232 mouhid - ok
16:38:30.0005 5232 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
16:38:30.0018 5232 mountmgr - ok
16:38:30.0073 5232 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
16:38:30.0088 5232 mpio - ok
16:38:30.0110 5232 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
16:38:30.0156 5232 mpsdrv - ok
16:38:30.0262 5232 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
16:38:30.0323 5232 MpsSvc - ok
16:38:30.0363 5232 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
16:38:30.0386 5232 MRxDAV - ok
16:38:30.0428 5232 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:38:30.0454 5232 mrxsmb - ok
16:38:30.0514 5232 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:38:30.0542 5232 mrxsmb10 - ok
16:38:30.0563 5232 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:38:30.0575 5232 mrxsmb20 - ok
16:38:30.0605 5232 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
16:38:30.0617 5232 msahci - ok
16:38:30.0657 5232 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
16:38:30.0672 5232 msdsm - ok
16:38:30.0708 5232 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
16:38:30.0727 5232 MSDTC - ok
16:38:30.0767 5232 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
16:38:30.0824 5232 Msfs - ok
16:38:30.0837 5232 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
16:38:30.0881 5232 mshidkmdf - ok
16:38:30.0917 5232 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
16:38:30.0927 5232 msisadrv - ok
16:38:30.0962 5232 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
16:38:31.0015 5232 MSiSCSI - ok
16:38:31.0018 5232 msiserver - ok
16:38:31.0036 5232 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
16:38:31.0077 5232 MSKSSRV - ok
16:38:31.0082 5232 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
16:38:31.0123 5232 MSPCLOCK - ok
16:38:31.0138 5232 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
16:38:31.0178 5232 MSPQM - ok
16:38:31.0236 5232 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
16:38:31.0268 5232 MsRPC - ok
16:38:31.0307 5232 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
16:38:31.0319 5232 mssmbios - ok
16:38:31.0337 5232 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
16:38:31.0380 5232 MSTEE - ok
16:38:31.0402 5232 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
16:38:31.0416 5232 MTConfig - ok
16:38:31.0443 5232 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
16:38:31.0457 5232 Mup - ok
16:38:31.0526 5232 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
16:38:31.0584 5232 napagent - ok
16:38:31.0618 5232 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
16:38:31.0643 5232 NativeWifiP - ok
16:38:31.0740 5232 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
16:38:31.0784 5232 NDIS - ok
16:38:31.0804 5232 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
16:38:31.0845 5232 NdisCap - ok
16:38:31.0858 5232 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
16:38:31.0898 5232 NdisTapi - ok
16:38:31.0932 5232 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
16:38:31.0973 5232 Ndisuio - ok
16:38:32.0024 5232 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
16:38:32.0084 5232 NdisWan - ok
16:38:32.0120 5232 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
16:38:32.0161 5232 NDProxy - ok
16:38:32.0187 5232 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
16:38:32.0230 5232 NetBIOS - ok
16:38:32.0289 5232 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
16:38:32.0348 5232 NetBT - ok
16:38:32.0387 5232 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:38:32.0401 5232 Netlogon - ok
16:38:32.0460 5232 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
16:38:32.0511 5232 Netman - ok
16:38:32.0558 5232 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
16:38:32.0622 5232 netprofm - ok
16:38:32.0692 5232 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:38:32.0714 5232 NetTcpPortSharing - ok
16:38:32.0754 5232 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
16:38:32.0769 5232 nfrd960 - ok
16:38:32.0821 5232 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
16:38:32.0878 5232 NlaSvc - ok
16:38:32.0899 5232 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
16:38:32.0941 5232 Npfs - ok
16:38:32.0973 5232 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
16:38:33.0018 5232 nsi - ok
16:38:33.0033 5232 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
16:38:33.0074 5232 nsiproxy - ok
16:38:33.0251 5232 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
16:38:33.0302 5232 Ntfs - ok
16:38:33.0450 5232 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
16:38:33.0507 5232 Null - ok
16:38:33.0544 5232 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
16:38:33.0572 5232 nvraid - ok
16:38:33.0605 5232 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
16:38:33.0622 5232 nvstor - ok
16:38:33.0655 5232 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
16:38:33.0672 5232 nv_agp - ok
16:38:33.0700 5232 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
16:38:33.0717 5232 ohci1394 - ok
16:38:33.0804 5232 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:38:33.0826 5232 ose - ok
16:38:34.0269 5232 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:38:34.0366 5232 osppsvc - ok
16:38:34.0541 5232 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:38:34.0575 5232 p2pimsvc - ok
