Unbekannter Störenfried

sniper1983 · 11.10.2012, 05:55

Hallo @all,

mich plaggt seit einigen Wochen ein Störenfried, den ich mir blöderweise mit der Installation einer Suchleiste eingefangen habe. Die Suchleiste wurde wieder deinstalliert und Teile des Störenfrieds entfernt. Aber irgendwie funktioniert der Rechner noch nicht einwandfrei. Ich hab mich an den 2.Punkt der Hauptseite gehalten und die Scans durchgeführt.

OTL.txt

OTL logfile created on: 02.10.2012 22:40:26 - Run 7
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Users\+++\Downloads
64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000c07 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy

15,93 Gb Total Physical Memory | 13,51 Gb Available Physical Memory | 84,77% Memory free
31,86 Gb Paging File | 29,37 Gb Available in Paging File | 92,18% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 171,76 Gb Free Space | 18,44% Space Free | Partition Type: NTFS
Drive D: | 931,51 Gb Total Space | 456,32 Gb Free Space | 48,99% Space Free | Partition Type: NTFS
Drive E: | 465,75 Gb Total Space | 322,30 Gb Free Space | 69,20% Space Free | Partition Type: NTFS
Drive F: | 3,83 Gb Total Space | 1,99 Gb Free Space | 51,99% Space Free | Partition Type: FAT32
Drive L: | 100,00 Mb Total Space | 31,84 Mb Free Space | 31,84% Space Free | Partition Type: NTFS

Computer Name: PC | User Name: +++ | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012.09.19 19:09:18 | 001,701,400 | ---- | M] () -- C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
PRC - [2012.08.08 20:44:24 | 000,348,664 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012.07.27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.06.07 08:08:32 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2012.05.24 20:39:22 | 027,112,840 | ---- | M] (Dropbox, Inc.) -- C:\Users\+++\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2012.05.08 20:54:26 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2012.05.08 20:54:23 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2012.04.22 17:40:00 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\+++\Downloads\OTL.exe
PRC - [2012.02.23 13:30:40 | 000,059,240 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
PRC - [2011.04.25 02:24:16 | 000,726,976 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
PRC - [2011.04.25 02:22:40 | 000,305,088 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
PRC - [2011.02.04 15:10:58 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\SysWOW64\nlssrv32.exe
PRC - [2010.11.02 06:34:33 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\schtasks.exe
PRC - [2010.08.06 20:32:49 | 007,028,232 | ---- | M] (adidas) -- C:\Program Files (x86)\adidas\miCoach Manager\miCoachManager.exe
PRC - [2010.07.06 17:03:00 | 000,173,352 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
PRC - [2010.05.04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2010.03.30 16:20:56 | 000,069,120 | ---- | M] (EIZO NANAO CORPORATION) -- C:\Programme\EIZO\ColorNavigator\ColorNavigatorAgent.exe
PRC - [2009.10.21 06:12:50 | 000,106,496 | ---- | M] (NEC Electronics Corporation) -- C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2009.10.02 13:26:12 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2009.10.02 13:26:10 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2009.09.30 14:02:50 | 002,320,920 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2009.09.30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009.08.06 07:51:20 | 000,065,536 | R--- | M] () -- C:\Windows\SysWOW64\XSrvSetup.exe
PRC - [2009.08.04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
PRC - [2009.08.04 17:29:52 | 000,346,320 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
PRC - [2009.03.05 17:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009.01.26 16:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2007.03.06 17:58:16 | 001,060,376 | ---- | M] () -- C:\Program Files (x86)\Labtec\WebCam10\WebCam10.exe
PRC - [2007.03.06 17:51:26 | 000,252,704 | ---- | M] (Labtec Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\LVComSX.exe
PRC - [2007.03.06 17:48:46 | 000,488,984 | ---- | M] (Labtec Inc,) -- C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\Communications_Helper.exe

