| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Adobe Flash Player funktioniert nicht mehrWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
14.09.2012, 19:54
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Adobe Flash Player funktioniert nicht mehr Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!) Code:
ATTFilter :OTL
FF - user.js - File not found
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1432040542-156192184-1118736734-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-1432040542-156192184-1118736734-1000\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-1432040542-156192184-1118736734-1000\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.01.26 10:41:23 | 000,000,000 | R--D | M] - D:\AutoRun -- [ UDF ]
O32 - AutoRun File - [2007.01.26 10:36:30 | 000,700,416 | R--- | M] (Electronic Arts Inc.) - D:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2007.01.26 10:40:58 | 000,000,149 | R--- | M] () - D:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2007.01.26 09:06:20 | 000,651,264 | R--- | M] (Electronic Arts Inc.) - D:\AutoRunGUI.dll -- [ UDF ]
O33 - MountPoints2\{42f4b37b-e074-11e0-b960-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{42f4b37b-e074-11e0-b960-806e6f6e6963}\Shell\AutoRun\command - "" = D:\0data\cbs.exe
@Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:CDFF58FE
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:E3C56885
:Files
D:\0data
C:\Program Files (x86)\BabylonToolbar
C:\Users\Melanie\AppData\Local\{*
C:\ProgramData\FullRemove.exe
C:\Users\Melanie\AppData\Roaming\ICQ Search
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[resethosts]
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet. Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt. Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
14.09.2012, 20:25
| #17 |
 | Adobe Flash Player funktioniert nicht mehr Ich habe das jetzt gemacht wie du mir das gesagt hast jetzt als er sich wieder hochgefahren hat,zeigt er mir das an:
__________________Code:
ATTFilter All processes killed
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-1432040542-156192184-1118736734-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
HKEY_USERS\S-1-5-21-1432040542-156192184-1118736734-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1432040542-156192184-1118736734-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6552C7DD-90A4-4387-B795-F8F96747DE19}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\ deleted successfully.
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll moved successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
File not found.
File move failed. D:\AutoRun.exe scheduled to be moved on reboot.
File move failed. D:\autorun.inf scheduled to be moved on reboot.
File move failed. D:\AutoRunGUI.dll scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{42f4b37b-e074-11e0-b960-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42f4b37b-e074-11e0-b960-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{42f4b37b-e074-11e0-b960-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42f4b37b-e074-11e0-b960-806e6f6e6963}\ not found.
File D:\0data\cbs.exe not found.
ADS C:\ProgramData\Temp:CDFF58FE deleted successfully.
ADS C:\ProgramData\Temp:E3C56885 deleted successfully.
========== FILES ==========
File\Folder D:\0data not found.
File\Folder C:\Program Files (x86)\BabylonToolbar not found.
C:\Users\Melanie\AppData\Local\{0030EFCC-50B8-4063-9E55-B02640CBDC87} folder moved successfully.
C:\Users\Melanie\AppData\Local\{00FC9AE7-F41D-4049-B8FD-9A94FF4D219C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{01B754CC-C33F-4855-BEE2-EB56D3384F36} folder moved successfully.
C:\Users\Melanie\AppData\Local\{03C8E4A0-15DF-4760-89C2-16E971E09857} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0486571B-C2CF-4CA3-BDEF-4B0DB402FAD6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{04CC86D8-603E-47A7-BC33-2246A403B88C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{04E801B0-28C3-4FF2-B9A7-BBEB244DF09D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{05D4F607-6968-4E03-A8C9-E4A053950968} folder moved successfully.
C:\Users\Melanie\AppData\Local\{05E786F1-0344-4766-8E3F-954DDF8A2E7C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{067122E4-C3AD-4C93-AE48-8FA82E71CA1A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{06E0500A-6E0C-40ED-A7C0-96E29C1D9BA8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0828B8F3-F7AB-498E-A4F5-DBB0DC59DD38} folder moved successfully.
C:\Users\Melanie\AppData\Local\{082DBCE7-2E3E-4BE6-821E-E1716687559F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{08E9CFB6-8AFA-48A8-A095-B00E4FA0D3A9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{08FC3A63-CF6D-460D-9339-60BD2AB685B8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{09344D57-C7CC-4E0A-943B-551D683863A2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{099BA482-84BF-43CD-B5BF-1268538376B3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{09FDA880-C0B9-4529-A384-ADF5D852DC89} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0A9BDBF8-4DDE-47D2-BB0B-CB10626EDFA3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0AF0C5AD-FF05-4123-AB66-33F6F2EAEC80} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0B06D8C8-4352-46B3-9D40-DFF781939EE1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0B63828A-9034-4EAA-81F5-09C7C2B2F406} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0C8B831E-A294-495C-B434-A65C995CD8BB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0C979E78-B458-4822-86B2-AF6CDF7C1EBF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0C99E989-906B-43EB-A70C-FFFC9C616789} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0CC8F33C-8784-44B0-A0EA-2609A73E4D66} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0D7B2D4C-9C6F-4B56-86CD-B470BC1DA59C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0DADA1FB-AE78-4AD0-94C7-E67F35E6179B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0DEE95C0-A8B4-43A7-8838-B169502F4F0D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0E22858B-82F8-4E8B-BB19-854A4DB2F4F6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0E3A3808-BC60-4B94-9322-7FCC1AAFC088} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0EAFAFDB-E756-41FA-BF32-CFCD7B04FC05} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0F3168F3-DDDD-47CD-BBDE-C4B291E49F34} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0FADC998-BB34-4FB2-8C8A-65C4B6FE4D9A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{0FBF43D6-CE4C-4E0D-9D99-3EB2A733DDDB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1010ACF7-4A38-4FEB-A4A8-4C764F77082F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{10261138-3621-4922-9A28-8F2A70B2E949} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1042356A-7B83-4D4B-AC81-4CA858D1A5A6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{11170934-2C25-449A-9A20-372AF877CAD1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{124658BF-DCBC-446C-9B2F-80DD0A8E9DA6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{12560B52-561F-4928-A1A5-22B66DBA3443} folder moved successfully.
C:\Users\Melanie\AppData\Local\{12DAAF28-2020-4315-9F72-F366733CB25A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{12EBC12C-9663-473A-AE0C-7D4ADD5BD5A4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{147DE701-D6A2-42C1-8E99-A708BCA6F973} folder moved successfully.
C:\Users\Melanie\AppData\Local\{15274827-FCE7-475A-A02E-F2361633EE89} folder moved successfully.
C:\Users\Melanie\AppData\Local\{16141A07-00B2-43CE-8818-24D7649335E5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{169D05CD-9B51-42E3-89AF-A32B8001A18D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{16B80DA2-D002-49A6-8FFE-8367024AA91B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{16FBEBE0-89A6-460B-99E2-B7A6BC1BB95D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{17996057-DB17-4811-9B86-A5AA992A6C9C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{17A1911A-C905-447E-B1E4-79886D072847} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1893EB09-D94C-4D8B-9B35-BE0E4F805292} folder moved successfully.
C:\Users\Melanie\AppData\Local\{18D3BA5E-1003-4311-836B-2F84714624AF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{19788900-B59C-4FA8-AED5-6074EDB016D0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{197A695C-6502-40FB-A43B-9CFE5CB405FD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1A2871D2-B186-4D1C-8D73-ED0AD313DB5D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1B9EE54C-D2C8-4F5A-A3F1-071CD6C420D4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1C1055D9-E04E-4B7F-84AC-A98BF36D0DF9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1C1B4F69-69D1-48C2-A978-4197E620A357} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1C6C4EE0-9E08-49CF-89B7-6DFA585211D8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1C718F1F-6E93-449E-873D-8BE5B1A05A87} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1C7921AB-41EB-4F34-9292-2B8F8788F4F0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1D0E2B24-0B1D-4B5A-AEB2-2945045EFEE7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1D197DEA-8614-4984-9D29-1A0E5669812B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1D41274B-56AB-430F-B1AC-02ECAC2CC9BD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1F8202E5-914B-4CC5-A631-48ECE066EF16} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1FB34C0F-A474-425F-B61A-F2D4AAE064DF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{1FCAD53B-9D77-468B-9146-43F3EE8BF206} folder moved successfully.
C:\Users\Melanie\AppData\Local\{20021867-7FC1-4FF6-82DC-B0FF25873AD8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2015DD73-7749-4AB2-BB7E-17F2DD3D42F2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{20EF0939-B667-4333-8E0B-DA8A3762608E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{20EF3604-3C3D-4B95-869F-C83E17B54A5F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{21BEB49C-6D84-418A-B05C-D2436E7AC910} folder moved successfully.
C:\Users\Melanie\AppData\Local\{21C07D33-D2C0-4796-A8BF-541248B880C1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{22649002-A8A2-40D3-A166-676067EEA2C6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2295CAC7-E6F4-4A91-825B-2B143FBFCDB6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{239E6726-612E-4907-A09E-0F2515E60CFB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{24AD1D87-255C-41F8-B524-E77A77287125} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2518489A-6F7B-4D46-B453-89C20B599217} folder moved successfully.
C:\Users\Melanie\AppData\Local\{254714FC-30E6-462D-AAEA-B1569FD2DB31} folder moved successfully.
C:\Users\Melanie\AppData\Local\{263A7BCC-A8A1-4E7D-8E73-1128C050B4AB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{26FCD428-DE64-4C8F-9466-DAD4274D2C5C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{27294222-EE4D-4AD3-9443-D3C52AA3A054} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2755AECD-6A09-4C89-B684-4B82B0C8ED35} folder moved successfully.
C:\Users\Melanie\AppData\Local\{288CF970-E55E-4711-B4C3-8A37406FEB86} folder moved successfully.
C:\Users\Melanie\AppData\Local\{28AF6EF1-20E8-462F-BC8A-401CB42703C0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{292B0FA4-6F77-4B73-BE71-3B0754F372AF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2986CDE0-EFF9-44E9-87EB-13B3EDC85C15} folder moved successfully.
C:\Users\Melanie\AppData\Local\{29AA516B-56BC-4474-8DC6-07710D6313F2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2A978B17-85A1-48F5-B7F8-5498B5BEDADC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2AED8D60-55D8-40AB-A869-51AA8ED04BD5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2B612C59-63AC-49DB-BA88-AEB504A42109} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2B99460F-2511-4D47-A528-39C641128902} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2CE596D9-A306-48B9-8ED9-7A771EDDE54C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2D0071F2-4180-4ECC-89E8-14A0610217C8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2D450A3D-DD96-470A-BFC3-CEDA6F8550BC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2DF7036F-B5A5-4D26-8A89-7DACE19E867A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2E205CD7-8761-4657-8D43-958121C546FF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2EA22856-2E8D-4B2E-98DD-CFBD0B2C3CA3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2F0FC11E-3860-4818-B6D4-660509217B85} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2F407F71-CE69-4EBF-BE7A-32D4D8CE57D0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{2FDB22D4-8878-40A8-950A-046F4B975643} folder moved successfully.
C:\Users\Melanie\AppData\Local\{311BC5D7-3791-4D45-B32C-5122A7530BE9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{31D1778F-8D0B-4AF3-8D59-580F580F1887} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3229160E-20EB-4D0C-AD85-58D392312249} folder moved successfully.
C:\Users\Melanie\AppData\Local\{331BAD84-522F-476B-BC06-DCA0606C7A22} folder moved successfully.
C:\Users\Melanie\AppData\Local\{342C098A-90CB-4543-AB4B-4F26FE4FCC01} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3545252F-AB6F-4C52-8EDA-29D8610CFD5F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{35AFB0E7-F5EC-4C3F-923A-88BCC3BD59C8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{35DF95D7-745E-493C-B363-1FEEF9CB75E2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{36B38125-E729-4A89-B5F4-EDEC840ED984} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3715F1B0-BA15-4072-AF59-BE1EE9727D91} folder moved successfully.
C:\Users\Melanie\AppData\Local\{37AE9E9F-610C-4ED0-B2E8-CDA638E8CC6D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{388CB3B9-0001-4305-B5A5-04E3D6891411} folder moved successfully.
C:\Users\Melanie\AppData\Local\{394AA256-EE4C-4E21-A5C3-929619965B21} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3959C510-6CC7-4304-9159-D3230E1322A7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{399014CE-801E-42C1-9114-8439BA4A216E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3AE55016-1380-4A27-AD95-91CBCBFEE96F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3C1D5576-4B92-4046-8B7E-8C2A73453BBD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3CD0F3F8-3D39-4B4B-BCEE-F04234123FA9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3CED44EE-89BE-4082-AF29-DFA009F45FCD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3D502E34-45C0-49E5-9941-F6F03A27EB20} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3DB7CD1F-8E97-44D9-857D-0F2EFC5FC00D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3E5E6523-6244-40C8-B7F7-90B8F31219C4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{3FB0DAC3-DA67-4EC8-A26E-6590AA438B73} folder moved successfully.
C:\Users\Melanie\AppData\Local\{40F1837D-1E6C-42DD-8ADC-242E530940CB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4103EDD8-749D-4A74-AF12-D85AED892C6C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{422EE593-25E9-4EA3-A836-BF280D57E9CB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{42BBAFF8-91C0-4A90-B5CA-3491640FFB70} folder moved successfully.