16:38:34.0633 5232 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
16:38:34.0657 5232 p2psvc - ok
16:38:34.0712 5232 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
16:38:34.0739 5232 Parport - ok
16:38:34.0778 5232 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
16:38:34.0803 5232 partmgr - ok
16:38:34.0841 5232 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
16:38:34.0866 5232 PcaSvc - ok
16:38:34.0911 5232 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
16:38:34.0929 5232 pci - ok
16:38:34.0955 5232 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
16:38:34.0970 5232 pciide - ok
16:38:35.0012 5232 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
16:38:35.0033 5232 pcmcia - ok
16:38:35.0070 5232 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
16:38:35.0096 5232 pcw - ok
16:38:35.0158 5232 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
16:38:35.0213 5232 PEAUTH - ok
16:38:35.0315 5232 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
16:38:35.0343 5232 PerfHost - ok
16:38:35.0585 5232 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
16:38:35.0656 5232 pla - ok
16:38:35.0719 5232 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
16:38:35.0744 5232 PlugPlay - ok
16:38:35.0876 5232 PMBDeviceInfoProvider (627fa58adc043704f9d14ca44340956f) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
16:38:35.0902 5232 PMBDeviceInfoProvider - ok
16:38:35.0907 5232 PnkBstrA - ok
16:38:35.0940 5232 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
16:38:35.0956 5232 PNRPAutoReg - ok
16:38:35.0995 5232 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:38:36.0016 5232 PNRPsvc - ok
16:38:36.0064 5232 Point64 (9abff71ff6f3b9492686d3403fa5dcdb) C:\Windows\system32\DRIVERS\point64k.sys
16:38:36.0084 5232 Point64 - ok
16:38:36.0153 5232 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
16:38:36.0210 5232 PolicyAgent - ok
16:38:36.0248 5232 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
16:38:36.0292 5232 Power - ok
16:38:36.0329 5232 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
16:38:36.0377 5232 PptpMiniport - ok
16:38:36.0408 5232 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
16:38:36.0423 5232 Processor - ok
16:38:36.0475 5232 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
16:38:36.0497 5232 ProfSvc - ok
16:38:36.0531 5232 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:38:36.0544 5232 ProtectedStorage - ok
16:38:36.0590 5232 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
16:38:36.0636 5232 Psched - ok
16:38:36.0664 5232 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
16:38:36.0676 5232 PxHlpa64 - ok
16:38:36.0851 5232 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
16:38:36.0899 5232 ql2300 - ok
16:38:37.0066 5232 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
16:38:37.0089 5232 ql40xx - ok
16:38:37.0138 5232 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
16:38:37.0162 5232 QWAVE - ok
16:38:37.0191 5232 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
16:38:37.0210 5232 QWAVEdrv - ok
16:38:37.0225 5232 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
16:38:37.0272 5232 RasAcd - ok
16:38:37.0304 5232 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:38:37.0351 5232 RasAgileVpn - ok
16:38:37.0377 5232 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
16:38:37.0423 5232 RasAuto - ok
16:38:37.0466 5232 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:38:37.0510 5232 Rasl2tp - ok
16:38:37.0564 5232 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
16:38:37.0623 5232 RasMan - ok
16:38:37.0656 5232 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
16:38:37.0699 5232 RasPppoe - ok
16:38:37.0721 5232 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
16:38:37.0762 5232 RasSstp - ok
16:38:37.0825 5232 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
16:38:37.0894 5232 rdbss - ok
16:38:37.0931 5232 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
16:38:37.0947 5232 rdpbus - ok
16:38:37.0956 5232 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:38:37.0999 5232 RDPCDD - ok
16:38:38.0014 5232 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
16:38:38.0054 5232 RDPENCDD - ok
16:38:38.0073 5232 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
16:38:38.0113 5232 RDPREFMP - ok
16:38:38.0160 5232 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
16:38:38.0177 5232 RDPWD - ok
16:38:38.0225 5232 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
16:38:38.0243 5232 rdyboost - ok
16:38:38.0267 5232 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
16:38:38.0311 5232 RemoteAccess - ok
16:38:38.0357 5232 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
16:38:38.0408 5232 RemoteRegistry - ok
16:38:38.0451 5232 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
16:38:38.0469 5232 RFCOMM - ok
16:38:38.0504 5232 rimspci (5ca4abd888b602551b59baa26941c167) C:\Windows\system32\drivers\rimssne64.sys
16:38:38.0516 5232 rimspci - ok
16:38:38.0545 5232 risdsnpe (bb6e138aeb351728959da5e2731d8140) C:\Windows\system32\drivers\risdsne64.sys
16:38:38.0558 5232 risdsnpe - ok
16:38:38.0666 5232 Roxio UPnP Renderer 10 (d151224bc11078895a60fa970728ff59) C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