========== Modules (No Company Name) ==========

MOD - [2012.10.02 22:38:19 | 000,043,520 | ---- | M] () -- D:\tempdat\proxy_vole3041828562119494807.dll
MOD - [2012.09.19 19:09:18 | 002,098,200 | ---- | M] () -- c:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll
MOD - [2012.09.19 19:09:18 | 001,701,400 | ---- | M] () -- C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
MOD - [2012.06.15 05:25:50 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\009c50fb69919b90fb233cb4c35d0ad7\System.Windows.Forms.ni.dll
MOD - [2012.06.15 05:25:17 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ebefde27b0ef7f39bb49c493b34a602c\System.Drawing.ni.dll
MOD - [2012.05.09 09:06:31 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0c00b1a8336dd4c1bd1ebce7780f20b4\System.Runtime.Remoting.ni.dll
MOD - [2012.05.09 09:05:49 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll
MOD - [2012.05.09 09:05:44 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll
MOD - [2012.05.09 09:05:42 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll
MOD - [2012.05.09 09:05:41 | 007,952,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll
MOD - [2012.05.09 09:05:31 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll
MOD - [2011.09.27 07:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011.09.27 07:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010.08.06 20:32:34 | 000,842,726 | ---- | M] () -- C:\Program Files (x86)\adidas\miCoach Manager\JNativeCpp.dll
MOD - [2010.08.06 20:32:33 | 000,008,192 | ---- | M] () -- C:\Program Files (x86)\adidas\miCoach Manager\UMSDriveResolver.dll
MOD - [2010.03.30 15:34:48 | 000,167,424 | ---- | M] () -- C:\Programme\EIZO\ColorNavigator\CNHid.dll
MOD - [2010.03.30 15:33:36 | 000,082,944 | ---- | M] () -- C:\Programme\EIZO\ColorNavigator\ColorProfile.dll
MOD - [2010.03.30 15:33:18 | 000,055,808 | ---- | M] () -- C:\Programme\EIZO\ColorNavigator\CNVideo.dll
MOD - [2010.03.30 15:33:00 | 000,047,104 | ---- | M] () -- C:\Programme\EIZO\ColorNavigator\HidUsage.dll
MOD - [2010.03.30 15:32:52 | 000,055,296 | ---- | M] () -- C:\Programme\EIZO\ColorNavigator\CMYKValidation.dll
MOD - [2010.03.30 09:33:12 | 000,165,376 | R--- | M] () -- C:\Programme\EIZO\ColorNavigator\libcolour.dll
MOD - [2010.03.30 09:32:58 | 000,006,656 | ---- | M] () -- C:\Programme\EIZO\ColorNavigator\DisplayAreaSetting.dll
MOD - [2009.07.30 18:15:32 | 000,503,202 | ---- | M] () -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll
MOD - [2009.07.14 19:58:12 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll
MOD - [2007.03.06 18:02:02 | 001,123,864 | ---- | M] () -- C:\Program Files (x86)\Labtec\WebCam10\LAppRes.DLL
MOD - [2007.03.06 17:58:16 | 001,060,376 | ---- | M] () -- C:\Program Files (x86)\Labtec\WebCam10\WebCam10.exe
MOD - [2007.03.06 17:49:10 | 000,022,040 | ---- | M] () -- C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\LCMServerPS.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2009.08.18 02:36:20 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012.09.25 23:20:26 | 000,250,288 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.09.19 19:09:18 | 001,701,400 | ---- | M] () [Auto | Running] -- C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe -- (Browser Manager)
SRV - [2012.09.12 21:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012.09.12 21:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2012.09.06 03:25:06 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.07.27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.07.13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.05.08 20:54:26 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012.05.08 20:54:23 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.02.04 15:10:58 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\SysWOW64\nlssrv32.exe -- (nlsX86cc)
SRV - [2010.07.06 17:03:00 | 000,173,352 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
SRV - [2010.07.04 11:50:48 | 000,099,048 | ---- | M] (tzuk) [Auto | Running] -- C:\Programme\Sandboxie\SbieSvc.exe -- (SbieSvc)
SRV - [2010.05.04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate) @C:\Program Files (x86)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010.01.09 21:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2009.10.02 13:26:12 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R)
SRV - [2009.09.30 14:02:50 | 002,320,920 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009.09.30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009.08.06 07:51:20 | 000,065,536 | R--- | M] () [Auto | Running] -- C:\Windows\SysWOW64\XSrvSetup.exe -- (JMB36X)
SRV - [2009.08.04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007.03.06 17:53:08 | 000,173,344 | ---- | M] (Labtec Inc.) [Auto | Stopped] -- C:\Programme\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2012.08.30 22:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012.07.30 13:32:08 | 000,203,104 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.)
DRV:64bit: - [2012.07.30 13:32:08 | 000,102,240 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.)
DRV:64bit: - [2012.06.26 21:38:28 | 000,046,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2012.05.08 20:54:27 | 000,132,832 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2012.05.08 20:54:27 | 000,098,848 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2012.03.01 08:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.02.15 12:01:50 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011.09.16 16:09:16 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2011.04.25 01:49:16 | 000,087,600 | ---- | M] (Citrix Systems, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ctxusbm.sys -- (ctxusbm)
DRV:64bit: - [2011.03.11 08:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.07.13 18:01:49 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2010.04.28 08:57:50 | 000,061,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010.04.21 18:18:46 | 010,326,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010.03.01 10:35:20 | 000,020,520 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2009.11.27 11:45:06 | 000,295,424 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009.10.29 10:14:38 | 000,115,824 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID)
DRV:64bit: - [2009.10.26 17:19:48 | 000,176,640 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2009.10.26 17:19:46 | 000,075,264 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2009.10.02 12:58:58 | 000,537,112 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009.09.17 07:05:02 | 000,145,448 | ---- | M] (SafeNet, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\sentinel64.sys -- (Sentinel64)
DRV:64bit: - [2009.09.17 07:05:02 | 000,058,792 | ---- | M] (SafeNet, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SNTUSB64.SYS -- (SNTUSB64)
DRV:64bit: - [2009.09.17 06:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2009.08.18 03:48:48 | 006,037,504 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2009.07.09 03:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2007.03.06 17:52:46 | 000,058,400 | ---- | M] (Labtec Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64)
DRV:64bit: - [2007.03.06 17:50:30 | 002,496,928 | ---- | M] (Labtec Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVMVdrv.sys -- (LVMVDrv)
DRV:64bit: - [2007.03.06 17:48:58 | 001,029,024 | ---- | M] (Labtec Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVCKap64.sys -- (LVcKap64)
DRV:64bit: - [2007.03.06 17:48:24 | 000,468,000 | ---- | M] (Labtec Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LV561V64.sys -- (PID_0928) Logitech QuickCam Express(PID_0928)
DRV:64bit: - [2007.01.17 14:32:00 | 000,015,360 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Spyder2.sys -- (Spyder2)
DRV - [2010.07.04 11:50:46 | 000,139,880 | ---- | M] (tzuk) [Kernel | On_Demand | Running] -- C:\Programme\Sandboxie\SbieDrv.sys -- (SbieDrv)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2003.11.28 18:34:40 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\asapiW2k.sys -- (ASAPIW2K)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431245

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = hxxp://www.google.at/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.at/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F5 1C A1 88 B3 1E CB 01 [binary data]
IE - HKCU\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKCU\..\URLSearchHook: {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - No CLSID value found
IE - HKCU\..\SearchScopes,BrowserMngrDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes,DefaultScope = {BBED83C0-DD76-4b95-8E80-E9FCFB0B9952}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes\{BBED83C0-DD76-4b95-8E80-E9FCFB0B9952}: "URL" = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A4067623346&ie=UTF-8&q={searchTerms}&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A4067623346
IE - HKCU\..\SearchScopes\{EDE94726-4526-4942-A912-A97A5CC60F58}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=SPLBR2&pc=SPLH
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.google.at"
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_278.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_35: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53: c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.19: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2010.08.04 21:23:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012.08.20 17:51:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.09.29 07:31:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.09.14 20:40:46 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension [2012.09.19 19:09:19 | 000,000,000 | ---D | M]