C:\Users\Melanie\AppData\Local\{42C98FA8-EC31-4B66-8F1B-B70C19C4B13B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{42D0C3DA-BDE7-4062-94C4-CA435783C1AC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{43164CBB-0D89-4A43-93F3-D735CC0D7242} folder moved successfully.
C:\Users\Melanie\AppData\Local\{435F2934-7084-4B4F-924E-33AAF9E89419} folder moved successfully.
C:\Users\Melanie\AppData\Local\{43FC01E4-0A2E-4350-9F9B-31BF69E37B4A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4473F09A-510B-442D-8E6F-735E0425EA43} folder moved successfully.
C:\Users\Melanie\AppData\Local\{448A546F-D24B-41A2-A139-70E32CCC6853} folder moved successfully.
C:\Users\Melanie\AppData\Local\{44C54C1F-A3FC-47C5-B315-7857A3FDED7F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4597BBA2-B4E7-49BE-AC97-8B128B5DBA0A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{45B1B091-4629-4AC0-81CC-9201A03309A4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{46062B32-ECF5-4585-9A63-9BD7EF69598C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{46110A78-4791-496B-B0CC-5B8F913EBA6E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{462C8F94-1323-4815-9BA2-CE08630A2F58} folder moved successfully.
C:\Users\Melanie\AppData\Local\{46E8015E-08F0-41F8-8D52-7844ADF787ED} folder moved successfully.
C:\Users\Melanie\AppData\Local\{47696B61-69B3-415D-95BB-B4DD951D6BD1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{477BF34A-6AAB-4250-B0FB-B98A6FF3CEBB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{48662074-BAC1-4A07-ACB7-1F7E9D8FB08F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4A2E9405-B98D-41C4-B695-C6EA3CF6365C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4A591910-AA58-4AB0-BB44-13AC7CEFFF4F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4C8188FE-2350-4457-AB34-88E5DCE4C3A8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4C87B87F-9B93-4A0A-8DD4-7F38F1219819} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4CFCCE4E-53B6-4D85-96D1-3BC85AA79D0F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4D3AE202-37A7-4191-AE6E-CC31AA32567C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4D666F67-D2AA-43AD-B854-50AE3452CFE6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4DDA20C4-0EB9-4149-AD8B-E32E3F3E8A79} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4DE65079-FD04-4903-A392-4E20F6A3B5E8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4F09DFC8-2BAC-49A3-A192-EB10FAE159C9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4F2D1396-CED6-4CA5-AB20-AD866684F551} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4FCFE33B-0A7D-41E4-BC1D-D37A17BE7974} folder moved successfully.
C:\Users\Melanie\AppData\Local\{4FF92188-1824-49DB-9F12-8683D5E258CB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{505174B3-3097-4D17-8E13-39A5A25E7413} folder moved successfully.
C:\Users\Melanie\AppData\Local\{519F27C3-8811-4FF1-AF67-D3185DC1B647} folder moved successfully.
C:\Users\Melanie\AppData\Local\{51FA061E-2549-44BC-8AC4-37FAA9BD3FC9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{520D8755-E930-4A0A-B6C0-4597F030DFA9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5406041B-4B11-473C-91B9-D9754EB659EC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{54AE382B-90DE-4365-8F36-8C32AF78AB4D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{54B3E14C-268A-4BE1-A7F0-C1F1D866CDD6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{54CF6C54-2609-4C86-AFC8-982263B213F8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{55769E01-EA73-48C9-8995-BAFA0315AC4E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{55FA71C7-6C15-45F2-B372-9DE70348B951} folder moved successfully.
C:\Users\Melanie\AppData\Local\{56122E37-2F24-4AC7-8493-E0F36CEE319A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{563C9814-851D-427D-B935-F696A567E43D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{574D5D59-A599-44D0-BDD9-65B02173F55A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5765863B-6D7A-4653-9145-A1109354C646} folder moved successfully.
C:\Users\Melanie\AppData\Local\{576CCC68-06AA-4439-A54A-0BFD39ABEBD5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{577D96A4-C32C-4720-B085-68D70D9C959D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5793BA23-6BA2-4638-93D1-0BFB98C9D2CC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{58EAFD40-9396-481A-890B-1907CF06ACCE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{590AC50D-AF09-4D64-8D31-070A00EBBC87} folder moved successfully.
C:\Users\Melanie\AppData\Local\{59825608-D0B1-40AF-8E2B-F2A865037752} folder moved successfully.
C:\Users\Melanie\AppData\Local\{598B5BF9-11CF-4B55-9371-1283D3BA5F3D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{59F751F6-E68A-4515-B75D-F54B1838CE3B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5AA93088-98F5-40DB-B253-E3A1F30668AC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5B5E2A63-1058-4CB3-B8E7-57DC799AD875} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5BAF971A-D184-4D16-9F94-22BCDE3ED2DE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5C3E5A0A-00AC-4ACF-B319-85E30B400254} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5D8C6634-9852-4599-9E69-A6364FA0D20B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5DCB6AED-E9ED-48A7-91C7-630D8C0D85A7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5E884E18-9423-4F59-BD50-CE4ACF749668} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5F0CCA6F-E72C-4760-A453-A132B6257121} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5F1F347B-9F16-40FC-827E-453EBB255B18} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5FBA47AE-F382-46D3-80EA-77A2451691D7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{5FD6F127-082B-4181-973B-E3EB1DD47F97} folder moved successfully.
C:\Users\Melanie\AppData\Local\{605DF49D-B99A-474C-B0C9-1AD9E28BF279} folder moved successfully.
C:\Users\Melanie\AppData\Local\{61B4189D-DE38-4E48-8921-9C4CF87E86D5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{61C584D9-0443-4201-8111-AC7CCEF1215B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{61F88197-3B99-4D53-B3BC-F8D61EF3C045} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6210CC4A-150C-4881-B707-14BE4EE7A2A6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{62A5E531-41EC-4E88-90AA-766F6E3500A0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{63ADCF8B-CC90-4E34-810F-3A0D23D84035} folder moved successfully.
C:\Users\Melanie\AppData\Local\{63BC9441-F64E-4A11-9F58-C491224AD194} folder moved successfully.
C:\Users\Melanie\AppData\Local\{647F7569-37F1-418E-A636-F0FDFFE89805} folder moved successfully.
C:\Users\Melanie\AppData\Local\{64D90090-E41F-4A7C-94FB-AD146C27C8E0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{650E0D1F-4102-49E0-9F72-741E76DCBF31} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6587B1F9-14C1-4DFF-A6B2-D6B39A063533} folder moved successfully.
C:\Users\Melanie\AppData\Local\{66C8F7CE-C918-4E85-A588-3C9835FC97F4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6752E9BD-8D05-4461-834D-B79A72F58855} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6765AB66-7DA9-41A0-8BD0-E5709E511080} folder moved successfully.
C:\Users\Melanie\AppData\Local\{689FF632-DBB8-4DAD-B534-650D71FFB4B9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{68B09E44-E207-40B3-AD27-16280B6C2F6A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{69BE68EE-DE52-4E1F-89D5-4E42D5FB0C85} folder moved successfully.
C:\Users\Melanie\AppData\Local\{69FDA125-01BC-44E5-98AF-39C41CDCE687} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6A2F4217-CEC0-4D9A-A889-6EFF1DE02DA8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6AF4EBF0-5C0A-4EFD-A91E-0DEEE985A487} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6B19279F-D289-486C-B538-EBB955F67C9C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6BE2C0D7-BD1B-470F-B70E-82138FECFA88} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6C4F06C4-73A7-4134-919E-4EB14C9E9D15} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6CB94A0C-DF95-43F9-B196-9EF0A18B7CB1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6D2DB84E-F5E0-44A6-8129-F3D37D014686} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6D37D969-B338-4A47-A0DE-939A75AA64B6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6DFC61BF-A940-4857-99D2-8B28A0AF7103} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6EB59363-9774-4C38-A718-7168BB034D9E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6F4DA4DB-0D1D-495F-A134-9B0CD63CD34D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6F62078C-7B2A-46DC-AFFD-9F424210C59D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{6FAE1316-58D2-4F78-B4ED-38E4F372282C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{70049997-D12D-4497-82ED-C79A63DC2765} folder moved successfully.
C:\Users\Melanie\AppData\Local\{708CCAEE-DCB1-4B19-B782-74F5D2878B21} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7131BA2E-314D-4C7B-99B3-0B630E0FAD79} folder moved successfully.
C:\Users\Melanie\AppData\Local\{71BCA5A1-4C7D-415F-880B-AAC68F0CD421} folder moved successfully.
C:\Users\Melanie\AppData\Local\{71DFF0A3-1990-49F0-99D5-859763067E6C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{72644E8F-7FB6-4D60-8913-E61BB836874A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{72DF68F2-5E15-4427-959B-D0A3532AC865} folder moved successfully.
C:\Users\Melanie\AppData\Local\{72E38378-517F-4041-A2FC-FE4665305B4E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{73818952-D2E9-44F3-909E-98F751943AA6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{74433BDD-1D60-44F4-A7FF-23F376E80228} folder moved successfully.
C:\Users\Melanie\AppData\Local\{747FADDE-1395-4B16-83FF-355B1EC3F397} folder moved successfully.
C:\Users\Melanie\AppData\Local\{74802F3C-3208-42CD-87F6-C8F3C77BE6BE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{750C8C6C-4EBF-4662-B3CE-A01B6644C2B9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{75FBC189-A5FD-4890-B5E2-25F6571E763E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{77903B0E-718E-4DD0-B8E7-9B163612237F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7819F607-AB2A-4649-8D13-953A8595B40A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{78874EDC-22B6-42B4-B3D6-C767A0FEA6B4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7888132F-60C4-4E61-BD7A-9C50BD7ECF00} folder moved successfully.
C:\Users\Melanie\AppData\Local\{78BB26BA-4C92-456F-B754-92DF4694E80F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{79225090-CC9B-405B-B1C1-871443FDC220} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7930C0D2-E8B3-4427-84E9-C897F7BA4CA8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7AD8EFE5-5F93-496E-9739-EF0723BE8C64} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7B123CB6-8333-4E79-99C7-EC6851850837} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7C054CA1-9E53-44D9-942C-894C33D1CF28} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7C162E15-738C-4283-86FD-19239C2F84CE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7C51DD84-DF27-4A99-97B6-B633627F15EB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7D0DE264-75FB-4FDE-ABCB-9BDB8657CDD5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7D780509-8A5A-4870-AE4A-3CEED8717848} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7DA6F287-A34B-426C-923D-EC1B19232647} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7DB699D1-CE7E-4669-8D59-F58DD5C59526} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7DDAC93D-55F7-4BF3-9839-F1CD5DCE9F03} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7EE20FB5-DA0E-4487-BCB5-8ED73191D4B9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7EFF9C7C-125F-4ABA-8A2B-A612A7A4FE82} folder moved successfully.
C:\Users\Melanie\AppData\Local\{7F540A40-6563-4EF4-803F-9977E85B749C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{801529AE-68E5-499D-8C01-3017F85E7711} folder moved successfully.
C:\Users\Melanie\AppData\Local\{808F63FD-D40B-48D3-9572-EF2915BD0F69} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8236840D-3761-4EB6-8964-7512EA15A4A3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8269F409-A885-41AE-9B92-EA4FC6F61A26} folder moved successfully.
C:\Users\Melanie\AppData\Local\{83047CCC-9706-4BCA-88D5-BAA615FB429A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{835804F3-6050-47E0-9E1B-7AB380630844} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8398082F-3208-45A4-9112-BFAE25DD4B78} folder moved successfully.
C:\Users\Melanie\AppData\Local\{83B10B6B-263D-4099-BBDE-9F951BD1FD76} folder moved successfully.
C:\Users\Melanie\AppData\Local\{841EB7F0-2623-4935-A1C0-6CC1BE4534F8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{847A79D1-02DD-42AE-8DA8-C2F323FB668D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{84F00F99-2AC4-4DDC-8EBE-80DE5191F409} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8594FBE1-1C3C-4C5A-A8A0-24F350054E8D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{85EC9321-A9FD-4C3B-8262-14CE0B15CD67} folder moved successfully.
C:\Users\Melanie\AppData\Local\{86426521-B3C4-4E5D-AEC7-42BAF4E05EA4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{86A5E74B-2D83-4AD2-9CA9-AF13B295886F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{86BF36BF-B21A-45C4-86FB-E33350F7D0F4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{88290AEE-1BD5-440E-A05F-CA9D0231EB40} folder moved successfully.
C:\Users\Melanie\AppData\Local\{88F24C6C-FFD2-422B-B8F1-6B959ACF7F43} folder moved successfully.