16:38:38.0696 5232 Roxio UPnP Renderer 10 - ok
16:38:38.0751 5232 Roxio Upnp Server 10 (5022a927944878bd750960bd21e751af) C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
16:38:38.0778 5232 Roxio Upnp Server 10 - ok
16:38:38.0824 5232 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
16:38:38.0886 5232 RpcEptMapper - ok
16:38:38.0910 5232 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
16:38:38.0925 5232 RpcLocator - ok
16:38:38.0998 5232 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:38:39.0061 5232 RpcSs - ok
16:38:39.0109 5232 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
16:38:39.0157 5232 rspndr - ok
16:38:39.0193 5232 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
16:38:39.0208 5232 RTHDMIAzAudService - ok
16:38:39.0258 5232 SaiK0CCB (f6d3e9793f22c92cef9b96bf47da01f1) C:\Windows\system32\DRIVERS\SaiK0CCB.sys
16:38:39.0287 5232 SaiK0CCB - ok
16:38:39.0325 5232 SaiMini (9e7e53891d1747a01f491ab25b95135d) C:\Windows\system32\DRIVERS\SaiMini.sys
16:38:39.0343 5232 SaiMini - ok
16:38:39.0383 5232 SaiNtBus (b3b86be19a0caf025f679c39fd21e735) C:\Windows\system32\drivers\SaiBus.sys
16:38:39.0401 5232 SaiNtBus - ok
16:38:39.0430 5232 SaiU0CCB (ff2d7435c79b273752f0912feab839c0) C:\Windows\system32\DRIVERS\SaiU0CCB.sys
16:38:39.0448 5232 SaiU0CCB - ok
16:38:39.0488 5232 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:38:39.0507 5232 SamSs - ok
16:38:39.0556 5232 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
16:38:39.0583 5232 sbp2port - ok
16:38:39.0625 5232 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
16:38:39.0679 5232 SCardSvr - ok
16:38:39.0711 5232 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
16:38:39.0753 5232 scfilter - ok
16:38:39.0878 5232 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
16:38:39.0943 5232 Schedule - ok
16:38:39.0976 5232 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:38:40.0021 5232 SCPolicySvc - ok
16:38:40.0062 5232 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
16:38:40.0080 5232 sdbus - ok
16:38:40.0119 5232 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
16:38:40.0133 5232 SDRSVC - ok
16:38:40.0245 5232 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
16:38:40.0271 5232 SeaPort - ok
16:38:40.0301 5232 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:38:40.0351 5232 secdrv - ok
16:38:40.0386 5232 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
16:38:40.0428 5232 seclogon - ok
16:38:40.0457 5232 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
16:38:40.0501 5232 SENS - ok
16:38:40.0514 5232 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
16:38:40.0526 5232 SensrSvc - ok
16:38:40.0549 5232 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
16:38:40.0561 5232 Serenum - ok
16:38:40.0581 5232 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
16:38:40.0594 5232 Serial - ok
16:38:40.0625 5232 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
16:38:40.0638 5232 sermouse - ok
16:38:40.0687 5232 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
16:38:40.0744 5232 SessionEnv - ok
16:38:40.0769 5232 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\drivers\SFEP.sys
16:38:40.0779 5232 SFEP - ok
16:38:40.0810 5232 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
16:38:40.0828 5232 sffdisk - ok
16:38:40.0833 5232 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
16:38:40.0849 5232 sffp_mmc - ok
16:38:40.0865 5232 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
16:38:40.0882 5232 sffp_sd - ok
16:38:40.0904 5232 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
16:38:40.0916 5232 sfloppy - ok
16:38:41.0013 5232 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
16:38:41.0050 5232 Sftfs - ok
16:38:41.0190 5232 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:38:41.0222 5232 sftlist - ok
16:38:41.0366 5232 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
16:38:41.0393 5232 Sftplay - ok
16:38:41.0413 5232 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
16:38:41.0422 5232 Sftredir - ok
16:38:41.0459 5232 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
16:38:41.0476 5232 Sftvol - ok
16:38:41.0512 5232 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:38:41.0530 5232 sftvsa - ok
16:38:41.0584 5232 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
16:38:41.0641 5232 SharedAccess - ok
16:38:41.0698 5232 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
16:38:41.0751 5232 ShellHWDetection - ok
16:38:41.0778 5232 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
16:38:41.0789 5232 SiSRaid2 - ok
16:38:41.0824 5232 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
16:38:41.0851 5232 SiSRaid4 - ok
16:38:41.0899 5232 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
16:38:41.0923 5232 SkypeUpdate - ok
16:38:41.0966 5232 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
16:38:42.0019 5232 Smb - ok
16:38:42.0043 5232 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
16:38:42.0057 5232 SNMPTRAP - ok
16:38:42.0118 5232 SOHCImp (98886c88a1cb13d61672ae2c638b7e1c) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
16:38:42.0140 5232 SOHCImp - ok
16:38:42.0163 5232 SOHDBSvr (442a13f395546f4564c377296d43b564) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
16:38:42.0173 5232 SOHDBSvr - ok