[2012.09.23 18:06:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\+++\AppData\Roaming\mozilla\Extensions
[2010.07.21 17:50:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\+++\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2012.09.29 07:37:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\+++\AppData\Roaming\mozilla\Firefox\Profiles\tpy2nq0b.default\extensions
[2012.09.29 07:31:02 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012.09.14 20:40:43 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012.09.14 20:40:43 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
() (No name found) -- C:\USERS\+++\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\TPY2NQ0B.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI
[2012.09.06 03:26:03 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011.04.25 01:58:10 | 000,124,864 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\CCMSDK.dll
[2011.04.25 02:00:08 | 000,071,104 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\CgpCore.dll
[2011.04.25 01:59:06 | 000,092,096 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\confmgr.dll
[2011.04.25 01:58:38 | 000,022,976 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\ctxlogging.dll
[2010.03.27 18:06:04 | 000,067,032 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npContribute.dll
[2011.04.25 02:49:00 | 000,485,288 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\plugins\npicaN.dll
[2012.06.07 08:08:47 | 000,129,144 | ---- | M] (RealPlayer) -- C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll
[2011.04.25 02:00:04 | 000,024,512 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\TcpPServ.dll
[2012.09.06 04:07:37 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.09.19 19:09:02 | 000,002,360 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
[2012.09.06 04:07:37 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012.09.06 04:07:37 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2012.09.06 04:07:37 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.09.06 04:07:37 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.09.06 04:07:37 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2011.12.25 23:07:07 | 000,440,421 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 15140 more lines...
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Programme\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - Reg Error: Value error. File not found
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - Reg Error: Value error. File not found
O3 - HKLM\..\Toolbar: (no name) - {D0F4A166-B8D4-48b8-9D63-80849FE137CB} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft Device Center\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [IntelliType Pro] C:\Program Files\Microsoft Device Center\itype.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [CnOServerLauncher] C:\Windows\SysWow64\CNOServerLauncher.exe ()
O4 - HKLM..\Run: [ColorNavigator] C:\Program Files\EIZO\ColorNavigator\ColorNavigatorAgent.exe (EIZO NANAO CORPORATION)
O4 - HKLM..\Run: [ConnectionCenter] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe (Citrix Systems, Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\Communications_Helper.exe (Labtec Inc,)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files (x86)\Labtec\WebCam10\WebCam10.exe ()
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [PinnacleDriverCheck] C:\Windows\SysWOW64\PSDrvCheck.exe ()
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [TkBellExe] c:\program files (x86)\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [micoach] C:\Program Files (x86)\adidas\miCoach Manager\miCoachManager.exe (adidas)
O4 - HKCU..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)
O4 - HKCU..\Run: [SandboxieControl] C:\Program Files\Sandboxie\SbieCtrl.exe (tzuk)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - Startup: C:\Users\+++\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\+++\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: add to &BOM - C:\\PROGRA~2\\BIET-O~1\\\\AddToBOM.hta ()
O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\+++\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8 - Extra context menu item: add to &BOM - C:\\PROGRA~2\\BIET-O~1\\\\AddToBOM.hta ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\+++\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3019220C-FBE4-4ABC-BC42-47E80A4E4342}: DhcpNameServer = 10.0.0.138
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Filter\application/x-ica - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=euc-jp - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=ISO-8859-1 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=MS936 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=MS949 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=MS950 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=UTF8 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=UTF-8 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=euc-jp - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=ISO-8859-1 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=MS936 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=MS949 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=MS950 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=UTF8 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=UTF-8 - No CLSID value found
O18:64bit: - Protocol\Filter\ica - No CLSID value found
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/x-ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=euc-jp {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=ISO-8859-1 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=MS936 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=MS949 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=MS950 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=UTF8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=UTF-8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=euc-jp {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=ISO-8859-1 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=MS936 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=MS949 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=MS950 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=UTF8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=UTF-8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O20 - AppInit_DLLs: (c:\progra~3\browse~1\22643~1.41\{16cdf~1\browse~1.dll) - c:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll ()
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.06.23 09:42:32 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012.10.02 21:51:53 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\nostra
[2012.09.30 15:54:34 | 000,000,000 | ---D | C] -- C:\Users\+++\Documents\Wings Platinum Projects
[2012.09.30 15:52:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AV Stumpfl
[2012.09.30 15:52:37 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2012.09.30 15:52:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AV Stumpfl
[2012.09.30 09:03:51 | 000,145,448 | ---- | C] (SafeNet, Inc.) -- C:\Windows\SysNative\drivers\sentinel64.sys
[2012.09.30 09:03:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SafeNet Sentinel
[2012.09.30 09:03:08 | 000,000,000 | ---D | C] -- C:\Users\+++\Documents\Downloaded Installations
[2012.09.29 07:31:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012.09.26 10:30:35 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\Gundi 1x teil 2
[2012.09.25 11:05:50 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\21x15 Gundi
[2012.09.25 10:06:42 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\Gundi 10x15
[2012.09.25 10:00:05 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\Gundi 4x
[2012.09.25 09:59:54 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\Gundi 3x
[2012.09.25 09:59:41 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\Gundi 2x
[2012.09.25 09:59:22 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\Gundi 1x zusätzliche
[2012.09.25 09:59:09 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\Gundi 1x
[2012.09.24 00:21:09 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2012.09.23 18:26:34 | 000,000,000 | ---D | C] -- C:\Program Files\Nightly
[2012.09.23 11:34:12 | 000,000,000 | ---D | C] -- C:\Users\+++\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2012.09.19 19:10:38 | 000,000,000 | ---D | C] -- C:\Users\+++\AppData\Roaming\TuneUp Software
[2012.09.19 19:10:31 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2012.09.19 19:10:30 | 000,000,000 | -HSD | C] -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2012.09.19 19:10:30 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2012.09.19 19:09:22 | 000,000,000 | ---D | C] -- C:\Users\+++\Start Menu
[2012.09.19 19:09:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Browser Manager
[2012.09.19 19:09:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
[2012.09.14 20:40:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012.09.06 18:24:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012.09.05 11:20:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012.09.05 11:20:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012.09.05 10:38:27 | 000,000,000 | ---D | C] -- C:\Users\+++\Desktop\Gundi September ALLE
[1 C:\Users\+++\Desktop\*.tmp files -> C:\Users\+++\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.10.02 22:44:36 | 000,015,040 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.10.02 22:44:36 | 000,015,040 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.10.02 22:37:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.10.02 22:37:02 | 4241,084,414 | -HS- | M] () -- C:\hiberfil.sys
[2012.10.02 22:26:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.10.02 11:08:12 | 001,507,406 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012.10.02 11:08:12 | 000,657,660 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2012.10.02 11:08:12 | 000,618,936 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012.10.02 11:08:12 | 000,131,032 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2012.10.02 11:08:12 | 000,107,256 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012.10.01 21:54:41 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012.09.30 22:53:27 | 000,002,070 | -H-- | M] () -- C:\Users\+++\Documents\Default.rdp
[2012.09.30 16:20:36 | 000,002,072 | ---- | M] () -- C:\Users\+++\Desktop\Wings Platinum.lnk
[2012.09.30 16:19:47 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2012.09.30 13:12:31 | 000,135,975 | ---- | M] () -- C:\Users\+++\Desktop\Unbenannt.JPG
[2012.09.30 09:03:08 | 002,568,704 | ---- | M] () -- C:\Sentinel System Driver Installer 7.5.1.msi
[2012.09.29 23:31:26 | 000,039,117 | ---- | M] () -- C:\Users\+++\Desktop\orf.JPG
[2012.09.29 07:31:18 | 000,001,096 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012.09.26 20:49:13 | 000,022,342 | ---- | M] () -- C:\Users\+++\Documents\cc_20120926_204904.reg
[2012.09.23 18:06:19 | 000,331,511 | ---- | M] () -- C:\Users\+++\Desktop\bookmarks.html
[2012.09.23 11:37:30 | 000,002,017 | ---- | M] () -- C:\Users\+++\Desktop\Kies Air Discovery Service.lnk
[2012.09.19 19:09:11 | 000,000,315 | ---- | M] () -- C:\user.js
[2012.09.19 19:09:01 | 000,002,023 | ---- | M] () -- C:\Users\Public\Desktop\MyPhoneExplorer.lnk
[2012.09.17 20:47:32 | 000,081,529 | ---- | M] () -- C:\Users\+++\Desktop\A-D Adressen September.csv
[1 C:\Users\+++\Desktop\*.tmp files -> C:\Users\+++\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.09.30 15:52:40 | 000,002,072 | ---- | C] () -- C:\Users\+++\Desktop\Wings Platinum.lnk
[2012.09.30 13:12:31 | 000,135,975 | ---- | C] () -- C:\Users\+++\Desktop\Unbenannt.JPG
[2012.09.30 09:03:18 | 002,568,704 | ---- | C] () -- C:\Sentinel System Driver Installer 7.5.1.msi
[2012.09.29 23:31:26 | 000,039,117 | ---- | C] () -- C:\Users\+++\Desktop\orf.JPG
[2012.09.29 07:31:18 | 000,001,096 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012.09.29 07:31:17 | 000,001,108 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012.09.26 20:49:10 | 000,022,342 | ---- | C] () -- C:\Users\+++\Documents\cc_20120926_204904.reg
[2012.09.23 18:06:19 | 000,331,511 | ---- | C] () -- C:\Users\+++\Desktop\bookmarks.html
[2012.09.23 11:37:30 | 000,002,017 | ---- | C] () -- C:\Users\+++\Desktop\Kies Air Discovery Service.lnk
[2012.09.19 19:09:11 | 000,000,315 | ---- | C] () -- C:\user.js
[2012.09.19 19:09:01 | 000,002,023 | ---- | C] () -- C:\Users\Public\Desktop\MyPhoneExplorer.lnk
[2012.09.17 20:47:31 | 000,081,529 | ---- | C] () -- C:\Users\+++\Desktop\A-D Adressen September.csv
[2012.07.27 09:13:19 | 000,000,017 | ---- | C] () -- C:\Users\+++\AppData\Local\resmon.resmoncfg
[2012.04.14 11:11:39 | 000,000,034 | ---- | C] () -- C:\Windows\cdplayer.ini
[2012.01.23 21:25:30 | 000,000,132 | ---- | C] () -- C:\Users\+++\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011.11.19 19:05:01 | 000,170,504 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2011.02.21 23:17:34 | 000,003,584 | ---- | C] () -- C:\Windows\SysWow64\SilverEfexPro2FC32.dll
[2011.01.02 13:35:13 | 000,015,873 | ---- | C] () -- C:\Windows\SysWow64\Inetde.dll