C:\Users\Melanie\AppData\Local\{88F443C8-BCEC-46A8-8058-95FA93F7A637} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8995A7EC-3DDA-470E-BC96-1E0D6E64F4F0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8A0D0548-803F-4B7A-A777-456CD506A51E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8A956C46-601E-418A-8EEA-E09D477B9193} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8AAF1B44-7A8A-4E13-B2A1-8C57C060F419} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8AE06928-B3E8-43B9-9327-E98E2FCA4AF8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8BC3F8D9-153A-41AE-BAAB-4D7CB67D3BC2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8C6111CE-4E5D-4DAD-A7F3-DD94BB483D91} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8DD4BCCE-1DA6-476B-8F14-5F5D6348B7F5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8E5534E2-4C26-44BC-93B6-9B7FDD39A61D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8E5B2F68-5938-4187-A34F-92DDD5AE9382} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8E80F03E-49A6-43C9-8F04-E01E8B7CB91D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8EECE079-2780-480F-A3AE-C9CDCF12D2D4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{8F322C86-4370-41ED-943B-627DFCF0E358} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9174F11E-1851-4B96-AF7B-771A62CCDAD8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{919E2E6E-CD89-41E8-AABF-A36062F708B2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{922D063F-5C74-4134-861D-27DC1E63CF08} folder moved successfully.
C:\Users\Melanie\AppData\Local\{92B68EBE-3C57-40CC-83B7-F0357D400736} folder moved successfully.
C:\Users\Melanie\AppData\Local\{92F5264D-2AD2-42BE-BE53-2A4581268230} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9372B481-0B30-4B5F-9651-26CAB4379D55} folder moved successfully.
C:\Users\Melanie\AppData\Local\{93CB1384-BA01-4571-BA2D-0695C6AF22A4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{93FD2E79-1C30-4D62-8026-D8BA22BAB93A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{94957495-5C25-49C0-8CCB-2B4498DD5C1C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{94DE7817-DED2-4AD7-A49A-D3AC6B78880F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9520E2BB-17B1-44FB-8FB9-8B37C40E7BEB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{952BD867-AFC0-43ED-AF37-7F964281A374} folder moved successfully.
C:\Users\Melanie\AppData\Local\{95B28C38-4E8C-4496-BEF5-BC6F8E84F331} folder moved successfully.
C:\Users\Melanie\AppData\Local\{95C93DD6-2480-4C2D-849B-B7E08876C1BD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{96731445-37AC-4804-AACC-B8EF3BC9D2C8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{96E134FB-C964-4965-B27E-70F7B0C4D74E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{97C5E8CA-9FD9-4202-89DF-1A1D29FBFBB3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{97E648E6-9C18-4C23-818B-CCD893F2A77E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{98751E83-F77E-47FB-BBC4-944B05850A82} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9878CAB8-A03D-48D1-85CA-F034649B7621} folder moved successfully.
C:\Users\Melanie\AppData\Local\{997A58D5-3DF9-4C38-9588-862456E65B64} folder moved successfully.
C:\Users\Melanie\AppData\Local\{99E020FC-DD81-4661-9D33-540AD10AB695} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9A5D33C6-8220-4B71-81D2-FA0275F923FB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9B54C466-AA99-4683-A439-A5B36A87F32F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9C3B571C-CE58-4C41-8EF4-2AAD608426DD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9C80081B-B783-4A01-8282-EB90F1687A6E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9C8823F9-1582-45AD-B102-8534BE0B9246} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9CC0914C-6ABE-4090-A627-A0A60400FE62} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9D2EB4C2-D572-4C28-8585-3638EA87CE3F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9D8C7686-7254-4067-B4B6-1A7D77DCB214} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9DFC6571-1821-4FB3-8F3D-7E2CF2DF4CBE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9E40DA5C-BF61-4960-B29D-7F105A0673E9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9E5C92C1-8C66-4D7B-A83E-68A5014CDB15} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9F50794B-7E72-4995-B0CE-155FFCF847CA} folder moved successfully.
C:\Users\Melanie\AppData\Local\{9F8DA80E-B2F0-4684-9023-41769343E5E7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A0BAB5BF-B1A3-450B-A007-0AA14A3538A8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A0EB1482-37F1-47CB-B228-5C92ADAF276C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A14B4F13-5506-46DA-BD57-9B958FFB9C15} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A17C3373-6BC1-4AF9-B445-615DEDE91E8A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A22DFF78-4F9A-4F83-8F84-C63B160CB31F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A28EFE49-7A6E-4EDF-B448-058DBF81DDD2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A2DB85AA-9190-4B3B-AFE9-84B2764E09EF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A39E35D8-51C5-479B-94F3-44556842FCC0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A3BC2949-94B9-4C1B-876C-640C458723F7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A45BF175-A94E-438E-A0CB-BFF2A91792CB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A508F2B4-EA22-4ADE-887C-3C872C475C61} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A5CBA170-318F-4305-931D-380279D4095B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A5CC2CD4-F70E-4886-9003-5BB89F317358} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A5DDC1C7-DD3B-469E-89E4-BB4F8DDAD187} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A63B96AF-D11E-4DF1-926D-F69D97963EBC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A6C47A82-3B01-4C58-8F94-5559A1D4795E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A6C7ACD9-BCDD-4AE9-87C6-8847697A25F7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A78026EA-4FF5-40A5-9003-3CBCB470303B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A7AD3349-6292-42B1-A9E8-67754F09DE5B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A7B42E8B-6AB0-44A7-B5C9-73973175954A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A89C4E94-3BBB-40A3-AA30-B3817E09A9D1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A8A3B941-221E-419D-8215-4C7C12FEF536} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A8C685D1-5347-441C-B80D-E9F30A35393C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A94A2200-F1BE-46AD-BE08-EB0F2CB6CE33} folder moved successfully.
C:\Users\Melanie\AppData\Local\{A95937B4-C37E-47ED-A25A-8EDAAE8FA7C1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{AA252061-5B07-4449-8010-DB0BBC41DEE7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{AA320A0E-A38A-4F83-940B-7C02AF7F3ECF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{AB56DC21-68DA-4F9C-89D6-60C09FAED0AA} folder moved successfully.
C:\Users\Melanie\AppData\Local\{AC976C95-ECDC-42D7-B5C4-920515144732} folder moved successfully.
C:\Users\Melanie\AppData\Local\{ACA7FB69-F5B6-4D3E-AAD3-59D657947B81} folder moved successfully.
C:\Users\Melanie\AppData\Local\{ACC25FD1-8773-425E-B05B-213E34DC26DD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{AD2038E3-1625-41F8-8013-65DF8FCB51F7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{AD65091C-5999-4638-B8FE-77CF721B9ADA} folder moved successfully.
C:\Users\Melanie\AppData\Local\{AEB23EB0-82C1-4069-81B6-B37EE2CD129D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{AF4C8E8C-66C5-45AB-96DE-6233DB398DD7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{AF631B7F-5539-4774-9682-E96EB1518D4F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B01DE9B1-0606-411D-B861-D98DCFDF258B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B054FFD8-E721-4852-AB15-FF7657C6A8DD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B05E7EC8-FB03-4C61-A6F5-D5BD48206DD4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B05F5C08-F3B7-494E-8F07-F7CB51A61032} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B1477A95-2FF2-45D3-B1B5-4D810EE48202} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B1E78AB5-6813-4F5B-97F8-5B08364A1EB6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B24C192B-19AF-417A-BE47-9716FC645514} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B2671432-63BC-4D7E-A2A9-4B641139B56B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B320A95D-58FB-4A04-8181-E5983E072B90} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B3220BBE-9FCF-4EA4-B4AE-67ED182F3C8C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B37EEDFA-4A22-487F-8222-0210072C41F3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B38ECC94-9EC6-499B-85EA-A59C93AF3722} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B3B47615-C418-4A62-9362-BF41C1AC1844} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B3DCCC80-9D4E-4BA2-8368-E08711CCFC90} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B40FC766-194E-4F0B-86BA-1754D3096FFE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B4238720-04DC-461C-8352-30896996E23D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B44A42F2-5297-4525-BA41-D43A0FB5910A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B4703498-07BD-448B-8242-BA5ABD92CACF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B4C33E42-4313-4A29-9D1C-104BC4E8CFDD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B4FCF35C-BA01-4DEE-B373-273202F2D54F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B5B2A1CD-143C-41B8-897D-B77C2FC3E47B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B61B79AD-880D-4E5B-921B-6F7FE96BA01B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B6DC9535-3F9F-4A27-A77A-4C52EB0BBA35} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B6EDF22D-129B-4430-A140-2049C872FF2D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B713F11C-9F0D-4858-B097-C1D87709348B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B7549AF6-E97D-48FE-BE5F-6B43DAD17AC9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B7A1C928-EE8A-4CBA-AA7E-B231DEE48DF1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B7EBAF0B-B6A1-451C-8BE1-EF265F2200A3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B85CDF9A-659D-463C-8F29-45C4667A39A8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B88341D3-3D2D-45BD-8D6C-65778698107E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B9387816-A091-442D-8824-225A0E19E8D4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{B946A244-2E77-446B-B759-24128FBD2127} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BAE64038-B51C-4A62-A787-61B261DA04D1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BBACE06E-E981-4876-919A-1D99EA2357B8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BBF66656-613B-4755-9779-6BFEF6A9182A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BC01371A-D6D8-4A8F-8693-9A69FCC5D613} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BC157FBA-B049-424E-ADD5-A49055655E83} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BC5D4BF3-D96B-4F41-8704-F8085A7A56FC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BCAD7374-7A70-490F-AC1F-2F02D7A016BF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BCF24F0E-4EEC-4F59-BFF5-ED69478B3337} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BD0BBADB-FB9B-4A74-8A9B-FAC1979006A5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BDF220CE-077A-4C2B-9F20-2A8DB15160CB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BE656191-7778-45ED-AAD5-7BF3C2B0609C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BE84DDE0-A7BB-4379-B025-55A8D4BCE2C3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{BF10E603-38FB-498A-912C-4C4CCB9624F6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C0538663-10FF-4ABD-ACAC-822CC8E1A7AE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C075CCF8-6D7E-44FC-AD51-FB306F6173D3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C0F9352A-DFAD-4690-9E0F-1FF8765EBFD3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C152C458-0077-467F-B85C-281210F52BFB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C168C386-CA7F-4C44-A70D-F872629DF66D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C18CD15A-27BF-4B9B-9591-D505723E2CC1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C194AC90-95F3-4655-BA6B-B209251FCC89} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C28E3C51-76EE-4620-A355-7618B821CCDB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C2F6932A-5998-4DA1-8DE1-211266201BD7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C34E80E6-4185-41C0-AA79-CB12183A8130} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C48E6904-88D8-4E84-A684-730D1693EFE7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C5A17BAD-C9A5-4B41-97CD-861AA34BBDC6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C5D0AF16-DEB5-4721-8916-D424BA5DD868} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C6290B26-C57D-4653-8280-68CC0E5B797F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C64469AC-118C-42C6-B95A-131AFFDF79F6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C67300DA-504B-4336-A756-D7A7336A5C30} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C67C8F1C-49E6-4C9F-AA86-B70303431DD3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C6988953-AA18-41FE-9E6F-5F861D139B83} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C6A133B1-3A6D-4D15-BECD-FE3831F540AD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C8F8ED12-7CE5-4663-9F5A-64705CE23DB3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C92DFE8A-9724-4BA8-8F99-19D97DABF7D4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C9C4FD4F-6D21-445B-8B53-BE5991E017DD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C9CF8A1A-2912-46A1-A0AE-5CBA4CAB7D6D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C9D535E4-6EA4-4643-B260-1E92BDD0F140} folder moved successfully.
C:\Users\Melanie\AppData\Local\{C9F910F9-B689-4CB5-83CA-D4AA579D9953} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CABE789E-23F8-4741-821A-4C8369039445} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CACBC577-7E9C-44DD-912A-08D0833B589E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CAD25DA8-B405-44AD-9522-6ADAC0AEFDD1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CAF85E68-88FC-42D5-B09E-D8F549C62A43} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CCD0BD72-2D15-4B3D-8861-67F02B6CD44C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CDB72E9F-CA27-4000-B973-2721970239FC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CDE30105-8405-483F-ADA0-BBA11830D4F8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CEB83235-8E20-45BB-AB93-CF9E528C61B3} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CF3299CC-8DCB-46D7-80B0-4311EBEDD7F5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{CFA434DC-C548-4927-B902-9A80BA667A1B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D0268BFC-1B99-4B2B-8999-D1609A69FA36} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D06243DF-4F1F-4B42-AC04-4BDA89ECF486} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D1914420-0BDA-433B-84CF-74B7AE5E10F5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D1D60CDD-6E70-43B3-93B6-17FB1BF8AC00} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D255C16D-C36E-49C3-9A69-D56052F79F3E} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D25E24D4-9359-4F74-83C4-4B07A1B9B1DE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D2E583FF-43A8-4748-A7BE-A380A2142615} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D31425AD-E69C-4117-9CBE-EBF003DB2453} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D3549482-0DFA-4984-81E5-97EE0BE805A4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D37FEA78-4843-4037-B213-1357CEC195A1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D5755570-EC0E-41FE-AE15-5B840E40638B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D5888781-9D39-49BE-A4F1-23C0F2DF6D48} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D70A3B48-A4BF-42E5-BE73-06A71D387D11} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D71A6E0B-700F-42DB-BC1B-8D4396EECF0F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D85DE901-A412-4223-8E72-377D7429A895} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D8E25845-5189-4432-986A-1DD0AAD9F60C} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D9439164-D87D-4007-80D5-6ECE44E7FFB0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D9934ADB-E1DE-4AF4-BB23-1633E9A16B48} folder moved successfully.