16:38:42.0232 5232 SOHDms (556681be668d71dc162391a45422b52c) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
16:38:42.0263 5232 SOHDms - ok
16:38:42.0288 5232 SOHDs (72b46103e4111439109acf5882627c24) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
16:38:42.0297 5232 SOHDs - ok
16:38:42.0321 5232 SOHPlMgr (725b6e9cd1959271ac993dc035e1606d) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
16:38:42.0331 5232 SOHPlMgr - ok
16:38:42.0351 5232 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
16:38:42.0364 5232 spldr - ok
16:38:42.0448 5232 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
16:38:42.0505 5232 Spooler - ok
16:38:42.0818 5232 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
16:38:42.0931 5232 sppsvc - ok
16:38:43.0059 5232 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
16:38:43.0119 5232 sppuinotify - ok
16:38:43.0217 5232 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
16:38:43.0253 5232 srv - ok
16:38:43.0308 5232 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
16:38:43.0328 5232 srv2 - ok
16:38:43.0383 5232 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
16:38:43.0412 5232 srvnet - ok
16:38:43.0446 5232 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
16:38:43.0493 5232 SSDPSRV - ok
16:38:43.0511 5232 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
16:38:43.0553 5232 SstpSvc - ok
16:38:43.0606 5232 Steam Client Service - ok
16:38:43.0643 5232 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
16:38:43.0664 5232 stexstor - ok
16:38:43.0756 5232 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
16:38:43.0795 5232 stisvc - ok
16:38:43.0832 5232 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
16:38:43.0857 5232 swenum - ok
16:38:43.0917 5232 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
16:38:43.0975 5232 swprv - ok
16:38:44.0144 5232 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
16:38:44.0194 5232 SysMain - ok
16:38:44.0329 5232 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
16:38:44.0360 5232 TabletInputService - ok
16:38:44.0420 5232 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
16:38:44.0469 5232 TapiSrv - ok
16:38:44.0498 5232 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
16:38:44.0541 5232 TBS - ok
16:38:44.0762 5232 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
16:38:44.0814 5232 Tcpip - ok
16:38:45.0096 5232 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
16:38:45.0153 5232 TCPIP6 - ok
16:38:45.0251 5232 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
16:38:45.0306 5232 tcpipreg - ok
16:38:45.0326 5232 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
16:38:45.0337 5232 TDPIPE - ok
16:38:45.0371 5232 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
16:38:45.0385 5232 TDTCP - ok
16:38:45.0428 5232 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
16:38:45.0471 5232 tdx - ok
16:38:45.0513 5232 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
16:38:45.0540 5232 TermDD - ok
16:38:45.0614 5232 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
16:38:45.0676 5232 TermService - ok
16:38:45.0700 5232 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
16:38:45.0718 5232 Themes - ok
16:38:45.0744 5232 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:38:45.0788 5232 THREADORDER - ok
16:38:45.0808 5232 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
16:38:45.0853 5232 TrkWks - ok
16:38:45.0921 5232 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
16:38:45.0981 5232 TrustedInstaller - ok
16:38:46.0016 5232 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:38:46.0061 5232 tssecsrv - ok
16:38:46.0094 5232 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
16:38:46.0107 5232 TsUsbFlt - ok
16:38:46.0155 5232 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
16:38:46.0216 5232 tunnel - ok
16:38:46.0248 5232 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
16:38:46.0260 5232 uagp35 - ok
16:38:46.0338 5232 uCamMonitor (63f6d08c54d5b3c1b12a6172032055c7) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
16:38:46.0353 5232 uCamMonitor - ok
16:38:46.0422 5232 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
16:38:46.0471 5232 udfs - ok
16:38:46.0507 5232 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
16:38:46.0521 5232 UI0Detect - ok
16:38:46.0559 5232 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
16:38:46.0574 5232 uliagpkx - ok
16:38:46.0614 5232 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
16:38:46.0631 5232 umbus - ok
16:38:46.0651 5232 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
16:38:46.0666 5232 UmPass - ok
16:38:46.0963 5232 UNS (9e89c2d6945389270de067ce51ff7425) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:38:47.0028 5232 UNS - ok
16:38:47.0176 5232 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
16:38:47.0235 5232 upnphost - ok
16:38:47.0285 5232 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
16:38:47.0305 5232 usbaudio - ok
16:38:47.0343 5232 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
16:38:47.0357 5232 usbccgp - ok
16:38:47.0391 5232 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
16:38:47.0410 5232 usbcir - ok
16:38:47.0441 5232 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
16:38:47.0455 5232 usbehci - ok
16:38:47.0497 5232 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