========== LOP Check ==========

[2010.07.20 17:46:47 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\adidas
[2011.01.24 20:04:29 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\BOM
[2012.05.07 20:54:57 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\CD-LabelPrint
[2010.09.07 19:16:28 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011.05.03 14:34:34 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\Cyberduck
[2012.09.30 08:55:42 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\DirektFotoSystem3
[2012.04.16 19:16:19 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\DriverCure
[2012.10.02 22:37:47 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\Dropbox
[2010.10.09 10:13:28 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\DVDVideoSoftIEHelpers
[2012.04.14 10:23:01 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\FreeAudioPack
[2012.06.29 08:51:58 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\ICAClient
[2010.10.14 17:00:40 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\Juniper Networks
[2012.09.19 19:43:48 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\MyPhoneExplorer
[2011.07.04 20:55:32 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\onOne Software
[2010.07.12 20:03:22 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\OpenOffice.org
[2011.12.09 17:38:08 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\pdfforge
[2011.06.28 21:22:29 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\Philipp Winterberg
[2012.02.09 14:15:48 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\redsn0w
[2012.05.01 21:33:39 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\SmartTools
[2012.04.16 19:16:19 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\SpeedyPC Software
[2010.08.07 12:16:51 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011.09.05 21:13:36 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\TeamViewer
[2012.04.16 19:33:04 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\TestApp
[2010.07.21 17:50:33 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\Thunderbird
[2012.09.19 19:10:38 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\TuneUp Software
[2010.07.13 18:02:25 | 000,000,000 | ---D | M] -- C:\Users\+++\AppData\Roaming\Vso
[2011.05.03 14:22:39 | 000,000,000 | -HSD | M] -- C:\Users\+++\AppData\Roaming\wyUpdate AU
[2012.09.23 17:47:25 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:A8ADE5D8
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp

FC5A2B2

< End of report >

Besten Dank für euere Hilfe im Voraus!

cosinus · 11.10.2012, 18:14

Bitte nun routinemäßig einen Vollscan mit Malwarebytes machen und Log posten. =>ALLE lokalen Datenträger (außer CD/DVD) überprüfen lassen!
Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss!

Die Funde mit Malwarebytes bitte alle entfernen, sodass sie in der Quarantäne von Malwarebytes aufgehoben werden! NICHTS voreilig aus der Quarantäne entfernen!

Falls Logs aus älteren Scans mit Malwarebytes vorhanden sind, bitte auch davon alle posten!

Bitte alles nach Möglichkeit hier in CODE-Tags posten.

Wird so gemacht:

[code] hier steht das Log [/code]

Und das ganze sieht dann so aus:

Code:

ATTFilter

 hier steht das Log

sniper1983 · 30.10.2012, 09:56

Älter Scans sind leider nicht vorhanden, der aktuelle ist anbei. Besten Danken im Voraus

Code:

ATTFilter

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Datenbank Version: v2012.10.21.05

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
*** :: PC [Administrator]

21.10.2012 19:53:06
mbam-log-2012-10-22 (05-36-44).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|L:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 929823
Laufzeit: 4 Stunde(n), 35 Minute(n), 25 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 2
D:\Meine Daten\Downloads\SoftonicDownloader_fuer_windows-media-player-plugin(1).exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
D:\Meine Daten\Downloads\SoftonicDownloader_fuer_windows-media-player-plugin.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.

(Ende)

cosinus · 31.10.2012, 17:43

1. aswMBR

Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.

Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehlalarm!

Starte die aswMBR.exe Vista und Win7 User aswMBR per Rechtsklick "als Administrator ausführen"
Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen) Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
Klicke auf Scan.
Warte bitte bis Scan finished successfully im DOS Fenster steht.
Drücke auf Save Log und speichere diese auf dem Desktop.

Poste mir die aswMBR.txt in deiner nächsten Antwort. Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte es erneut nicht klappen teile mir das bitte mit.

Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.

2. TDSS-Killer

Download TDSS-Killer auf Desktop siehe => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

sniper1983 · 13.11.2012, 15:39

Hier das log von aswMBR

Code:

ATTFilter

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-11-02 16:05:12
-----------------------------
16:05:12.735    OS Version: Windows x64 6.1.7600 
16:05:12.735    Number of processors: 4 586 0x2502
16:05:12.735    ComputerName: PC  UserName: 
16:05:13.671    Initialize success
16:05:19.724    AVAST engine defs: 12110200
16:05:41.533    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Scsi\JRAID1Port0Path0Target0Lun0
16:05:41.533    Disk 0 Vendor: WDC_____ 500. Size: 953869MB BusType: 8
16:05:41.533    Disk 1  \Device\Harddisk1\DR1 -> \Device\Scsi\JRAID1Port0Path0Target1Lun0
16:05:41.533    Disk 1 Vendor: WDC_____ 500. Size: 953869MB BusType: 8
16:05:41.533    Disk 2  \Device\Harddisk2\DR2 -> \Device\Ide\IAAStorageDevice-0
16:05:41.533    Disk 2 Vendor: Hitachi_ GM4O Size: 476940MB BusType: 3
16:05:41.595    Disk 0 MBR read successfully
16:05:41.595    Disk 0 MBR scan
16:05:41.611    Disk 0 Windows 7 default MBR code
16:05:41.611    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 2048
16:05:41.627    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       953767 MB offset 206848
16:05:41.689    Disk 0 scanning C:\Windows\system32\drivers
16:05:59.909    Service scanning
16:06:27.209    Modules scanning
16:06:27.209    Disk 0 trace - called modules:
16:06:27.225    ntoskrnl.exe CLASSPNP.SYS disk.sys SCSIPORT.SYS hal.dll jraid.sys 
16:06:27.240    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800f6fd060]
16:06:27.240    3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> \Device\Scsi\JRAID1Port0Path0Target0Lun0[0xfffffa800d56a050]
16:06:27.256    Scan finished successfully
16:07:13.058    Disk 0 MBR has been saved successfully to "C:\Users\***\Desktop\factum\MBR.dat"
16:07:13.058    The log file has been saved successfully to "C:\Users\***\Desktop\factum\aswMBR_scan.txt"