C:\Users\Melanie\AppData\Local\{D9E23E97-5448-4458-A1E1-44521513C548} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DA31181C-CF6D-490D-B793-6875C2DEF861} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DA3854F5-D8F8-4BD2-899B-3896DE8CDED2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DA7CDF3A-5AC9-405C-9105-FA887AB1A17D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DAEF8D2F-0189-4C6E-BCE6-9FEAB10EF5DE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DB08DF1C-8FA8-4DA3-B0DA-3D6361A243FD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DB107288-9CFC-403E-BB5D-9F2C69F673D4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DBE630F3-B5AC-4E8C-8A8E-E275F48DF735} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DCA1FD29-DD82-479E-ABBD-3C0016F24DEF} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DDC6340C-6987-436C-87CE-FE3121E86C56} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DE0A9E46-6190-4C82-B3DA-C8958BD3452F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DE2D5787-29B5-453B-8424-9627EE5EBECA} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DE6228DA-2163-443D-9DFE-629FE6C5D33D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{DF8154CA-4027-4860-A035-894AF1769221} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E007852D-DEBE-4D97-8C1E-4CA93CCC6B05} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E1BEA1C5-8C23-4D1B-ADDC-49C6ABC9B1C4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E1DF6D72-4FAC-4D8E-AAC9-1067611A62B6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E1F55477-832A-4539-A531-04B5E5A0F1C8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E2A3370B-6143-4529-B556-DC794268E2EA} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E4671F7F-B6FF-4CB8-8C30-C1322E60D544} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E53FE858-6056-4A2C-938C-F0683DEB7CB0} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E5D378FA-1FEE-42A4-A0C9-EE29B8E44BCA} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E6327101-DA14-4D3D-9B23-0912E953AF49} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E663DCF8-F724-418F-84AE-FE072FFF049B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E72EB407-56AE-4335-9AA0-E846AA9E131F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E7D33AF7-57F0-41FA-834B-364B4655CF92} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E7ECEF7E-6BB4-45DB-8A38-CBD056AFDFFA} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E869FFB2-51B4-4027-B3C7-B3E0BF35CF00} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E9021A22-90C4-46A4-81E9-3406A9B0992F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E9039DE7-AF15-4371-836B-63B5FDD7BD31} folder moved successfully.
C:\Users\Melanie\AppData\Local\{E93D53CC-CF15-4C36-9920-D8FDCE473463} folder moved successfully.
C:\Users\Melanie\AppData\Local\{EA5D44E1-F053-4519-B7D7-234C52F1F7E4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{EA7CBFBB-F451-4DA8-BF59-D00E86BC0B7A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{EA9EE3E3-9F77-44E8-BE0A-D8D05BF2324F} folder moved successfully.
C:\Users\Melanie\AppData\Local\{EAD0EF97-3056-48EB-AD95-557D59015A08} folder moved successfully.
C:\Users\Melanie\AppData\Local\{EBDDFD60-E610-4EE0-B6EE-033C1CE2C81A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{ECA468A9-690F-4BBB-BC4D-B2683D8C771B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{ECCBB953-B911-4250-9A13-742E0EE7161A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{EE0934C8-EB7E-4505-AAF7-BAD649D1465D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{EE164AA5-A855-4336-AFA4-A6BAFC522ABD} folder moved successfully.
C:\Users\Melanie\AppData\Local\{EE4C3635-B807-449C-A5F7-20CA48BCD075} folder moved successfully.
C:\Users\Melanie\AppData\Local\{EEF385A3-5753-4BDC-916D-DD8F1E774809} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F00A4AFD-5809-47B7-89B5-F826037215E9} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F020CCFD-4468-405B-9593-D672D9578CAC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F0D89668-1E70-4D74-A72C-E9DF5A86AED4} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F1F7E008-7EBD-4B29-B436-8E17D34339AB} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F24CA7A2-C3D7-4ADE-91FF-A825C9BDA3A1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F2A5D7E7-ECBE-4AB2-893F-E07EE19CD87B} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F2FCC17F-FE97-43EC-A353-BE4C104A8AD6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F3421B43-092A-4ECE-86A3-391B0E994A4D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F3D7FF81-2B14-4FBD-A89A-CE09AF3B7023} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F63D8AF7-B648-45BF-824A-89D4CB2C00DC} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F670279F-3979-46BE-9EAB-3384EF1B96D2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F73D528F-F03A-4CAA-9BB4-CC787B1995F6} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F78C1AFE-C2E1-48D8-A79A-ADBC3926D784} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F8023AD7-D477-4011-9DAB-BB9727A739A5} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F8817253-DC49-4895-94AF-9CA1CA5814E2} folder moved successfully.
C:\Users\Melanie\AppData\Local\{F8B16430-963F-425F-9FB5-32845C5E7F1A} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FAAA8AA5-6158-47A1-AAB0-0FC72F76A4F7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FB7C4D11-98BA-4B56-82EE-2727DEC7B62D} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FCF20820-2CAA-43AC-A8DD-8AF542715139} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FD4D06BD-951E-44E6-994C-57EC798ED434} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FDC30D96-26DC-48B4-B248-60870801F825} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FDD204C4-E600-490D-9481-08415B2C2AB1} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FDFAF468-A930-4DFD-BAA3-F3612CED79B7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FEB2F372-4168-4C84-85DC-CD75D5038ED7} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FF5B091B-4F00-47FD-978B-602412DE10CE} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FF66D07F-09C8-43FD-958B-ADC25C5096C8} folder moved successfully.
C:\Users\Melanie\AppData\Local\{FFE39496-A78D-4840-911B-29D33ECB1C3A} folder moved successfully.
C:\ProgramData\FullRemove.exe moved successfully.
C:\Users\Melanie\AppData\Roaming\ICQ Search folder moved successfully.
< ipconfig /flushdns /c >
No captured output from command...
C:\Users\Melanie\Desktop\Ausführungsdateien\cmd.bat deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Melanie
->Temp folder emptied: 20541129 bytes
->Temporary Internet Files folder emptied: 92462005 bytes
->FireFox cache emptied: 247005688 bytes
->Flash cache emptied: 62750 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1377289 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 36049050 bytes
RecycleBin emptied: 54020 bytes
Total Files Cleaned = 379,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.61.4 log created on 09142012_211632
Files\Folders moved on Reboot...
File move failed. D:\AutoRun.exe scheduled to be moved on reboot.
File move failed. D:\autorun.inf scheduled to be moved on reboot.
File move failed. D:\AutoRunGUI.dll scheduled to be moved on reboot.
C:\Users\Melanie\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\dsiwmis.log scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
|
|
15.09.2012, 12:06
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Adobe Flash Player funktioniert nicht mehr Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html
__________________Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ |
|
15.09.2012, 14:29
| #19 |
| | Adobe Flash Player funktioniert nicht mehr So das hat er mir jetzt angezeigt Code:
ATTFilter 15:19:06.0923 4736 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
15:19:07.0105 4736 ============================================================
15:19:07.0105 4736 Current date / time: 2012/09/15 15:19:07.0105
15:19:07.0105 4736 SystemInfo:
15:19:07.0105 4736
15:19:07.0105 4736 OS Version: 6.1.7601 ServicePack: 1.0
15:19:07.0105 4736 Product type: Workstation
15:19:07.0105 4736 ComputerName: MELANIE-PC
15:19:07.0105 4736 UserName: Melanie
15:19:07.0105 4736 Windows directory: C:\Windows
15:19:07.0105 4736 System windows directory: C:\Windows
15:19:07.0105 4736 Running under WOW64
15:19:07.0105 4736 Processor architecture: Intel x64
15:19:07.0105 4736 Number of processors: 2
15:19:07.0105 4736 Page size: 0x1000
15:19:07.0105 4736 Boot type: Normal boot
15:19:07.0105 4736 ============================================================
15:19:08.0361 4736 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:19:08.0361 4736 ============================================================
15:19:08.0361 4736 \Device\Harddisk0\DR0:
15:19:08.0371 4736 MBR partitions:
15:19:08.0371 4736 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x32000
15:19:08.0371 4736 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A32800, BlocksNum 0x38953000
15:19:08.0371 4736 ============================================================
15:19:08.0391 4736 C: <-> \Device\Harddisk0\DR0\Partition2
15:19:08.0391 4736 ============================================================
15:19:08.0391 4736 Initialize success
15:19:08.0391 4736 ============================================================
15:21:31.0221 3748 ============================================================
15:21:31.0221 3748 Scan started
15:21:31.0221 3748 Mode: Manual; SigCheck; TDLFS;
15:21:31.0221 3748 ============================================================
15:21:32.0991 3748 ================ Scan system memory ========================
15:21:32.0991 3748 System memory - ok
15:21:33.0001 3748 ================ Scan services =============================
15:21:33.0071 3748 [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
15:21:33.0121 3748 !SASCORE - ok
15:21:33.0261 3748 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:21:33.0361 3748 1394ohci - ok
15:21:33.0391 3748 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:21:33.0411 3748 ACPI - ok
15:21:33.0441 3748 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:21:33.0571 3748 AcpiPmi - ok
15:21:33.0651 3748 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:21:33.0681 3748 AdobeARMservice - ok
15:21:33.0801 3748 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:21:33.0831 3748 AdobeFlashPlayerUpdateSvc - ok
15:21:33.0871 3748 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:21:33.0891 3748 adp94xx - ok
15:21:33.0911 3748 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:21:33.0941 3748 adpahci - ok
15:21:33.0961 3748 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:21:33.0981 3748 adpu320 - ok
15:21:34.0051 3748 [ B11C71B29FA69E4586F9B65560E6604D ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
15:21:34.0091 3748 AdvancedSystemCareService5 - ok
15:21:34.0111 3748 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:21:34.0311 3748 AeLookupSvc - ok
15:21:34.0351 3748 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:21:34.0451 3748 AFD - ok
15:21:34.0491 3748 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:21:34.0521 3748 agp440 - ok
15:21:34.0551 3748 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:21:34.0621 3748 ALG - ok
15:21:34.0651 3748 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:21:34.0671 3748 aliide - ok
15:21:34.0711 3748 [ 671D9DCA48DA807780D8409C18ED0AE0 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:21:34.0811 3748 AMD External Events Utility - ok
15:21:34.0831 3748 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:21:34.0851 3748 amdide - ok
15:21:34.0881 3748 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:21:34.0961 3748 AmdK8 - ok
15:21:35.0101 3748 [ D3E6B2E1394D93FE9DB0BA24814B0D8F ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
15:21:35.0433 3748 amdkmdag - ok
15:21:35.0473 3748 [ CC4D915D786D3DA973B2EA9B95D59A29 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:21:35.0523 3748 amdkmdap - ok
15:21:35.0563 3748 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:21:35.0623 3748 AmdPPM - ok
15:21:35.0663 3748 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:21:35.0693 3748 amdsata - ok
15:21:35.0723 3748 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:21:35.0753 3748 amdsbs - ok
15:21:35.0783 3748 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:21:35.0793 3748 amdxata - ok
15:21:35.0863 3748 [ C27D46B06D340293670450FCE9DFB166 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
15:21:35.0883 3748 AntiVirSchedulerService - ok
15:21:35.0913 3748 [ 72D90E56563165984224493069C69ED4 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
15:21:35.0943 3748 AntiVirService - ok
15:21:35.0993 3748 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:21:36.0143 3748 AppID - ok
15:21:36.0173 3748 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:21:36.0223 3748 AppIDSvc - ok
15:21:36.0273 3748 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:21:36.0343 3748 Appinfo - ok
15:21:36.0383 3748 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:21:36.0403 3748 arc - ok
15:21:36.0413 3748 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:21:36.0423 3748 arcsas - ok
15:21:36.0443 3748 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:21:36.0493 3748 AsyncMac - ok
15:21:36.0523 3748 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:21:36.0533 3748 atapi - ok
15:21:36.0613 3748 [ E642491F64E58CD5BC8FB8B347DCF65F ] athr C:\Windows\system32\DRIVERS\athrx.sys
15:21:36.0673 3748 athr - ok
15:21:36.0693 3748 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
15:21:36.0733 3748 AtiPcie - ok
15:21:36.0783 3748 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:21:36.0873 3748 AudioEndpointBuilder - ok
15:21:36.0893 3748 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:21:36.0933 3748 AudioSrv - ok
15:21:36.0973 3748 [ B1224E6B086CD6548315B04AB575A23E ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
15:21:36.0983 3748 avgntflt - ok
15:21:36.0993 3748 [ ED45F12CFA62B83765C9C1496758CC87 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
15:21:37.0013 3748 avipbb - ok
15:21:37.0053 3748 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:21:37.0173 3748 AxInstSV - ok
15:21:37.0213 3748 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:21:37.0313 3748 b06bdrv - ok
15:21:37.0363 3748 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:21:37.0433 3748 b57nd60a - ok
15:21:37.0483 3748 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:21:37.0563 3748 BDESVC - ok
15:21:37.0603 3748 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:21:37.0723 3748 Beep - ok
15:21:37.0783 3748 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:21:37.0863 3748 BFE - ok
15:21:37.0923 3748 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
15:21:38.0043 3748 BITS - ok
15:21:38.0073 3748 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:21:38.0093 3748 blbdrive - ok
15:21:38.0113 3748 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:21:38.0173 3748 bowser - ok
15:21:38.0193 3748 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:21:38.0303 3748 BrFiltLo - ok
15:21:38.0323 3748 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:21:38.0363 3748 BrFiltUp - ok
15:21:38.0403 3748 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:21:38.0463 3748 Browser - ok
15:21:38.0493 3748 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:21:38.0533 3748 Brserid - ok
15:21:38.0543 3748 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:21:38.0573 3748 BrSerWdm - ok
15:21:38.0583 3748 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:21:38.0653 3748 BrUsbMdm - ok
15:21:38.0663 3748 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:21:38.0703 3748 BrUsbSer - ok
15:21:38.0703 3748 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:21:38.0733 3748 BTHMODEM - ok
15:21:38.0763 3748 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:21:38.0843 3748 bthserv - ok