16:38:47.0522 5232 usbhub - ok
16:38:47.0558 5232 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
16:38:47.0571 5232 usbohci - ok
16:38:47.0590 5232 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
16:38:47.0609 5232 usbprint - ok
16:38:47.0645 5232 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
16:38:47.0665 5232 usbscan - ok
16:38:47.0687 5232 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:38:47.0700 5232 USBSTOR - ok
16:38:47.0716 5232 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
16:38:47.0730 5232 usbuhci - ok
16:38:47.0786 5232 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
16:38:47.0809 5232 usbvideo - ok
16:38:47.0839 5232 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
16:38:47.0883 5232 UxSms - ok
16:38:47.0981 5232 VAIO Entertainment TV Device Arbitration Service (4e7135d6d0127067e4cfee12259f895d) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
16:38:47.0987 5232 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - warning
16:38:47.0987 5232 VAIO Entertainment TV Device Arbitration Service - detected UnsignedFile.Multi.Generic (1)
16:38:48.0070 5232 VAIO Event Service (6b31c9cb94927dbeeb62e15275f4cc54) C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
16:38:48.0093 5232 VAIO Event Service - ok
16:38:48.0251 5232 VAIO Power Management (b8c9a7010afd5cbbe194cb9ef7c4fd14) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
16:38:48.0284 5232 VAIO Power Management - ok
16:38:48.0320 5232 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:38:48.0332 5232 VaultSvc - ok
16:38:48.0440 5232 VCFw (6a740f5ff3246c3be3dd317299efc88e) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
16:38:48.0464 5232 VCFw - ok
16:38:48.0573 5232 VcmIAlzMgr (10e212bfb7eab152a64c1aaec2f7f4e0) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
16:38:48.0604 5232 VcmIAlzMgr - ok
16:38:48.0654 5232 VcmINSMgr (9d9b34b430b4dc683112f59c80d20ab8) C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
16:38:48.0671 5232 VcmINSMgr - ok
16:38:48.0766 5232 VcmXmlIfHelper (8efaaccc7bfa1e9031efdfb01a1b0d69) C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
16:38:48.0782 5232 VcmXmlIfHelper - ok
16:38:48.0827 5232 VCService (d347d3abe070aa09c22fc37121555d52) C:\Program Files\Sony\VAIO Care\VCService.exe
16:38:48.0842 5232 VCService - ok
16:38:48.0989 5232 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
16:38:49.0008 5232 vdrvroot - ok
16:38:49.0096 5232 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
16:38:49.0156 5232 vds - ok
16:38:49.0187 5232 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
16:38:49.0204 5232 vga - ok
16:38:49.0224 5232 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
16:38:49.0266 5232 VgaSave - ok
16:38:49.0317 5232 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
16:38:49.0333 5232 vhdmp - ok
16:38:49.0367 5232 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
16:38:49.0378 5232 viaide - ok
16:38:49.0424 5232 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
16:38:49.0437 5232 volmgr - ok
16:38:49.0519 5232 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
16:38:49.0557 5232 volmgrx - ok
16:38:49.0602 5232 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
16:38:49.0625 5232 volsnap - ok
16:38:49.0665 5232 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
16:38:49.0683 5232 vsmraid - ok
16:38:49.0837 5232 VSNService (33655f6b36aa8702960ab1568ed82a01) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
16:38:49.0866 5232 VSNService ( UnsignedFile.Multi.Generic ) - warning
16:38:49.0866 5232 VSNService - detected UnsignedFile.Multi.Generic (1)
16:38:50.0054 5232 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
16:38:50.0120 5232 VSS - ok
16:38:50.0329 5232 VUAgent (fb4a1695d2d74f9c92ca5e84795cdbe1) C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
16:38:50.0369 5232 VUAgent - ok
16:38:50.0496 5232 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
16:38:50.0526 5232 vwifibus - ok
16:38:50.0551 5232 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
16:38:50.0582 5232 vwififlt - ok
16:38:50.0598 5232 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
16:38:50.0627 5232 vwifimp - ok
16:38:50.0734 5232 VzCdbSvc (d8bef4ac1eac809dbdbd441d6cff6c4c) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
16:38:50.0744 5232 VzCdbSvc ( UnsignedFile.Multi.Generic ) - warning
16:38:50.0744 5232 VzCdbSvc - detected UnsignedFile.Multi.Generic (1)
16:38:50.0800 5232 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
16:38:50.0854 5232 W32Time - ok
16:38:50.0879 5232 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
16:38:50.0891 5232 WacomPen - ok
16:38:50.0928 5232 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:38:50.0968 5232 WANARP - ok
16:38:50.0971 5232 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:38:51.0012 5232 Wanarpv6 - ok
16:38:51.0148 5232 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
16:38:51.0204 5232 WatAdminSvc - ok
16:38:51.0361 5232 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
16:38:51.0401 5232 wbengine - ok
16:38:51.0562 5232 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
16:38:51.0602 5232 WbioSrvc - ok
16:38:51.0665 5232 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
16:38:51.0706 5232 wcncsvc - ok