Hier das log von TDSSKiller

Code:

ATTFilter

16:10:36.0197 6444  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:10:36.0353 6444  ============================================================
16:10:36.0353 6444  Current date / time: 2012/11/02 16:10:36.0353
16:10:36.0353 6444  SystemInfo:
16:10:36.0353 6444  
16:10:36.0353 6444  OS Version: 6.1.7600 ServicePack: 0.0
16:10:36.0353 6444  Product type: Workstation
16:10:36.0353 6444  ComputerName: PC
16:10:36.0353 6444  UserName: ***
16:10:36.0353 6444  Windows directory: C:\Windows
16:10:36.0353 6444  System windows directory: C:\Windows
16:10:36.0353 6444  Running under WOW64
16:10:36.0353 6444  Processor architecture: Intel x64
16:10:36.0353 6444  Number of processors: 4
16:10:36.0353 6444  Page size: 0x1000
16:10:36.0353 6444  Boot type: Normal boot
16:10:36.0353 6444  ============================================================
16:10:37.0024 6444  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
16:10:37.0024 6444  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
16:10:37.0024 6444  Drive \Device\Harddisk2\DR2 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:10:37.0087 6444  Drive \Device\Harddisk7\DR7 - Size: 0x1D1C0F00000 (1863.01 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:10:37.0087 6444  Drive \Device\Harddisk8\DR8 - Size: 0x3BA816000 (14.91 Gb), SectorSize: 0x200, Cylinders: 0x79A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:10:37.0087 6444  ============================================================
16:10:37.0087 6444  \Device\Harddisk0\DR0:
16:10:37.0087 6444  MBR partitions:
16:10:37.0087 6444  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:10:37.0087 6444  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
16:10:37.0087 6444  \Device\Harddisk1\DR1:
16:10:37.0087 6444  MBR partitions:
16:10:37.0087 6444  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
16:10:37.0087 6444  \Device\Harddisk2\DR2:
16:10:37.0087 6444  MBR partitions:
16:10:37.0087 6444  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A380D41
16:10:37.0087 6444  \Device\Harddisk7\DR7:
16:10:37.0087 6444  MBR partitions:
16:10:37.0087 6444  \Device\Harddisk7\DR7\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
16:10:37.0087 6444  \Device\Harddisk8\DR8:
16:10:37.0087 6444  MBR partitions:
16:10:37.0087 6444  \Device\Harddisk8\DR8\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x1DD3C81
16:10:37.0087 6444  ============================================================
16:10:37.0133 6444  C: <-> \Device\Harddisk0\DR0\Partition2
16:10:37.0133 6444  E: <-> \Device\Harddisk2\DR2\Partition1
16:10:37.0149 6444  D: <-> \Device\Harddisk1\DR1\Partition1
16:10:37.0149 6444  L: <-> \Device\Harddisk0\DR0\Partition1
16:10:37.0165 6444  R: <-> \Device\Harddisk7\DR7\Partition1
16:10:37.0165 6444  ============================================================
16:10:37.0165 6444  Initialize success
16:10:37.0165 6444  ============================================================
16:10:49.0442 3816  ============================================================
16:10:49.0442 3816  Scan started
16:10:49.0442 3816  Mode: Manual; SigCheck; TDLFS; 
16:10:49.0442 3816  ============================================================
16:10:49.0691 3816  ================ Scan system memory ========================
16:10:49.0691 3816  System memory - ok
16:10:49.0691 3816  ================ Scan services =============================
16:10:49.0769 3816  [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
16:10:49.0847 3816  1394ohci - ok
16:10:49.0863 3816  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
16:10:49.0879 3816  ACPI - ok
16:10:49.0894 3816  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
16:10:49.0894 3816  AcpiPmi - ok
16:10:50.0050 3816  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:10:50.0066 3816  AdobeARMservice - ok
16:10:50.0175 3816  [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:10:50.0206 3816  AdobeFlashPlayerUpdateSvc - ok
16:10:50.0237 3816  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
16:10:50.0269 3816  adp94xx - ok
16:10:50.0300 3816  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
16:10:50.0331 3816  adpahci - ok
16:10:50.0378 3816  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
16:10:50.0393 3816  adpu320 - ok
16:10:50.0440 3816  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:10:50.0487 3816  AeLookupSvc - ok
16:10:50.0534 3816  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\Windows\system32\drivers\afd.sys
16:10:50.0565 3816  AFD - ok
16:10:50.0581 3816  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
16:10:50.0596 3816  agp440 - ok
16:10:50.0612 3816  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
16:10:50.0627 3816  ALG - ok
16:10:50.0627 3816  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
16:10:50.0643 3816  aliide - ok
16:10:50.0674 3816  [ D696F317BD465A602566F8E1DCCE15F7 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:10:50.0690 3816  AMD External Events Utility - ok
16:10:50.0690 3816  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
16:10:50.0705 3816  amdide - ok
16:10:50.0705 3816  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
16:10:50.0721 3816  AmdK8 - ok
16:10:50.0721 3816  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
16:10:50.0737 3816  AmdPPM - ok
16:10:50.0783 3816  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:10:50.0799 3816  amdsata - ok
16:10:50.0815 3816  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
16:10:50.0830 3816  amdsbs - ok
16:10:50.0846 3816  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:10:50.0861 3816  amdxata - ok
16:10:50.0955 3816  [ 0A1CC583E8147004E4AD4625D7FBF88C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
16:10:50.0986 3816  AntiVirSchedulerService - ok
16:10:51.0017 3816  [ C9A36EF935ACED86AEDF93E97E606911 ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
16:10:51.0033 3816  AntiVirService - ok
16:10:51.0049 3816  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
16:10:51.0080 3816  AppID - ok
16:10:51.0080 3816  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:10:51.0127 3816  AppIDSvc - ok
16:10:51.0142 3816  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
16:10:51.0158 3816  Appinfo - ok
16:10:51.0220 3816  [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:10:51.0236 3816  Apple Mobile Device - ok
16:10:51.0267 3816  [ EC36746E224A3431463EF8124EBF2FEC ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
16:10:51.0298 3816  AppleCharger - ok
16:10:51.0329 3816  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:10:51.0361 3816  AppMgmt - ok
16:10:51.0392 3816  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
16:10:51.0392 3816  arc - ok
16:10:51.0407 3816  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
16:10:51.0423 3816  arcsas - ok
16:10:51.0439 3816  ASAPIW2K - ok
16:10:51.0470 3816  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:10:51.0517 3816  AsyncMac - ok
16:10:51.0532 3816  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
16:10:51.0548 3816  atapi - ok
16:10:51.0657 3816  [ 52BD95CAA9CAE8977FE043E9AD6D2D0E ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:10:51.0719 3816  atikmdag - ok
16:10:51.0766 3816  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:10:51.0829 3816  AudioEndpointBuilder - ok
16:10:51.0844 3816  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:10:51.0875 3816  AudioSrv - ok
16:10:51.0891 3816  aupjlosd - ok
16:10:51.0907 3816  [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
16:10:51.0922 3816  avgntflt - ok
16:10:51.0922 3816  [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