15:21:38.0853 3748 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:21:38.0893 3748 cdfs - ok
15:21:38.0923 3748 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
15:21:38.0953 3748 cdrom - ok
15:21:39.0013 3748 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:21:39.0143 3748 CertPropSvc - ok
15:21:39.0173 3748 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:21:39.0243 3748 circlass - ok
15:21:39.0303 3748 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:21:39.0333 3748 CLFS - ok
15:21:39.0403 3748 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:21:39.0423 3748 clr_optimization_v2.0.50727_32 - ok
15:21:39.0453 3748 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:21:39.0473 3748 clr_optimization_v2.0.50727_64 - ok
15:21:39.0523 3748 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:21:39.0603 3748 clr_optimization_v4.0.30319_32 - ok
15:21:39.0633 3748 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:21:39.0653 3748 clr_optimization_v4.0.30319_64 - ok
15:21:39.0683 3748 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:21:39.0733 3748 CmBatt - ok
15:21:39.0773 3748 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:21:39.0793 3748 cmdide - ok
15:21:39.0843 3748 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
15:21:39.0923 3748 CNG - ok
15:21:39.0963 3748 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:21:39.0993 3748 Compbatt - ok
15:21:40.0034 3748 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:21:40.0075 3748 CompositeBus - ok
15:21:40.0085 3748 COMSysApp - ok
15:21:40.0095 3748 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:21:40.0115 3748 crcdisk - ok
15:21:40.0165 3748 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:21:40.0235 3748 CryptSvc - ok
15:21:40.0325 3748 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
15:21:40.0375 3748 cvhsvc - ok
15:21:40.0425 3748 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:21:40.0495 3748 DcomLaunch - ok
15:21:40.0535 3748 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:21:40.0595 3748 defragsvc - ok
15:21:40.0635 3748 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:21:40.0705 3748 DfsC - ok
15:21:40.0755 3748 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:21:40.0805 3748 Dhcp - ok
15:21:40.0845 3748 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:21:40.0925 3748 discache - ok
15:21:40.0945 3748 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:21:40.0965 3748 Disk - ok
15:21:40.0995 3748 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:21:41.0085 3748 Dnscache - ok
15:21:41.0125 3748 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:21:41.0215 3748 dot3svc - ok
15:21:41.0245 3748 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:21:41.0305 3748 DPS - ok
15:21:41.0345 3748 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:21:41.0365 3748 drmkaud - ok
15:21:41.0425 3748 [ 9CF46FDF163E06B83D03FF929EF2296C ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
15:21:41.0445 3748 DsiWMIService - ok
15:21:41.0505 3748 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:21:41.0545 3748 DXGKrnl - ok
15:21:41.0575 3748 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:21:41.0625 3748 EapHost - ok
15:21:41.0745 3748 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:21:41.0885 3748 ebdrv - ok
15:21:41.0925 3748 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:21:42.0065 3748 EFS - ok
15:21:42.0135 3748 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:21:42.0195 3748 ehRecvr - ok
15:21:42.0225 3748 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:21:42.0265 3748 ehSched - ok
15:21:42.0305 3748 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:21:42.0345 3748 elxstor - ok
15:21:42.0425 3748 [ 3EA2C4F68A782839D97B3C83595575B6 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
15:21:42.0475 3748 ePowerSvc - ok
15:21:42.0506 3748 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:21:42.0527 3748 ErrDev - ok
15:21:42.0567 3748 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:21:42.0627 3748 EventSystem - ok
15:21:42.0647 3748 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:21:42.0697 3748 exfat - ok
15:21:42.0717 3748 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:21:42.0787 3748 fastfat - ok
15:21:42.0867 3748 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:21:42.0977 3748 Fax - ok
15:21:42.0997 3748 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:21:43.0027 3748 fdc - ok
15:21:43.0047 3748 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:21:43.0147 3748 fdPHost - ok
15:21:43.0157 3748 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:21:43.0207 3748 FDResPub - ok
15:21:43.0237 3748 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:21:43.0257 3748 FileInfo - ok
15:21:43.0277 3748 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:21:43.0327 3748 Filetrace - ok
15:21:43.0367 3748 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
15:21:43.0407 3748 FLEXnet Licensing Service - ok
15:21:43.0417 3748 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:21:43.0437 3748 flpydisk - ok
15:21:43.0477 3748 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:21:43.0497 3748 FltMgr - ok
15:21:43.0567 3748 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
15:21:43.0667 3748 FontCache - ok
15:21:43.0727 3748 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:21:43.0747 3748 FontCache3.0.0.0 - ok
15:21:43.0787 3748 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:21:43.0797 3748 FsDepends - ok
15:21:43.0827 3748 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
15:21:43.0837 3748 fssfltr - ok
15:21:43.0957 3748 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
15:21:43.0997 3748 fsssvc - ok
15:21:44.0037 3748 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:21:44.0057 3748 Fs_Rec - ok
15:21:44.0097 3748 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:21:44.0117 3748 fvevol - ok
15:21:44.0137 3748 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:21:44.0157 3748 gagp30kx - ok
15:21:44.0207 3748 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:21:44.0287 3748 gpsvc - ok
15:21:44.0327 3748 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
15:21:44.0347 3748 GREGService - ok
15:21:44.0467 3748 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:21:44.0497 3748 gupdate - ok
15:21:44.0507 3748 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:21:44.0517 3748 gupdatem - ok
15:21:44.0547 3748 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
15:21:44.0557 3748 gusvc - ok
15:21:44.0587 3748 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:21:44.0677 3748 hcw85cir - ok
15:21:44.0707 3748 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:21:44.0737 3748 HdAudAddService - ok
15:21:44.0777 3748 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:21:44.0807 3748 HDAudBus - ok
15:21:44.0837 3748 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:21:44.0887 3748 HidBatt - ok
15:21:44.0917 3748 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:21:44.0947 3748 HidBth - ok
15:21:44.0967 3748 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:21:44.0987 3748 HidIr - ok
15:21:45.0017 3748 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:21:45.0067 3748 hidserv - ok
15:21:45.0097 3748 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:21:45.0107 3748 HidUsb - ok
15:21:45.0147 3748 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:21:45.0217 3748 hkmsvc - ok
15:21:45.0257 3748 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:21:45.0337 3748 HomeGroupListener - ok
15:21:45.0377 3748 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:21:45.0407 3748 HomeGroupProvider - ok
15:21:45.0437 3748 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:21:45.0457 3748 HpSAMD - ok
15:21:45.0517 3748 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:21:45.0597 3748 HTTP - ok
15:21:45.0627 3748 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:21:45.0637 3748 hwpolicy - ok
15:21:45.0667 3748 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:21:45.0677 3748 i8042prt - ok
15:21:45.0717 3748 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:21:45.0737 3748 iaStorV - ok
15:21:45.0807 3748 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:21:45.0837 3748 idsvc - ok
15:21:45.0867 3748 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:21:45.0877 3748 iirsp - ok
15:21:45.0937 3748 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:21:46.0027 3748 IKEEXT - ok
15:21:46.0127 3748 [ 235362D403D9D677514649D88DB31914 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:21:46.0187 3748 IntcAzAudAddService - ok
15:21:46.0217 3748 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:21:46.0227 3748 intelide - ok
15:21:46.0267 3748 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:21:46.0287 3748 intelppm - ok
15:21:46.0327 3748 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:21:46.0377 3748 IPBusEnum - ok
15:21:46.0417 3748 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:21:46.0517 3748 IpFilterDriver - ok
15:21:46.0547 3748 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:21:46.0607 3748 iphlpsvc - ok
15:21:46.0647 3748 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:21:46.0687 3748 IPMIDRV - ok
15:21:46.0727 3748 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:21:46.0807 3748 IPNAT - ok
15:21:46.0827 3748 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:21:46.0917 3748 IRENUM - ok
15:21:46.0947 3748 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:21:46.0967 3748 isapnp - ok
15:21:47.0007 3748 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:21:47.0027 3748 iScsiPrt - ok
15:21:47.0067 3748 [ 37E053A2CF8F0082B689ED74106E0CEC ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
15:21:47.0107 3748 k57nd60a - ok
15:21:47.0137 3748 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
15:21:47.0157 3748 kbdclass - ok
15:21:47.0177 3748 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:21:47.0217 3748 kbdhid - ok
15:21:47.0247 3748 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:21:47.0267 3748 KeyIso - ok
15:21:47.0317 3748 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:21:47.0347 3748 KSecDD - ok
15:21:47.0397 3748 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:21:47.0417 3748 KSecPkg - ok
15:21:47.0437 3748 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:21:47.0487 3748 ksthunk - ok
15:21:47.0521 3748 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:21:47.0569 3748 KtmRm - ok
15:21:47.0609 3748 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:21:47.0719 3748 LanmanServer - ok
15:21:47.0749 3748 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:21:47.0809 3748 LanmanWorkstation - ok
15:21:47.0849 3748 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:21:47.0899 3748 lltdio - ok
15:21:47.0939 3748 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:21:47.0999 3748 lltdsvc - ok
15:21:48.0019 3748 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:21:48.0089 3748 lmhosts - ok
15:21:48.0109 3748 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:21:48.0129 3748 LSI_FC - ok
15:21:48.0139 3748 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:21:48.0149 3748 LSI_SAS - ok
15:21:48.0169 3748 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:21:48.0179 3748 LSI_SAS2 - ok
15:21:48.0209 3748 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:21:48.0219 3748 LSI_SCSI - ok
15:21:48.0229 3748 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:21:48.0289 3748 luafv - ok
15:21:48.0329 3748 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:21:48.0339 3748 MBAMProtector - ok
15:21:48.0379 3748 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:21:48.0409 3748 MBAMScheduler - ok
15:21:48.0429 3748 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
15:21:48.0459 3748 MBAMService - ok
15:21:48.0489 3748 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:21:48.0529 3748 Mcx2Svc - ok
15:21:48.0569 3748 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:21:48.0599 3748 megasas - ok
15:21:48.0619 3748 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:21:48.0649 3748 MegaSR - ok
15:21:48.0679 3748 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:21:48.0759 3748 MMCSS - ok
15:21:48.0779 3748 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:21:48.0819 3748 Modem - ok
15:21:48.0829 3748 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:21:48.0849 3748 monitor - ok
15:21:48.0869 3748 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:21:48.0889 3748 mouclass - ok
15:21:48.0919 3748 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:21:48.0959 3748 mouhid - ok
15:21:48.0999 3748 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:21:49.0029 3748 mountmgr - ok
15:21:49.0089 3748 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:21:49.0119 3748 MozillaMaintenance - ok
15:21:49.0149 3748 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:21:49.0159 3748 mpio - ok
15:21:49.0199 3748 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:21:49.0259 3748 mpsdrv - ok
15:21:49.0321 3748 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:21:49.0411 3748 MpsSvc - ok
15:21:49.0451 3748 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:21:49.0481 3748 MRxDAV - ok
15:21:49.0511 3748 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:21:49.0581 3748 mrxsmb - ok
15:21:49.0611 3748 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:21:49.0641 3748 mrxsmb10 - ok
15:21:49.0661 3748 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:21:49.0701 3748 mrxsmb20 - ok
15:21:49.0731 3748 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:21:49.0741 3748 msahci - ok
15:21:49.0771 3748 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:21:49.0781 3748 msdsm - ok
15:21:49.0811 3748 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:21:49.0851 3748 MSDTC - ok
15:21:49.0901 3748 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:21:49.0941 3748 Msfs - ok
15:21:49.0961 3748 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:21:50.0011 3748 mshidkmdf - ok
15:21:50.0031 3748 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:21:50.0041 3748 msisadrv - ok
15:21:50.0071 3748 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:21:50.0121 3748 MSiSCSI - ok
15:21:50.0131 3748 msiserver - ok
15:21:50.0141 3748 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:21:50.0181 3748 MSKSSRV - ok
15:21:50.0201 3748 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:21:50.0261 3748 MSPCLOCK - ok
15:21:50.0291 3748 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:21:50.0341 3748 MSPQM - ok
15:21:50.0381 3748 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:21:50.0411 3748 MsRPC - ok
15:21:50.0441 3748 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:21:50.0461 3748 mssmbios - ok
15:21:50.0481 3748 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:21:50.0541 3748 MSTEE - ok
15:21:50.0551 3748 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:21:50.0571 3748 MTConfig - ok
15:21:50.0601 3748 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:21:50.0611 3748 Mup - ok
15:21:50.0631 3748 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
15:21:50.0641 3748 mwlPSDFilter - ok
15:21:50.0651 3748 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
15:21:50.0661 3748 mwlPSDNServ - ok
15:21:50.0671 3748 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
15:21:50.0681 3748 mwlPSDVDisk - ok
15:21:50.0731 3748 [ 3E5E20817259F7328C8F3BE5421F35B9 ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
15:21:50.0741 3748 MWLService - ok
15:21:50.0781 3748 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:21:50.0841 3748 napagent - ok
15:21:50.0881 3748 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:21:50.0921 3748 NativeWifiP - ok
15:21:50.0981 3748 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:21:51.0031 3748 NDIS - ok
15:21:51.0061 3748 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:21:51.0111 3748 NdisCap - ok