16:38:51.0725 5232 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
16:38:51.0741 5232 WcsPlugInService - ok
16:38:51.0788 5232 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
16:38:51.0812 5232 Wd - ok
16:38:51.0895 5232 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
16:38:51.0934 5232 Wdf01000 - ok
16:38:51.0970 5232 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:38:51.0995 5232 WdiServiceHost - ok
16:38:51.0998 5232 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:38:52.0020 5232 WdiSystemHost - ok
16:38:52.0071 5232 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
16:38:52.0096 5232 WebClient - ok
16:38:52.0128 5232 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
16:38:52.0177 5232 Wecsvc - ok
16:38:52.0209 5232 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
16:38:52.0256 5232 wercplsupport - ok
16:38:52.0265 5232 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
16:38:52.0308 5232 WerSvc - ok
16:38:52.0350 5232 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
16:38:52.0410 5232 WfpLwf - ok
16:38:52.0442 5232 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
16:38:52.0467 5232 WIMMount - ok
16:38:52.0493 5232 WinDefend - ok
16:38:52.0499 5232 WinHttpAutoProxySvc - ok
16:38:52.0570 5232 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
16:38:52.0624 5232 Winmgmt - ok
16:38:52.0829 5232 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
16:38:52.0900 5232 WinRM - ok
16:38:53.0037 5232 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
16:38:53.0068 5232 WinUsb - ok
16:38:53.0173 5232 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
16:38:53.0220 5232 Wlansvc - ok
16:38:53.0322 5232 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:38:53.0342 5232 wlcrasvc - ok
16:38:53.0601 5232 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:38:53.0652 5232 wlidsvc - ok
16:38:53.0778 5232 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
16:38:53.0802 5232 WmiAcpi - ok
16:38:53.0874 5232 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
16:38:53.0904 5232 wmiApSrv - ok
16:38:53.0941 5232 WMPNetworkSvc - ok
16:38:53.0969 5232 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
16:38:53.0998 5232 WPCSvc - ok
16:38:54.0043 5232 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
16:38:54.0063 5232 WPDBusEnum - ok
16:38:54.0081 5232 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
16:38:54.0131 5232 ws2ifsl - ok
16:38:54.0147 5232 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
16:38:54.0165 5232 wscsvc - ok
16:38:54.0168 5232 WSearch - ok
16:38:54.0400 5232 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
16:38:54.0463 5232 wuauserv - ok
16:38:54.0612 5232 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
16:38:54.0694 5232 WudfPf - ok
16:38:54.0721 5232 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:38:54.0775 5232 WUDFRd - ok
16:38:54.0816 5232 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
16:38:54.0876 5232 wudfsvc - ok
16:38:54.0913 5232 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
16:38:54.0935 5232 WwanSvc - ok
16:38:55.0000 5232 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
16:38:55.0031 5232 yukonw7 - ok
16:38:55.0060 5232 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
16:38:55.0398 5232 \Device\Harddisk0\DR0 - ok
16:38:55.0404 5232 Boot (0x1200) (f896cab607ed1295ed2ef84b2dce4f9c) \Device\Harddisk0\DR0\Partition0
16:38:55.0409 5232 \Device\Harddisk0\DR0\Partition0 - ok
16:38:55.0428 5232 Boot (0x1200) (8a1bc2a60dff31f4bb5c3d0d33e49b76) \Device\Harddisk0\DR0\Partition1
16:38:55.0430 5232 \Device\Harddisk0\DR0\Partition1 - ok
16:38:55.0431 5232 ============================================================
16:38:55.0431 5232 Scan finished
16:38:55.0431 5232 ============================================================
16:38:55.0440 6740 Detected object count: 7
16:38:55.0440 6740 Actual detected object count: 7
16:39:08.0230 6740 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
16:39:08.0231 6740 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
16:39:08.0231 6740 igfx ( UnsignedFile.Multi.Generic ) - skipped by user
16:39:08.0231 6740 igfx ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:39:08.0234 6740 IntcDAud ( UnsignedFile.Multi.Generic ) - skipped by user
16:39:08.0234 6740 IntcDAud ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:39:08.0238 6740 Mobile Partner. RunOuc ( UnsignedFile.Multi.Generic ) - skipped by user
16:39:08.0238 6740 Mobile Partner. RunOuc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:39:08.0240 6740 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:39:08.0240 6740 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:39:08.0242 6740 VSNService ( UnsignedFile.Multi.Generic ) - skipped by user
16:39:08.0242 6740 VSNService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:39:08.0245 6740 VzCdbSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:39:08.0245 6740 VzCdbSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
20.07.2012, 16:17
| #8 |
| /// Malware-holic | 0_3u_l.exe *32 Virus? Trojaner? hi, lade den CCleaner standard: CCleaner Download - CCleaner 3.20.1750 falls der CCleaner bereits instaliert, überspringen. instalieren, öffnen, extras, liste der instalierten programme, als txt speichern. öffnen. hinter, jedes von dir benötigte programm, schreibe notwendig. hinter, jedes, von dir nicht benötigte, unnötig. hinter, dir unbekannte, unbekannt. liste posten.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