16:10:51.0938 3816  avipbb - ok
16:10:51.0953 3816  [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
16:10:51.0953 3816  avkmgr - ok
16:10:51.0985 3816  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:10:52.0000 3816  AxInstSV - ok
16:10:52.0031 3816  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
16:10:52.0047 3816  b06bdrv - ok
16:10:52.0078 3816  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:10:52.0094 3816  b57nd60a - ok
16:10:52.0156 3816  [ F29D375926E36E3A56AF4805C7749302 ] BCUService      C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
16:10:52.0187 3816  BCUService - ok
16:10:52.0187 3816  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:10:52.0203 3816  BDESVC - ok
16:10:52.0219 3816  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:10:52.0250 3816  Beep - ok
16:10:52.0281 3816  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
16:10:52.0312 3816  BFE - ok
16:10:52.0343 3816  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\System32\qmgr.dll
16:10:52.0375 3816  BITS - ok
16:10:52.0390 3816  bkikynzq - ok
16:10:52.0390 3816  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:10:52.0406 3816  blbdrive - ok
16:10:52.0484 3816  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:10:52.0515 3816  Bonjour Service - ok
16:10:52.0546 3816  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:10:52.0577 3816  bowser - ok
16:10:52.0593 3816  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:10:52.0624 3816  BrFiltLo - ok
16:10:52.0640 3816  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:10:52.0655 3816  BrFiltUp - ok
16:10:52.0702 3816  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\Windows\System32\browser.dll
16:10:52.0718 3816  Browser - ok
16:10:52.0874 3816  [ 9FCD0930616714A752F48DDBA54F3109 ] Browser Manager C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
16:10:52.0905 3816  Browser Manager - ok
16:10:52.0905 3816  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:10:52.0921 3816  Brserid - ok
16:10:52.0921 3816  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:10:52.0936 3816  BrSerWdm - ok
16:10:52.0952 3816  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:10:52.0967 3816  BrUsbMdm - ok
16:10:52.0967 3816  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:10:52.0983 3816  BrUsbSer - ok
16:10:52.0999 3816  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
16:10:53.0014 3816  BTHMODEM - ok
16:10:53.0030 3816  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
16:10:53.0061 3816  bthserv - ok
16:10:53.0061 3816  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:10:53.0092 3816  cdfs - ok
16:10:53.0108 3816  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:10:53.0123 3816  cdrom - ok
16:10:53.0139 3816  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
16:10:53.0170 3816  CertPropSvc - ok
16:10:53.0186 3816  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
16:10:53.0186 3816  circlass - ok
16:10:53.0201 3816  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
16:10:53.0217 3816  CLFS - ok
16:10:53.0264 3816  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:10:53.0295 3816  clr_optimization_v2.0.50727_32 - ok
16:10:53.0326 3816  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:10:53.0342 3816  clr_optimization_v2.0.50727_64 - ok
16:10:53.0373 3816  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:10:53.0389 3816  clr_optimization_v4.0.30319_32 - ok
16:10:53.0420 3816  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:10:53.0435 3816  clr_optimization_v4.0.30319_64 - ok
16:10:53.0451 3816  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:10:53.0451 3816  CmBatt - ok
16:10:53.0467 3816  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
16:10:53.0482 3816  cmdide - ok
16:10:53.0529 3816  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\Windows\system32\Drivers\cng.sys
16:10:53.0545 3816  CNG - ok
16:10:53.0560 3816  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:10:53.0560 3816  Compbatt - ok
16:10:53.0576 3816  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:10:53.0591 3816  CompositeBus - ok
16:10:53.0591 3816  COMSysApp - ok
16:10:53.0607 3816  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
16:10:53.0623 3816  crcdisk - ok
16:10:53.0669 3816  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:10:53.0685 3816  CryptSvc - ok
16:10:53.0701 3816  [ 4A6173C2279B498CD8F57CAE504564CB ] CSC             C:\Windows\system32\drivers\csc.sys
16:10:53.0716 3816  CSC - ok
16:10:53.0747 3816  [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService      C:\Windows\System32\cscsvc.dll
16:10:53.0763 3816  CscService - ok
16:10:53.0810 3816  [ BA8E5B2291C01EF71CA80E25F0C79D55 ] ctxusbm         C:\Windows\system32\DRIVERS\ctxusbm.sys
16:10:53.0825 3816  ctxusbm - ok
16:10:53.0872 3816  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:10:53.0935 3816  DcomLaunch - ok
16:10:53.0950 3816  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
16:10:53.0997 3816  defragsvc - ok
16:10:54.0028 3816  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:10:54.0044 3816  DfsC - ok
16:10:54.0075 3816  [ 105373D52E71D2D1355AD3ACD18259C3 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
16:10:54.0091 3816  dg_ssudbus - ok
16:10:54.0106 3816  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:10:54.0122 3816  Dhcp - ok
16:10:54.0137 3816  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
16:10:54.0169 3816  discache - ok
16:10:54.0200 3816  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
16:10:54.0231 3816  Disk - ok
16:10:54.0278 3816  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:10:54.0293 3816  Dnscache - ok
16:10:54.0325 3816  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\Windows\System32\dot3svc.dll
16:10:54.0356 3816  dot3svc - ok
16:10:54.0371 3816  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\Windows\system32\dps.dll
16:10:54.0403 3816  DPS - ok
16:10:54.0418 3816  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:10:54.0434 3816  drmkaud - ok
16:10:54.0434 3816  drtwswgf - ok
16:10:54.0481 3816  [ 24CE1ECF9D0AE0301775B07F5FEA175B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:10:54.0512 3816  DXGKrnl - ok
16:10:54.0512 3816  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
16:10:54.0543 3816  EapHost - ok
16:10:54.0621 3816  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
16:10:54.0668 3816  ebdrv - ok
16:10:54.0715 3816  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\Windows\System32\lsass.exe
16:10:54.0746 3816  EFS - ok
16:10:54.0839 3816  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:10:54.0855 3816  ehRecvr - ok
16:10:54.0886 3816  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
16:10:54.0902 3816  ehSched - ok
16:10:54.0933 3816  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
16:10:54.0949 3816  elxstor - ok
16:10:54.0964 3816  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
16:10:54.0980 3816  ErrDev - ok
16:10:54.0995 3816  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
16:10:55.0027 3816  EventSystem - ok
16:10:55.0042 3816  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
16:10:55.0073 3816  exfat - ok
16:10:55.0105 3816  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:10:55.0136 3816  fastfat - ok
16:10:55.0151 3816  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\Windows\system32\fxssvc.exe
16:10:55.0183 3816  Fax - ok
16:10:55.0183 3816  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
16:10:55.0183 3816  fdc - ok
16:10:55.0198 3816  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
16:10:55.0229 3816  fdPHost - ok