15:21:51.0131 3748 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:21:51.0191 3748 NdisTapi - ok
15:21:51.0231 3748 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:21:51.0321 3748 Ndisuio - ok
15:21:51.0353 3748 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:21:51.0413 3748 NdisWan - ok
15:21:51.0453 3748 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:21:51.0533 3748 NDProxy - ok
15:21:51.0573 3748 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:21:51.0653 3748 NetBIOS - ok
15:21:51.0693 3748 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:21:51.0733 3748 NetBT - ok
15:21:51.0753 3748 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:21:51.0763 3748 Netlogon - ok
15:21:51.0803 3748 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:21:51.0893 3748 Netman - ok
15:21:51.0913 3748 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:21:51.0973 3748 netprofm - ok
15:21:52.0013 3748 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:21:52.0043 3748 NetTcpPortSharing - ok
15:21:52.0063 3748 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:21:52.0083 3748 nfrd960 - ok
15:21:52.0123 3748 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:21:52.0223 3748 NlaSvc - ok
15:21:52.0253 3748 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:21:52.0305 3748 Npfs - ok
15:21:52.0325 3748 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:21:52.0365 3748 nsi - ok
15:21:52.0375 3748 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:21:52.0417 3748 nsiproxy - ok
15:21:52.0497 3748 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:21:52.0557 3748 Ntfs - ok
15:21:52.0607 3748 [ 9A308FCDCCA98A15B6F62D36A272160E ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
15:21:52.0637 3748 NTI IScheduleSvc - ok
15:21:52.0677 3748 [ EE3BA1024594D5D09E314F206B94069E ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
15:21:52.0687 3748 NTIDrvr - ok
15:21:52.0697 3748 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:21:52.0797 3748 Null - ok
15:21:52.0857 3748 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:21:52.0887 3748 nvraid - ok
15:21:52.0927 3748 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:21:52.0947 3748 nvstor - ok
15:21:52.0977 3748 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:21:52.0997 3748 nv_agp - ok
15:21:53.0037 3748 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:21:53.0067 3748 ohci1394 - ok
15:21:53.0087 3748 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:21:53.0107 3748 ose - ok
15:21:53.0307 3748 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:21:53.0472 3748 osppsvc - ok
15:21:53.0509 3748 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:21:53.0549 3748 p2pimsvc - ok
15:21:53.0569 3748 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:21:53.0589 3748 p2psvc - ok
15:21:53.0619 3748 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:21:53.0639 3748 Parport - ok
15:21:53.0679 3748 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:21:53.0689 3748 partmgr - ok
15:21:53.0709 3748 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:21:53.0739 3748 PcaSvc - ok
15:21:53.0759 3748 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:21:53.0769 3748 pci - ok
15:21:53.0789 3748 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:21:53.0799 3748 pciide - ok
15:21:53.0839 3748 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:21:53.0869 3748 pcmcia - ok
15:21:53.0889 3748 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:21:53.0899 3748 pcw - ok
15:21:53.0939 3748 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:21:54.0029 3748 PEAUTH - ok
15:21:54.0099 3748 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:21:54.0119 3748 PerfHost - ok
15:21:54.0189 3748 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:21:54.0289 3748 pla - ok
15:21:54.0329 3748 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:21:54.0369 3748 PlugPlay - ok
15:21:54.0389 3748 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:21:54.0429 3748 PNRPAutoReg - ok
15:21:54.0469 3748 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:21:54.0489 3748 PNRPsvc - ok
15:21:54.0549 3748 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:21:54.0639 3748 PolicyAgent - ok
15:21:54.0659 3748 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:21:54.0719 3748 Power - ok
15:21:54.0759 3748 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:21:54.0819 3748 PptpMiniport - ok
15:21:54.0849 3748 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:21:54.0869 3748 Processor - ok
15:21:54.0909 3748 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:21:54.0989 3748 ProfSvc - ok
15:21:55.0019 3748 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:21:55.0029 3748 ProtectedStorage - ok
15:21:55.0059 3748 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:21:55.0119 3748 Psched - ok
15:21:55.0159 3748 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:21:55.0199 3748 ql2300 - ok
15:21:55.0229 3748 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:21:55.0249 3748 ql40xx - ok
15:21:55.0279 3748 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:21:55.0319 3748 QWAVE - ok
15:21:55.0329 3748 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:21:55.0369 3748 QWAVEdrv - ok
15:21:55.0379 3748 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:21:55.0419 3748 RasAcd - ok
15:21:55.0449 3748 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:21:55.0509 3748 RasAgileVpn - ok
15:21:55.0549 3748 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:21:55.0619 3748 RasAuto - ok
15:21:55.0659 3748 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:21:55.0749 3748 Rasl2tp - ok
15:21:55.0799 3748 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:21:55.0839 3748 RasMan - ok
15:21:55.0869 3748 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:21:55.0909 3748 RasPppoe - ok
15:21:55.0919 3748 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:21:55.0979 3748 RasSstp - ok
15:21:56.0009 3748 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:21:56.0089 3748 rdbss - ok
15:21:56.0099 3748 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:21:56.0129 3748 rdpbus - ok
15:21:56.0149 3748 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:21:56.0189 3748 RDPCDD - ok
15:21:56.0219 3748 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:21:56.0279 3748 RDPENCDD - ok
15:21:56.0299 3748 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:21:56.0339 3748 RDPREFMP - ok
15:21:56.0389 3748 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:21:56.0459 3748 RDPWD - ok
15:21:56.0519 3748 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:21:56.0549 3748 rdyboost - ok
15:21:56.0589 3748 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:21:56.0659 3748 RemoteAccess - ok
15:21:56.0679 3748 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:21:56.0729 3748 RemoteRegistry - ok
15:21:56.0749 3748 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:21:56.0809 3748 RpcEptMapper - ok
15:21:56.0839 3748 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:21:56.0899 3748 RpcLocator - ok
15:21:56.0959 3748 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
15:21:57.0009 3748 RpcSs - ok
15:21:57.0039 3748 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:21:57.0119 3748 rspndr - ok
15:21:57.0159 3748 [ 763AE0C6D9DF4C24B7E2C26036A8188A ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
15:21:57.0169 3748 RSUSBSTOR - ok
15:21:57.0209 3748 [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
15:21:57.0219 3748 RTHDMIAzAudService - ok
15:21:57.0239 3748 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:21:57.0249 3748 SamSs - ok
15:21:57.0289 3748 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
15:21:57.0299 3748 SASDIFSV - ok
15:21:57.0319 3748 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
15:21:57.0329 3748 SASKUTIL - ok
15:21:57.0359 3748 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:21:57.0369 3748 sbp2port - ok
15:21:57.0399 3748 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:21:57.0499 3748 SCardSvr - ok
15:21:57.0539 3748 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:21:57.0599 3748 scfilter - ok
15:21:57.0689 3748 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:21:57.0813 3748 Schedule - ok
15:21:57.0851 3748 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:21:57.0921 3748 SCPolicySvc - ok
15:21:57.0961 3748 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:21:57.0991 3748 SDRSVC - ok
15:21:58.0021 3748 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:21:58.0091 3748 secdrv - ok
15:21:58.0121 3748 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:21:58.0211 3748 seclogon - ok
15:21:58.0251 3748 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:21:58.0301 3748 SENS - ok
15:21:58.0311 3748 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:21:58.0351 3748 SensrSvc - ok
15:21:58.0371 3748 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:21:58.0411 3748 Serenum - ok
15:21:58.0441 3748 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:21:58.0451 3748 Serial - ok
15:21:58.0481 3748 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:21:58.0501 3748 sermouse - ok
15:21:58.0571 3748 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:21:58.0621 3748 SessionEnv - ok
15:21:58.0661 3748 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:21:58.0711 3748 sffdisk - ok
15:21:58.0721 3748 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:21:58.0761 3748 sffp_mmc - ok
15:21:58.0771 3748 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:21:58.0801 3748 sffp_sd - ok
15:21:58.0831 3748 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:21:58.0861 3748 sfloppy - ok
15:21:58.0901 3748 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
15:21:58.0931 3748 Sftfs - ok
15:21:59.0001 3748 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
15:21:59.0051 3748 sftlist - ok
15:21:59.0071 3748 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
15:21:59.0091 3748 Sftplay - ok
15:21:59.0111 3748 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
15:21:59.0121 3748 Sftredir - ok
15:21:59.0131 3748 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
15:21:59.0151 3748 Sftvol - ok
15:21:59.0201 3748 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
15:21:59.0231 3748 sftvsa - ok
15:21:59.0271 3748 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:21:59.0351 3748 SharedAccess - ok
15:21:59.0391 3748 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:21:59.0451 3748 ShellHWDetection - ok
15:21:59.0481 3748 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:21:59.0491 3748 SiSRaid2 - ok
15:21:59.0501 3748 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:21:59.0511 3748 SiSRaid4 - ok
15:21:59.0561 3748 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:21:59.0591 3748 SkypeUpdate - ok
15:21:59.0601 3748 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:21:59.0631 3748 Smb - ok
15:21:59.0671 3748 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:21:59.0711 3748 SNMPTRAP - ok
15:21:59.0721 3748 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:21:59.0741 3748 spldr - ok
15:21:59.0781 3748 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:21:59.0871 3748 Spooler - ok
15:22:00.0003 3748 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:22:00.0223 3748 sppsvc - ok
15:22:00.0253 3748 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:22:00.0323 3748 sppuinotify - ok
15:22:00.0383 3748 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:22:00.0473 3748 srv - ok
15:22:00.0493 3748 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:22:00.0533 3748 srv2 - ok
15:22:00.0573 3748 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:22:00.0613 3748 srvnet - ok
15:22:00.0643 3748 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:22:00.0713 3748 SSDPSRV - ok
15:22:00.0733 3748 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:22:00.0773 3748 SstpSvc - ok
15:22:00.0803 3748 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:22:00.0813 3748 stexstor - ok
15:22:00.0863 3748 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:22:00.0913 3748 stisvc - ok
15:22:00.0943 3748 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
15:22:00.0953 3748 swenum - ok
15:22:01.0003 3748 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:22:01.0073 3748 swprv - ok
15:22:01.0113 3748 [ 064A2530A4A7C7CEC1BE6A1945645BE4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:22:01.0133 3748 SynTP - ok
15:22:01.0223 3748 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:22:01.0313 3748 SysMain - ok
15:22:01.0343 3748 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:22:01.0373 3748 TabletInputService - ok
15:22:01.0393 3748 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:22:01.0443 3748 TapiSrv - ok
15:22:01.0473 3748 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:22:01.0513 3748 TBS - ok
15:22:01.0593 3748 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:22:01.0663 3748 Tcpip - ok
15:22:01.0693 3748 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:22:01.0733 3748 TCPIP6 - ok
15:22:01.0783 3748 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:22:01.0873 3748 tcpipreg - ok
15:22:01.0913 3748 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:22:01.0963 3748 TDPIPE - ok
15:22:01.0993 3748 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:22:02.0025 3748 TDTCP - ok
15:22:02.0055 3748 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:22:02.0115 3748 tdx - ok
15:22:02.0145 3748 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:22:02.0155 3748 TermDD - ok
15:22:02.0225 3748 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:22:02.0325 3748 TermService - ok
15:22:02.0365 3748 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:22:02.0395 3748 Themes - ok
15:22:02.0425 3748 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:22:02.0465 3748 THREADORDER - ok
15:22:02.0475 3748 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:22:02.0545 3748 TrkWks - ok
15:22:02.0615 3748 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:22:02.0685 3748 TrustedInstaller - ok
15:22:02.0725 3748 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:22:02.0775 3748 tssecsrv - ok
15:22:02.0815 3748 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:22:02.0865 3748 TsUsbFlt - ok
15:22:02.0905 3748 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:22:02.0945 3748 tunnel - ok
15:22:02.0985 3748 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:22:03.0015 3748 uagp35 - ok
15:22:03.0035 3748 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
15:22:03.0045 3748 UBHelper - ok
15:22:03.0095 3748 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:22:03.0195 3748 udfs - ok
15:22:03.0235 3748 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:22:03.0245 3748 UI0Detect - ok
15:22:03.0275 3748 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:22:03.0295 3748 uliagpkx - ok
15:22:03.0325 3748 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:22:03.0365 3748 umbus - ok
15:22:03.0405 3748 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:22:03.0445 3748 UmPass - ok
15:22:03.0515 3748 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
15:22:03.0545 3748 Updater Service - ok
15:22:03.0585 3748 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:22:03.0625 3748 upnphost - ok
15:22:03.0655 3748 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:22:03.0725 3748 usbccgp - ok
15:22:03.0755 3748 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:22:03.0775 3748 usbcir - ok
15:22:03.0805 3748 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:22:03.0845 3748 usbehci - ok
15:22:03.0895 3748 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:22:03.0935 3748 usbhub - ok
15:22:03.0965 3748 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:22:03.0995 3748 usbohci - ok