21.07.2012, 19:19
| #9 |
| | 0_3u_l.exe *32 Virus? Trojaner? öhm, blöde frage, sollte sich etwas geändert haben? weil mir sind keine veränderungen aufgefallen zum letzten mal, bin aber auch kein spezialist... Code:
ATTFilter 7-Zip 9.20 07.07.2012 Nötig AA3Deploy Army Game 24.01.2011 1.2.1.4 UnB Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 07.07.2012 10.0.42.34 UnB Adobe Flash Player 11 Plugin Adobe Systems Incorporated 07.07.2012 6,00MB 11.3.300.257 UnB Adobe Reader 9.5.1 - Deutsch Adobe Systems Incorporated 29.04.2012 118MB 9.5.1 UnB Akamai NetSession Interface Akamai Technologies, Inc 24.06.2012 UnB Akamai NetSession Interface Service 07.07.20 UnB Alps Pointing-device for VAIO ALPS ELECTRIC CO., LTD. 22.05.2010 UnB ArcSoft Magic-i Visual Effects 2 ArcSoft 07.07.2012 2.0.1.85 UnB ArcSoft WebCam Companion 3 ArcSoft 07.07.2012 3.0.21.278 UnB Ask Toolbar Ask.com 08.06.2012 3,38MB 1.14.1.0 UnN Ask Toolbar Updater Ask.com 08.06.2012 1.2.0.20064 UnN Assassin's Creed Brotherhood Ubisoft 28.09.2011 1.03 Nötig Assassin's Creed Revelations 1.02 Ubisoft 16.02.2012 1.02 Nötig ATI Catalyst Install Manager ATI Technologies, Inc. 22.05.2010 20,7MB 3.0.750.0 UnB Auto-Keyboard 9.0 Auto-Keyboard 09.06.2011 Nötig Avira Free Antivirus Avira 07.07.2012 125MB 12.0.0.1125 Nötig Bing Bar Microsoft Corporation 18.03.2011 24,4MB 7.0.609.0 Nötig CCleaner Piriform 22.06.2012 3.20 Nötig Divinity II - DKS Focus 09.12.2010 (#version} Nötig Einstellungen für VAIO-Inhaltsüberwachung Sony Corporation 22.05.2010 2.4.1.09180 UnB Evernote Evernote Corp. 22.05.2010 53,1MB 3.5.0.545 UnN FLV Player 2.0 (build 25) Martijn de Visser 07.07.2012 2.0 (build 25) Nötig Google Chrome Google Inc. 22.05.2010 3.0.195.21 UnN HP Deskjet 3050 J610 series - Grundlegende Software für das Gerät Hewlett-Packard Co. 25.12.2010 105MB 22.0.334.0 Nötig HP Deskjet 3050 J610 series Hilfe Hewlett Packard 25.12.2010 12,8MB 140.0.63.63 Nötig HP Photo Creations HP Photo Creations Powered by RocketLife 07.07.2012 14,6MB 1.0.0.3341 Nötig HP Update Hewlett-Packard 25.12.2010 2,96MB 5.002.005.003 Nötig ICQ Toolbar ICQ 07.07.2012 3.0.0 UnN ICQ7.4 ICQ 07.04.2011 7.4 UnB Intel(R) Control Center Intel Corporation 22.05.2010 1.2.1.1007 Intel(R) Management Engine Components Intel Corporation 22.05.2010 6.0.0.1179 Nötig Intel(R) Rapid Storage Technology Intel Corporation 22.05.2010 9.5.4.1001 Nötig Intel(R) Turbo Boost Technology Driver Intel Corporation 22.05.2010 01.00.01.1002 Nötig Java(TM) 6 Update 27 Oracle 06.10.2010 94,8MB 6.0.270 UnB Java(TM) 7 (64-bit) Oracle 26.08.2011 93,3MB 7.0.0 UnB Java(TM) 7 Update 5 Oracle 14.07.2012 99,3MB 7.0.50 UnB JavaFX 2.1.1 Oracle Corporation 14.07.2012 20,8MB 2.1.1 UnB Kingdoms of Amalur: Reckoning Electronic Arts 07.07.2012 1.0.0.0 Nötig League of Legends Riot Games 21.10.2011 1.02.0000 Nötig Logitech G35 Logitech 05.08.2011 5,17MB 1.1.178 Nötig Malwarebytes Anti-Malware Version 1.61.0.1400 Malwarebytes Corporation 07.07.2012 18,0MB 1.61.0.1400 Nötig Media Gallery Sony Corporation 22.05.2010 1.1.1.11200 UnB Microsoft .NET Framework 4 Client Profile Microsoft Corporation 24.11.2010 38,8MB 4.0.30319 UnB Microsoft IntelliPoint 7.1 Microsoft 28.08.2010 32,3MB 7.10.344.0 UnB Microsoft Office 2010 Microsoft Corporation 22.05.2010 6,31MB 14.0.4763.1000 UnB Microsoft Office Klick-und-Los 2010 Microsoft Corporation 07.07.2012 14.0.4763.1000 UnB Microsoft Office Starter 2010 - Deutsch Microsoft Corporation 07.07.2012 14.0.4763.1000 UnB Microsoft PowerPoint Viewer Microsoft Corporation 16.02.2012 196MB 14.0.6029.1000 UnB Microsoft Silverlight Microsoft Corporation 10.05.2012 180MB 4.1.10329.0 UnB Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 22.05.2010 1,72MB 3.1.0000 UnB Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Corporation 30.08.2010 258KB 8.0.50727.4053 UnB Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 30.08.2010 250KB 8.0.50727.4053 UnB Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 17.06.2011 300KB 8.0.56336 UnB Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 22.05.2010 708KB 8.0.61000 UnB Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 Microsoft Corporation 14.04.2011 580KB 8.0.51011 UnB Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 Microsoft Corporation 31.08.2010 212KB 9.0.30729.4148 UnB Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 20.10.2010 198KB 9.0.30729.4148 UnB Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 Microsoft Corporation 14.04.2011 790KB 9.0.30729.5570 UnB Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 14.04.2011 598KB 9.0.30729.5570 UnB Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 30.08.2010 2,52MB 9.0.21022 UnB Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 17.06.2011 788KB 9.0.30729.6161 UnB Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 19.10.2010 588KB 9.0.30729 UnB Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 17.06.2011 600KB 9.0.30729.6161 UnB Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 04.03.2012 13,8MB 10.0.40219 UnB Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 04.03.2012 15,0MB 10.0.40219 UnB Mobile Partner Huawei