16:10:55.0245 3816  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:10:55.0276 3816  FDResPub - ok
16:10:55.0292 3816  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:10:55.0292 3816  FileInfo - ok
16:10:55.0307 3816  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:10:55.0339 3816  Filetrace - ok
16:10:55.0339 3816  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
16:10:55.0354 3816  flpydisk - ok
16:10:55.0370 3816  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:10:55.0385 3816  FltMgr - ok
16:10:55.0448 3816  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\Windows\system32\FntCache.dll
16:10:55.0463 3816  FontCache - ok
16:10:55.0510 3816  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:10:55.0510 3816  FontCache3.0.0.0 - ok
16:10:55.0526 3816  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:10:55.0541 3816  FsDepends - ok
16:10:55.0588 3816  [ 2BF3B36B96D015AF666B6AA63AE2E38F ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
16:10:55.0619 3816  fssfltr - ok
16:10:55.0682 3816  [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
16:10:55.0713 3816  fsssvc - ok
16:10:55.0744 3816  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:10:55.0744 3816  Fs_Rec - ok
16:10:55.0791 3816  [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:10:55.0822 3816  fvevol - ok
16:10:55.0822 3816  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
16:10:55.0838 3816  gagp30kx - ok
16:10:55.0838 3816  gdrv - ok
16:10:55.0885 3816  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:10:55.0900 3816  GEARAspiWDM - ok
16:10:55.0931 3816  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\Windows\System32\gpsvc.dll
16:10:55.0947 3816  gpsvc - ok
16:10:55.0963 3816  graonxih - ok
16:10:55.0963 3816  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:10:55.0978 3816  hcw85cir - ok
16:10:56.0009 3816  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:10:56.0025 3816  HdAudAddService - ok
16:10:56.0025 3816  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:10:56.0041 3816  HDAudBus - ok
16:10:56.0072 3816  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
16:10:56.0072 3816  HECIx64 - ok
16:10:56.0087 3816  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
16:10:56.0087 3816  HidBatt - ok
16:10:56.0103 3816  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
16:10:56.0103 3816  HidBth - ok
16:10:56.0119 3816  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
16:10:56.0134 3816  HidIr - ok
16:10:56.0150 3816  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
16:10:56.0181 3816  hidserv - ok
16:10:56.0181 3816  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:10:56.0197 3816  HidUsb - ok
16:10:56.0212 3816  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:10:56.0243 3816  hkmsvc - ok
16:10:56.0259 3816  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:10:56.0275 3816  HomeGroupListener - ok
16:10:56.0275 3816  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:10:56.0290 3816  HomeGroupProvider - ok
16:10:56.0306 3816  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
16:10:56.0321 3816  HpSAMD - ok
16:10:56.0353 3816  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:10:56.0384 3816  HTTP - ok
16:10:56.0399 3816  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:10:56.0399 3816  hwpolicy - ok
16:10:56.0415 3816  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
16:10:56.0431 3816  i8042prt - ok
16:10:56.0446 3816  [ 631FA8935163B01FC0C02966CB3ADB92 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
16:10:56.0462 3816  iaStor - ok
16:10:56.0493 3816  [ 7493EA4DE41348F7D3EDBF9DB298F56A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
16:10:56.0493 3816  IAStorDataMgrSvc - ok
16:10:56.0524 3816  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:10:56.0540 3816  iaStorV - ok
16:10:56.0571 3816  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:10:56.0587 3816  idsvc - ok
16:10:56.0758 3816  [ 2A22AB054F4630D2EF4BAB2853F6D5F6 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
16:10:56.0852 3816  igfx - ok
16:10:56.0883 3816  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
16:10:56.0899 3816  iirsp - ok
16:10:56.0914 3816  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\Windows\System32\ikeext.dll
16:10:56.0961 3816  IKEEXT - ok
16:10:56.0992 3816  [ 3EDD3CE185DA3E6AAEC22ADCFD7B1D54 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:10:57.0039 3816  IntcAzAudAddService - ok
16:10:57.0039 3816  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
16:10:57.0055 3816  intelide - ok
16:10:57.0086 3816  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:10:57.0086 3816  intelppm - ok
16:10:57.0101 3816  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:10:57.0133 3816  IPBusEnum - ok
16:10:57.0148 3816  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:10:57.0179 3816  IpFilterDriver - ok
16:10:57.0195 3816  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:10:57.0242 3816  iphlpsvc - ok
16:10:57.0257 3816  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
16:10:57.0257 3816  IPMIDRV - ok
16:10:57.0273 3816  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:10:57.0304 3816  IPNAT - ok
16:10:57.0367 3816  [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:10:57.0413 3816  iPod Service - ok
16:10:57.0413 3816  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:10:57.0429 3816  IRENUM - ok
16:10:57.0445 3816  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
16:10:57.0460 3816  isapnp - ok
16:10:57.0476 3816  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
16:10:57.0491 3816  iScsiPrt - ok
16:10:57.0523 3816  [ B4CDA1B4263B53D249AC27A4892DA634 ] JMB36X          C:\Windows\SysWOW64\XSrvSetup.exe
16:10:57.0538 3816  JMB36X ( UnsignedFile.Multi.Generic ) - warning
16:10:57.0538 3816  JMB36X - detected UnsignedFile.Multi.Generic (1)
16:10:57.0554 3816  [ 75DDB94A2A24F9F7037D10A2DDA06D36 ] JRAID           C:\Windows\system32\DRIVERS\jraid.sys
16:10:57.0569 3816  JRAID - ok
16:10:57.0585 3816  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:10:57.0601 3816  kbdclass - ok
16:10:57.0601 3816  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:10:57.0616 3816  kbdhid - ok
16:10:57.0616 3816  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\Windows\system32\lsass.exe
16:10:57.0632 3816  KeyIso - ok
16:10:57.0663 3816  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:10:57.0694 3816  KSecDD - ok
16:10:57.0710 3816  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:10:57.0725 3816  KSecPkg - ok
16:10:57.0725 3816  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:10:57.0757 3816  ksthunk - ok
16:10:57.0788 3816  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:10:57.0850 3816  KtmRm - ok
16:10:57.0897 3816  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:10:57.0928 3816  LanmanServer - ok
16:10:57.0944 3816  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:10:57.0975 3816  LanmanWorkstation - ok
16:10:58.0022 3816  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:10:58.0053 3816  lltdio - ok
16:10:58.0084 3816  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:10:58.0131 3816  lltdsvc - ok
16:10:58.0147 3816  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:10:58.0193 3816  lmhosts - ok
16:10:58.0225 3816  [ E38775922D4A4C05B5D96733AB4CE169 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:10:58.0225 3816  LMS - ok
16:10:58.0256 3816  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
16:10:58.0256 3816  LSI_FC - ok
16:10:58.0287 3816  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
16:10:58.0287 3816  LSI_SAS - ok
16:10:58.0303 3816  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:10:58.0318 3816  LSI_SAS2 - ok