15:22:04.0035 3748 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:22:04.0085 3748 usbprint - ok
15:22:04.0115 3748 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:22:04.0185 3748 USBSTOR - ok
15:22:04.0215 3748 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:22:04.0245 3748 usbuhci - ok
15:22:04.0275 3748 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
15:22:04.0315 3748 usbvideo - ok
15:22:04.0365 3748 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:22:04.0425 3748 UxSms - ok
15:22:04.0445 3748 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:22:04.0465 3748 VaultSvc - ok
15:22:04.0485 3748 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:22:04.0505 3748 vdrvroot - ok
15:22:04.0555 3748 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:22:04.0645 3748 vds - ok
15:22:04.0695 3748 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:22:04.0705 3748 vga - ok
15:22:04.0725 3748 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:22:04.0785 3748 VgaSave - ok
15:22:04.0815 3748 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:22:04.0835 3748 vhdmp - ok
15:22:04.0855 3748 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:22:04.0865 3748 viaide - ok
15:22:04.0895 3748 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:22:04.0905 3748 volmgr - ok
15:22:04.0945 3748 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:22:04.0965 3748 volmgrx - ok
15:22:04.0995 3748 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:22:05.0015 3748 volsnap - ok
15:22:05.0045 3748 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:22:05.0065 3748 vsmraid - ok
15:22:05.0135 3748 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:22:05.0245 3748 VSS - ok
15:22:05.0275 3748 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:22:05.0325 3748 vwifibus - ok
15:22:05.0345 3748 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:22:05.0385 3748 vwififlt - ok
15:22:05.0415 3748 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:22:05.0475 3748 W32Time - ok
15:22:05.0505 3748 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:22:05.0515 3748 WacomPen - ok
15:22:05.0545 3748 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:22:05.0595 3748 WANARP - ok
15:22:05.0595 3748 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:22:05.0645 3748 Wanarpv6 - ok
15:22:05.0705 3748 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:22:05.0765 3748 wbengine - ok
15:22:05.0795 3748 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:22:05.0825 3748 WbioSrvc - ok
15:22:05.0865 3748 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:22:05.0925 3748 wcncsvc - ok
15:22:05.0965 3748 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:22:06.0055 3748 WcsPlugInService - ok
15:22:06.0075 3748 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:22:06.0085 3748 Wd - ok
15:22:06.0115 3748 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:22:06.0145 3748 Wdf01000 - ok
15:22:06.0175 3748 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:22:06.0265 3748 WdiServiceHost - ok
15:22:06.0275 3748 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:22:06.0295 3748 WdiSystemHost - ok
15:22:06.0335 3748 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:22:06.0395 3748 WebClient - ok
15:22:06.0435 3748 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:22:06.0505 3748 Wecsvc - ok
15:22:06.0525 3748 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:22:06.0575 3748 wercplsupport - ok
15:22:06.0595 3748 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:22:06.0635 3748 WerSvc - ok
15:22:06.0645 3748 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:22:06.0685 3748 WfpLwf - ok
15:22:06.0705 3748 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:22:06.0715 3748 WIMMount - ok
15:22:06.0735 3748 WinDefend - ok
15:22:06.0735 3748 WinHttpAutoProxySvc - ok
15:22:06.0785 3748 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:22:06.0835 3748 Winmgmt - ok
15:22:06.0925 3748 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:22:07.0025 3748 WinRM - ok
15:22:07.0075 3748 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:22:07.0115 3748 WinUsb - ok
15:22:07.0165 3748 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:22:07.0235 3748 Wlansvc - ok
15:22:07.0275 3748 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:22:07.0295 3748 wlcrasvc - ok
15:22:07.0405 3748 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:22:07.0475 3748 wlidsvc - ok
15:22:07.0495 3748 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:22:07.0525 3748 WmiAcpi - ok
15:22:07.0555 3748 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:22:07.0595 3748 wmiApSrv - ok
15:22:07.0615 3748 WMPNetworkSvc - ok
15:22:07.0645 3748 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:22:07.0685 3748 WPCSvc - ok
15:22:07.0725 3748 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:22:07.0785 3748 WPDBusEnum - ok
15:22:07.0805 3748 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:22:07.0865 3748 ws2ifsl - ok
15:22:07.0895 3748 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
15:22:07.0945 3748 wscsvc - ok
15:22:07.0955 3748 WSearch - ok
15:22:08.0065 3748 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:22:08.0145 3748 wuauserv - ok
15:22:08.0165 3748 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:22:08.0205 3748 WudfPf - ok
15:22:08.0235 3748 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:22:08.0325 3748 WUDFRd - ok
15:22:08.0355 3748 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:22:08.0385 3748 wudfsvc - ok
15:22:08.0415 3748 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:22:08.0465 3748 WwanSvc - ok
15:22:08.0475 3748 ================ Scan global ===============================
15:22:08.0535 3748 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:22:08.0555 3748 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
15:22:08.0575 3748 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
15:22:08.0605 3748 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:22:08.0645 3748 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:22:08.0655 3748 [Global] - ok
15:22:08.0655 3748 ================ Scan MBR ==================================
15:22:08.0665 3748 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:22:09.0025 3748 \Device\Harddisk0\DR0 - ok
15:22:09.0025 3748 ================ Scan VBR ==================================
15:22:09.0035 3748 [ E0FC1BC644E4F6B4A25DBD0CFF0D44B3 ] \Device\Harddisk0\DR0\Partition1
15:22:09.0035 3748 \Device\Harddisk0\DR0\Partition1 - ok
15:22:09.0075 3748 [ EB56A4EFC9AC13F299AAD57A970255D9 ] \Device\Harddisk0\DR0\Partition2
15:22:09.0075 3748 \Device\Harddisk0\DR0\Partition2 - ok
15:22:09.0075 3748 ============================================================
15:22:09.0075 3748 Scan finished
15:22:09.0075 3748 ============================================================
15:22:09.0105 5036 Detected object count: 0
15:22:09.0105 5036 Actual detected object count: 0
|
|
16.09.2012, 15:33
| #20 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Adobe Flash Player funktioniert nicht mehr Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.09.2012, 17:55
| #21 |
| | Adobe Flash Player funktioniert nicht mehr Combofix Logfile: Code:
ATTFilter ComboFix 12-09-15.02 - Melanie 16.09.2012 17:34:26.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.4091.2860 [GMT 2:00]
ausgeführt von:: c:\users\Melanie\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\security\Database\tmp.edb
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-08-16 bis 2012-09-16 ))))))))))))))))))))))))))))))
.
.
2012-09-16 15:46 . 2012-09-16 15:46 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-14 19:16 . 2012-09-14 19:16 -------- d-----w- C:\_OTL
2012-09-14 13:31 . 2012-08-23 08:26 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{57F3803F-5C86-463E-AE91-A1568379ED29}\mpengine.dll
2012-09-13 18:53 . 2012-09-13 18:53 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-09-12 09:04 . 2012-09-12 09:04 -------- d-----w- c:\program files (x86)\ESET
2012-09-12 09:02 . 2012-09-12 09:02 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-09-12 08:55 . 2012-08-22 18:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 08:55 . 2012-07-04 20:26 41472 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 08:55 . 2012-08-02 17:58 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-12 08:55 . 2012-08-02 16:57 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2012-09-12 08:55 . 2012-08-22 18:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 08:55 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 08:55 . 2012-08-22 18:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-11 15:09 . 2012-09-11 15:14 -------- d-----w- C:\blöd
2012-09-11 13:39 . 2012-09-11 13:39 -------- d-----w- c:\users\Melanie\AppData\Roaming\Malwarebytes
2012-09-11 13:39 . 2012-09-11 13:39 -------- d-----w- c:\programdata\Malwarebytes
2012-09-11 13:39 . 2012-09-11 13:39 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-09-11 13:39 . 2012-09-07 15:04 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-09 14:05 . 2012-09-09 14:05 -------- d-----w- c:\users\Melanie\AppData\Local\Mozilla
2012-09-08 13:15 . 2012-09-08 13:16 -------- d-----w- c:\users\Melanie\AppData\Roaming\Origin
2012-09-08 13:13 . 2012-09-08 15:54 -------- d-----w- c:\programdata\Origin
2012-08-20 16:17 . 2012-08-20 16:17 -------- d-----w- c:\users\Melanie\AppData\Roaming\PhotoFiltre 7
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-12 18:00 . 2011-10-06 13:25 64462936 ----a-w- c:\windows\system32\MRT.exe
2012-09-09 14:19 . 2012-04-09 17:31 73416 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-09-09 14:19 . 2012-04-09 17:31 696520 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-07-18 18:15 . 2012-08-16 11:47 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-07-04 22:16 . 2012-08-16 11:47 73216 ----a-w- c:\windows\system32\netapi32.dll
2012-07-04 22:13 . 2012-08-16 11:47 59392 ----a-w- c:\windows\system32\browcli.dll
2012-07-04 22:13 . 2012-08-16 11:47 136704 ----a-w- c:\windows\system32\browser.dll
2012-07-04 21:14 . 2012-08-16 11:47 41984 ----a-w- c:\windows\SysWow64\browcli.dll
2012-06-29 04:55 . 2012-08-16 19:43 17809920 ----a-w- c:\windows\system32\mshtml.dll
2012-06-29 04:09 . 2012-08-16 19:43 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-06-29 03:56 . 2012-08-16 19:43 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-06-29 03:49 . 2012-08-16 19:43 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-06-29 03:49 . 2012-08-16 19:43 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-06-29 03:48 . 2012-08-16 19:43 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-06-29 03:47 . 2012-08-16 19:43 237056 ----a-w- c:\windows\system32\url.dll
2012-06-29 03:45 . 2012-08-16 19:43 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-06-29 03:44 . 2012-08-16 19:43 816640 ----a-w- c:\windows\system32\jscript.dll
2012-06-29 03:43 . 2012-08-16 19:43 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-06-29 03:42 . 2012-08-16 19:43 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-06-29 03:40 . 2012-08-16 19:43 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-06-29 03:39 . 2012-08-16 19:43 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-06-29 03:35 . 2012-08-16 19:43 248320 ----a-w- c:\windows\system32\ieui.dll
2012-06-29 00:16 . 2012-08-16 19:43 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-06-29 00:09 . 2012-08-16 19:43 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-06-29 00:08 . 2012-08-16 19:43 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-06-29 00:04 . 2012-08-16 19:43 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-06-29 00:00 . 2012-08-16 19:43 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-06-28 16:39 . 2012-06-28 16:39 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2012-06-28 16:39 . 2012-06-28 16:39 366592 ----a-w- c:\windows\system32\qdvd.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:40 120176 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-08-12 5471104]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-09 39408]
"Advanced SystemCare 5"="c:\program files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" [2012-03-06 574296]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-05-27 337264]
"EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2010-03-11 201584]
"EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2010-03-11 407920]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-06-28 265984]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-04-21 98304]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-08-10 975952]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-04-21 281768]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ \0
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-09 136176]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-09 250568]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-09 136176]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-06 114144]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-06-17 246376]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-11 140672]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2012-03-14 913752]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-04-20 202752]
S2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-04-21 136360]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-08-10 321104]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-06-11 868896]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-07 399432]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-07 676936]
S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-05-27 305520]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-06-28 255744]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 243232]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [2010-04-21 6406144]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-04-20 188928]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2010-05-14 384040]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-07 25928]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-09-16 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-09 14:19]
.
2012-09-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-09 17:03]
.
2012-09-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-09 17:03]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:42 137584 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-06-22 10920552]
"mwlDaemon"="c:\program files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-05-27 349552]
"PLFSetI"="c:\windows\PLFSetI.exe" [2011-09-16 206208]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-06-11 861216]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.mechalle04.de/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://acer.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Free YouTube Download - c:\users\Melanie\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Melanie\AppData\Roaming\Mozilla\Firefox\Profiles\jet5q2o7.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-1432040542-156192184-1118736734-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-1432040542-156192184-1118736734-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (S-1-5-21-1432040542-156192184-1118736734-1000)
@Denied: (2) (LocalSystem)
"Progid"="Applications\\iexplore.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_265_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_265_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_265_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_265_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_265.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_265.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_265.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_265.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-09-16 18:09:11 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-09-16 16:09
.