Technologies Co.,Ltd 07.07.2012 21.005.11.01.154 Nötig Mozilla Firefox (3.6.8) Mozilla 07.07.2012 3.6.8 (de) Nötig MSXML 4.0 SP2 (KB954430) Microsoft Corporation 28.08.2010 1,27MB 4.20.9870.0 UnB MSXML 4.0 SP2 (KB973688) Microsoft Corporation 28.08.2010 1,33MB 4.20.9876.0 UnB Norton Online Backup Symantec 22.05.2010 2,04MB 1.2.20.0 UnB Nostale(DE) Gameforge 4D GmbH 22.09.2010 1,86GB UnN NVIDIA PhysX NVIDIA Corporation 09.12.2010 119MB 9.09.0428 UnB OpenOffice.org 3.2 OpenOffice.org 30.08.2010 380MB 3.2.9502 UnN Origin Electronic Arts, Inc. 07.07.2012 8.5.0.4550 Nötig Pando Media Booster Pando Networks Inc. 07.07.2012 5,46MB 2.3.6.0 UnB Patch 1.20 für Pauli Rezept-Katalog 3. Auflage Pauli Fachbuchverlag AG 09.11.2011 15,1MB 10.06.2007 Nötig Pauli Rezept-Katalog 3. Auflage Pauli Fachbuchverlag AG 09.11.2011 35,5MB 5.05.2005 Nötig PMB Sony Corporation 22.05.2010 257MB 5.0.00.10260 UnB PMB VAIO Edition Guide Sony Corporation 22.05.2010 197MB 1.0.00.09250 UnB PMB VAIO Edition plug-in (Click to Disc) Sony Corporation 28.08.2010 188MB 3.2.00.16060 UnB PMB VAIO Edition plug-in (VAIO Image Optimizer) Sony Corporation 22.05.2010 39,4MB 1.0.00.10150 UnB PMB VAIO Edition plug-in (VAIO Movie Story) Sony Corporation 29.08.2010 69,4MB 2.2.00.15250 UnB PunkBuster Services Even Balance, Inc. 07.07.2012 0.990 UnB R.O.H.A.N. Vendetta YNK-GAMES Entertainment 07.07.2012 1.00.0000 UnN Realtek HDMI Audio Driver for ATI Realtek Semiconductor Corp. 07.07.2012 6.0.1.5992 UnB Realtek High Definition Audio Driver Realtek Semiconductor Corp. 22.05.2010 6.0.1.5992 UnB Roxio Easy Media Creator 10 LJ Roxio 07.07.2012 125MB 10.3 UnB Setting Utility Series Sony Corporation 22.05.2010 5.1.0.11200 UnB Sid Meier's Civilization 4 Firaxis Games 30.09.2010 1.00.0000 UnB Skype™ 5.8 Skype Technologies S.A. 29.04.2012 19,0MB 5.8.158 Nötig Smart Technology Programming Software 7.0.2.7 Mad Catz 02.08.2011 66,5MB 7.0.2.7 UnB Sony Home Network Library Sony Corporation 22.05.2010 2.0.1.10160 UnB Steam Valve Corporation 18.01.2012 35,4MB 1.0.0.0 Nötig Stronghold 2 Deluxe Firefly Studios 27.11.2010 1.40.100 Nötig Studie zur Verbesserung von HP Deskjet 3050 J610 series Produkten Hewlett-Packard Co. 25.12.2010 6,90MB 22.0.334.0 UnB TeamSpeak 3 Client TeamSpeak Systems GmbH 19.11.2010 Nötig The Elder Scrolls V: Skyrim Bethesda Game Studios 07.07.2012 Nötig Ubisoft Game Launcher UBISOFT 28.09.2011 1.0.0.0 Nötig Unity Web Player Unity Technologies ApS 02.11.2011 12,0MB UnB VAIO Care Sony Corporation 02.12.2011 6.4.2.11150 UnB VAIO Content Metadata Intelligent Analyzing Manager Sony Corporation 22.05.2010 3.6.0.09250 UnB VAIO Content Metadata Intelligent Network Service Manager Sony Corporation 22.05.2010 3.6.0.09080 UnB VAIO Content Metadata Manager Settings Sony Corporation 22.05.2010 3.6.0.09240 UnB VAIO Content Metadata XML Interface Library Sony Corporation 22.05.2010 3.6.0.09080 UnB VAIO Control Center Sony Corporation 22.05.2010 4.1.0.10160 UnB VAIO Data Restore Tool Sony Corporation 22.05.2010 1.2.0.09150 UnB VAIO DVD Menu Data Sony Corporation 22.05.2010 2.1.00.15050 UnB VAIO Energie Verwaltung Sony Corporation 22.05.2010 5.0.0.11300 UnB VAIO Entertainment Platform Sony Corporation 22.05.2010 3.6.0.09150 UnB VAIO Event Service Sony Corporation 22.05.2010 5.1.0.12010 UnB VAIO Gate Sony Corporation 22.05.2010 1.2.0.09240 UnB VAIO Gate Default Sony Corporation 22.05.2010 1.0.0.10290 UnB VAIO Marketing Tools Sony Corporation 07.07.2012 UnB VAIO Media plus Sony Corporation 22.05.2010 2.0.1.10160 UnB VAIO Media plus Opening Movie Sony Corporation 22.05.2010 1.2.0.09100 UnB VAIO Movie Story Template Data Sony Corporation 22.05.2010 438MB 2.2.00.15250 UnB VAIO Original Funktion Einstellungen Sony Corporation 22.05.2010 2.0.0.07010 UnB VAIO Personalization Manager Sony Corporation 22.05.2010 2.0.0.06220 UnB VAIO Premium Partners Sony Europe 07.07.2012 1.0 UnB VAIO Quick Web Access Sony Corporation 22.05.2010 266MB 1.2.2.3 UnB VAIO screensaver Sony Europe 07.07.2012 1.0.0.0 UnB VAIO Smart Network Sony Corporation 22.05.2010 3.1.0.11250 UnB VAIO Update Sony Corporation 10.04.2012 5.6.1.02150 UnB VAIO Wallpaper Contents Sony Corporation 22.05.2010 2.0.0.06010 UnB VAIO-Support für Übertragungen Sony Corporation 28.08.2010 1.1.2.06030 UnB WIDCOMM Bluetooth Software Broadcom Corporation 19.05.2010 144MB 6.2.1.500 UnB Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405) Broadcom 28.08.2010 09/09/2009 6.2.0.9405 UnB Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) Broadcom 28.08.2010 07/28/2009 6.2.0.9800 UnB Windows Live Essentials Microsoft Corporation 09.10.2010 15.4.3502.0922 UnB Windows Live Mesh ActiveX control for remote connections Microsoft Corporation 09.10.2010 5,57MB 15.4.5722.2 UnB Windows Live Sync Microsoft Corporation 22.05.2010 2,79MB 14.0.8089.726 UnB WinRAR 07.07.2012 Nötig |
|
| Themen zu 0_3u_l.exe *32 Virus? Trojaner? |
| akamai, antivir, autorun, avira, bho, bingbar, blockiert, canon, error, exploit.drop.gs, firefox, flash player, heuristiks/extra, heuristiks/shuriken, home, install.exe, microsoft office starter 2010, mozilla, pando media booster, plug-in, prozess, pup.bundleoffers.iiq, realtek, registry, scan, searchscopes, security, server, software, svchost.exe, symantec, taskmanager, teamspeak, trojaner, trojaner?, virus |
Linear-Darstellung