Vor Suchlauf: 9 Verzeichnis(se), 418.807.967.744 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 419.507.998.720 Bytes frei
.
- - End Of File - - D2BD7E40472F0197A990D1E54E6099FC
|
|
17.09.2012, 09:24
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Adobe Flash Player funktioniert nicht mehr Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
17.09.2012, 17:18
| #23 |
| | Adobe Flash Player funktioniert nicht mehr Ich hoffe, das ist alles so richtig. GMER (Hier sei angemerkt, das in der rechten Auswahlleiste nur nur die unteren 3 Häckchen gesetzt waren. Bei den anderen war das nicht möglich). GMER Logfile: Code:
ATTFilter GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-09-17 18:12:53
Windows 6.1.7601 Service Pack 1
Running: zpv64dyv.exe
---- Files - GMER 1.0.15 ----
File C:\Windows\Temp\TMP000000DEF8C590EF47647F22 524288 bytes
---- EOF - GMER 1.0.15 ----
OSAM Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 17:15:39 on 17.09.2012 OS: Windows 7 Home Premium Edition Service Pack 1 (Build 7601), 64-bit Default Browser: Microsoft Corporation Internet Explorer 9.00.8112.16421 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Common] -----( %SystemRoot%\Tasks )----- "GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "avgntflt" (avgntflt) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avgntflt.sys "avipbb" (avipbb) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avipbb.sys "catchme" (catchme) - ? - C:\ComboFix\catchme.sys (File not found) "FssFltr" (fssfltr) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\fssfltr.sys "MBAMProtector" (MBAMProtector) - "Malwarebytes Corporation" - C:\Windows\system32\drivers\mbam.sys "NTIDrvr" (NTIDrvr) - "NTI Corporation" - C:\Windows\system32\drivers\NTIDrvr.sys "SASDIFSV" (SASDIFSV) - "SUPERAdBlocker.com and SUPERAntiSpyware.com" - C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS "SASKUTIL" (SASKUTIL) - "SUPERAdBlocker.com and SUPERAntiSpyware.com" - C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS "Sftfs" (Sftfs) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftfslh.sys "Sftplay" (Sftplay) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftplaylh.sys "Sftredir" (Sftredir) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftredirlh.sys "Sftvol" (Sftvol) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftvollh.sys "UBHelper" (UBHelper) - "NTI Corporation" - C:\Windows\system32\drivers\UBHelper.sys [Explorer] -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll -----( HKLM\Software\Classes\Protocols\Handler )----- {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} "Album Download IE Asynchronous Pluggable Protocol Interface" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL {828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll {828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll {91774881-D725-4E58-B298-07617B9B86A8} "Skype IE add-on Pluggable Protocol" - "Skype Technologies S.A." - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll {03C514A3-1EFB-4856-9F99-10D7BE1653C0} "Windows Live Mail HTML Asynchronous Pluggable Protocol Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {5E2121EE-0300-11D4-8D3B-444553540000} "Catalyst Context Menu extension" - ? - (File not found | COM-object registry key not found) {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} "DragDropProtect Class" - "Egis Technology Inc." - C:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} "WinRAR" - "Alexander Roshal" - C:\Program Files\rarext.dll {B41DB860-64E4-11D2-9906-E49FADC173CA} "WinRAR shell extension" - ? - (File not found | COM-object registry key not found) {0563DB41-F538-4B37-A92D-4659049B7766} "WLMD Message Handler" - ? - (File not found | COM-object registry key not found) {06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe [Internet Explorer] -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- <binary data> "Google Toolbar" - "Google Inc." - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) ITBar7Height64 "ITBar7Height64" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {166B1BCA-3F9C-11CF-8075-444553540000} "Shockwave ActiveX Control" - "Adobe Systems, Inc." - C:\Windows\SysWow64\Adobe\Director\SwDir_1165635.dll / hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab {D27CDB6E-AE6D-11CF-96B8-444553540000} "Shockwave Flash Object" - "Adobe Systems, Inc." - C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_4_402_265.ocx / hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} "@C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll {5F7B1267-94A9-47F5-98DB-E99415F33AEC} "@C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll {898EA8C8-E7FF-479B-8935-AEC46303B9E5} "Skype Click to Call" - "Skype Technologies S.A." - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )----- <binary data> "Google Toolbar" - "Google Inc." - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {AA58ED58-01DD-4d91-8333-CF10577473F7} "Google Toolbar Helper" - "Google Inc." - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} "Skype Browser Helper" - "Skype Technologies S.A." - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live ID-Anmelde-Hilfsprogramm" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll {9FDDE16B-836F-4806-AB1F-1455CBEFF289} "Windows Live Messenger Companion Helper" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [LSA Providers] -----( HKLM\SYSTEM\CurrentControlSet\Control\Lsa )----- "Security Packages" - "Microsoft Corp." - C:\Windows\system32\livessp.dll [Logon] -----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )----- "Advanced SystemCare 5" - "IObit" - "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart "msnmsgr" - "Microsoft Corporation" - "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background "SUPERAntiSpyware" - "SUPERAntiSpyware.com" - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe "swg" - "Google Inc." - "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "avgnt" - "Avira GmbH" - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min "BackupManagerTray" - "NewTech Infosystems, Inc." - "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k "EgisTecPMMUpdate" - "Egis Technology Inc." - "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" "EgisUpdate" - "Egis Technology Inc." - "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d "LManager" - "Dritek System Inc." - C:\Program Files (x86)\Launch Manager\LManager.exe "StartCCC" - "Advanced Micro Devices, Inc." - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun "SuiteTray" - "Egis Technology Inc." - "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll (File not found) "@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe" (File not found) "Acer ePower Service" (ePowerSvc) - "Acer Incorporated" - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe "Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe "Advanced SystemCare Service 5" (AdvancedSystemCareService5) - "IObit" - C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe "Application Virtualization Client" (sftlist) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe "Application Virtualization Service Agent" (sftvsa) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe "Avira AntiVir Guard" (AntiVirService) - "Avira GmbH" - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe "Avira AntiVir Planer" (AntiVirSchedulerService) - "Avira GmbH" - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe "Client Virtualization Handler" (cvhsvc) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE "Dritek WMI Service" (DsiWMIService) - "Dritek System Inc." - C:\Program Files (x86)\Launch Manager\dsiwmis.exe "FLEXnet Licensing Service" (FLEXnet Licensing Service) - "Acresso Software Inc." - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe "Google Software Updater" (gusvc) - "Google" - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe "Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "GREGService" (GREGService) - "Acer Incorporated" - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe "MBAMScheduler" (MBAMScheduler) - "Malwarebytes Corporation" - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe "MBAMService" (MBAMService) - "Malwarebytes Corporation" - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe "Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe "MyWinLocker Service" (MWLService) - "Egis Technology Inc." - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe "NTI IScheduleSvc" (NTI IScheduleSvc) - "NewTech Infosystems, Inc." - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe "Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE "Office Software Protection Platform" (osppsvc) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE "SAS Core Service" (!SASCORE) - "SUPERAntiSpyware.com" - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE "Skype Updater" (SkypeUpdate) - "Skype Technologies" - C:\Program Files (x86)\Skype\Updater\Updater.exe "Updater Service" (Updater Service) - "Acer Group" - C:\Program Files\Acer\Acer Updater\UpdaterService.exe "Windows Live Family Safety Service" (fsssvc) - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe "Windows Live ID Sign-in Assistant" (wlidsvc) - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [Winsock Providers] -----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )----- "WindowsLive Local NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL "WindowsLive NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL ===[ Logfile end ]=========================================[ Logfile end ]=== If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-09-17 17:17:11
-----------------------------
17:17:11.515 OS Version: Windows x64 6.1.7601 Service Pack 1
17:17:11.515 Number of processors: 2 586 0x603
17:17:11.515 ComputerName: MELANIE-PC UserName: Melanie
17:17:14.807 Initialize success
17:18:52.340 AVAST engine defs: 12091400
17:20:09.498 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
17:20:09.498 Disk 0 Vendor: Hitachi_HTS545050B9A300 PB4OC60F Size: 476940MB BusType: 11
17:20:09.529 Disk 0 MBR read successfully
17:20:09.529 Disk 0 MBR scan
17:20:09.544 Disk 0 Windows 7 default MBR code
17:20:09.560 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13312 MB offset 2048
17:20:09.607 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 27265024
17:20:09.654 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 463526 MB offset 27469824
17:20:09.700 Disk 0 scanning C:\Windows\system32\drivers
17:20:28.140 Service scanning
17:21:27.420 Modules scanning
17:21:27.435 Disk 0 trace - called modules:
17:21:27.467 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
17:21:27.981 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80045d7060]
17:21:27.981 3 CLASSPNP.SYS[fffff88000e7b43f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004563680]
17:21:32.677 AVAST engine scan C:\Windows
17:21:41.803 AVAST engine scan C:\Windows\system32
17:27:46.188 AVAST engine scan C:\Windows\system32\drivers
17:28:16.749 AVAST engine scan C:\Users\Melanie
17:44:09.911 AVAST engine scan C:\ProgramData
17:45:12.779 Scan finished successfully
18:09:44.501 Disk 0 MBR has been saved successfully to "C:\Users\Melanie\Desktop\MBR.dat"
18:09:44.516 The log file has been saved successfully to "C:\Users\Melanie\Desktop\aswMBR.txt"
|
|
17.09.2012, 20:43
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Adobe Flash Player funktioniert nicht mehr Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.09.2012, 17:04
| #25 |
| | Adobe Flash Player funktioniert nicht mehr Hoffe das ist richtig Malware Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.65.0.1400 www.malwarebytes.org Datenbank Version: v2012.09.18.03 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Melanie :: MELANIE-PC [Administrator] Schutz: Aktiviert 18.09.2012 16:13:55 mbam-log-2012-09-18 (16-13-55).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|Q:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 319904 Laufzeit: 57 Minute(n), 36 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) SuperAntiSpyware Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 09/18/2012 at 05:56 PM
Application Version : 5.0.1118
Core Rules Database Version : 9246
Trace Rules Database Version: 7058
Scan type : Complete Scan
Total Scan Time : 00:39:16
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User
Memory items scanned : 697
Memory threats detected : 0
Registry items scanned : 41267
Registry threats detected : 0
File items scanned : 47691
File threats detected : 12
Adware.Tracking Cookie
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\MUEHWAY0.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\D0NO57YX.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\4IYO4MTG.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\A1FEIH4T.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\KZMFWS87.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\C3WK7551.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\X4QJVILX.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\RI6B566E.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\3E9D6V66.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\80K3377M.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\S40YML5P.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\RM5XWCVW.txt
|
|
19.09.2012, 13:25
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Adobe Flash Player funktioniert nicht mehrCode:
ATTFilter UAC On - Limited User
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.09.2012, 15:29
| #27 |
| | Adobe Flash Player funktioniert nicht mehr Ja ich habe SUPERAntiSpyware per doppelklick geöffnet.Wieso war es falsch???? |
|
19.09.2012, 16:25
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Adobe Flash Player funktioniert nicht mehr Wie wär's mal wenn du das machst was in der Anleitung steht? 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.09.2012, 17:30
| #29 |
| | Adobe Flash Player funktioniert nicht mehr Ich habe das jetzt nochmal gemacht.Ich habe als erstes das Programm als Administrator geöffnet habe dann alle Laufwerke angeklickt.Vorher noch ein Update gemacht und das hat er nach Beendigung des Scans mir angezeigt: Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 09/19/2012 at 06:15 PM
Application Version : 5.0.1118
Core Rules Database Version : 9252
Trace Rules Database Version: 7064
Scan type : Complete Scan
Total Scan Time : 00:41:22
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User
Memory items scanned : 692
Memory threats detected : 0
Registry items scanned : 41267
Registry threats detected : 0
File items scanned : 49531
File threats detected : 11
Adware.Tracking Cookie
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\VPCOR2WP.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\M9TOAH1K.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\TFLR8V24.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\EVIH3GAK.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\QAB3H3SK.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\KA8VWRH0.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\VJSKZW9S.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\9DK19IXF.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\D7PPEY47.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\VZOG2BHR.txt
C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Cookies\4029TPJJ.txt
Da steht aber jetzt das auch wieder da was du mir vorher gepostet hast ( UAC On - Limited User ) Keine Ahnung wie ich das umändern kann oder was ich noch machen soll. |
|
20.09.2012, 10:00
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Adobe Flash Player funktioniert nicht mehr Wenn du wirklich als Admin das ausgeführt hast per Rechtskick, scheint das ein Bug von SUPERAntiSpyware zu sein Sieht ok aus, da wurden nur Cookies gefunden. Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat. Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/ Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Adobe Flash Player funktioniert nicht mehr |
| adobe, adobe flash player, brauche, deinstalliert, durchsucht, flash, flash player, foren, funktionier, funktioniert, funktioniert nicht, funktioniert nicht mehr, knapp, mehreren, mehrfach, monate, neu, neues, neueste, nicht installiert, nicht mehr, player, seite, seiten, version, weiterhelfen |
Linear-Darstellung