16:10:58.0334 3816  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:10:58.0349 3816  LSI_SCSI - ok
16:10:58.0365 3816  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
16:10:58.0396 3816  luafv - ok
16:10:58.0459 3816  [ 5D43CC3ECD4F2E733460A6E4AF576128 ] LVcKap64        C:\Windows\system32\DRIVERS\LVcKap64.sys
16:10:58.0490 3816  LVcKap64 - ok
16:10:58.0583 3816  [ 2404A511B682BFD8790E663A3E432473 ] LVMVDrv         C:\Windows\system32\DRIVERS\LVMVDrv.sys
16:10:58.0661 3816  LVMVDrv - ok
16:10:58.0724 3816  [ 25F430702E3923F9DFB6B9A4D1DD9C29 ] LVSrvLauncher   C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
16:10:58.0755 3816  LVSrvLauncher - ok
16:10:58.0786 3816  [ 6F9B043FD18C17D7E719382608817C72 ] LVUSBS64        C:\Windows\system32\drivers\LVUSBS64.sys
16:10:58.0802 3816  LVUSBS64 - ok
16:10:58.0849 3816  [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
16:10:58.0880 3816  MBAMProtector - ok
16:10:58.0973 3816  [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:10:59.0005 3816  MBAMScheduler - ok
16:10:59.0036 3816  [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:10:59.0051 3816  MBAMService - ok
16:10:59.0083 3816  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:10:59.0083 3816  Mcx2Svc - ok
16:10:59.0098 3816  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
16:10:59.0114 3816  megasas - ok
16:10:59.0129 3816  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
16:10:59.0145 3816  MegaSR - ok
16:10:59.0207 3816  Microsoft SharePoint Workspace Audit Service - ok
16:10:59.0254 3816  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
16:10:59.0301 3816  MMCSS - ok
16:10:59.0317 3816  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
16:10:59.0348 3816  Modem - ok
16:10:59.0363 3816  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:10:59.0363 3816  monitor - ok
16:10:59.0379 3816  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:10:59.0395 3816  mouclass - ok
16:10:59.0395 3816  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:10:59.0410 3816  mouhid - ok
16:10:59.0426 3816  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:10:59.0426 3816  mountmgr - ok
16:10:59.0457 3816  [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:10:59.0473 3816  MozillaMaintenance - ok
16:10:59.0535 3816  [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
16:10:59.0566 3816  MpFilter - ok
16:10:59.0582 3816  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
16:10:59.0597 3816  mpio - ok
16:10:59.0613 3816  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:10:59.0644 3816  mpsdrv - ok
16:10:59.0675 3816  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:10:59.0707 3816  MpsSvc - ok
16:10:59.0722 3816  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:10:59.0738 3816  MRxDAV - ok
16:10:59.0785 3816  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:10:59.0800 3816  mrxsmb - ok
16:10:59.0847 3816  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:10:59.0878 3816  mrxsmb10 - ok
16:10:59.0894 3816  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:10:59.0909 3816  mrxsmb20 - ok
16:10:59.0909 3816  [ 5C37497276E3B3A5488B23A326A754B7 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
16:10:59.0909 3816  msahci - ok
16:10:59.0925 3816  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
16:10:59.0941 3816  msdsm - ok
16:10:59.0956 3816  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
16:10:59.0972 3816  MSDTC - ok
16:10:59.0972 3816  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:11:00.0019 3816  Msfs - ok
16:11:00.0019 3816  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:11:00.0065 3816  mshidkmdf - ok
16:11:00.0065 3816  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
16:11:00.0081 3816  msisadrv - ok
16:11:00.0097 3816  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:11:00.0128 3816  MSiSCSI - ok
16:11:00.0128 3816  msiserver - ok
16:11:00.0159 3816  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:11:00.0190 3816  MSKSSRV - ok
16:11:00.0237 3816  [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
16:11:00.0253 3816  MsMpSvc - ok
16:11:00.0284 3816  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:11:00.0331 3816  MSPCLOCK - ok
16:11:00.0346 3816  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:11:00.0377 3816  MSPQM - ok
16:11:00.0393 3816  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:11:00.0409 3816  MsRPC - ok
16:11:00.0424 3816  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:11:00.0440 3816  mssmbios - ok
16:11:00.0440 3816  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:11:00.0471 3816  MSTEE - ok
16:11:00.0487 3816  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
16:11:00.0502 3816  MTConfig - ok
16:11:00.0518 3816  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
16:11:00.0533 3816  Mup - ok
16:11:00.0549 3816  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\Windows\system32\qagentRT.dll
16:11:00.0580 3816  napagent - ok
16:11:00.0611 3816  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:11:00.0627 3816  NativeWifiP - ok
16:11:00.0689 3816  [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
16:11:00.0721 3816  NAUpdate - ok
16:11:00.0752 3816  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:11:00.0799 3816  NDIS - ok
16:11:00.0814 3816  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:11:00.0845 3816  NdisCap - ok
16:11:00.0861 3816  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:11:00.0892 3816  NdisTapi - ok
16:11:00.0908 3816  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:11:00.0939 3816  Ndisuio - ok
16:11:00.0955 3816  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:11:00.0986 3816  NdisWan - ok
16:11:00.0986 3816  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:11:01.0017 3816  NDProxy - ok
16:11:01.0033 3816  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:11:01.0064 3816  NetBIOS - ok
16:11:01.0079 3816  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:11:01.0111 3816  NetBT - ok
16:11:01.0126 3816  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\Windows\system32\lsass.exe
16:11:01.0126 3816  Netlogon - ok
16:11:01.0157 3816  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
16:11:01.0204 3816  Netman - ok
16:11:01.0220 3816  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
16:11:01.0251 3816  netprofm - ok
16:11:01.0267 3816  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:11:01.0282 3816  NetTcpPortSharing - ok
16:11:01.0298 3816  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
16:11:01.0298 3816  nfrd960 - ok
16:11:01.0360 3816  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:11:01.0391 3816  NisDrv - ok
16:11:01.0438 3816  [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
16:11:01.0454 3816  NisSrv - ok
16:11:01.0469 3816  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:11:01.0516 3816  NlaSvc - ok
16:11:01.0563 3816  [ B1EF4686961986DFFB7FE8F18E6FCB5B ] nlsX86cc        C:\Windows\SysWOW64\nlssrv32.exe
16:11:01.0579 3816  nlsX86cc ( UnsignedFile.Multi.Generic ) - warning
16:11:01.0579 3816  nlsX86cc - detected UnsignedFile.Multi.Generic (1)
16:11:01.0594 3816  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:11:01.0657 3816  Npfs - ok
16:11:01.0657 3816  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
16:11:01.0688 3816  nsi - ok
16:11:01.0703 3816  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:11:01.0735 3816  nsiproxy - ok
16:11:01.0797 3816  [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:11:01.0844 3816  Ntfs - ok
16:11:01.0859 3816  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
16:11:01.0891 3816  Null - ok
16:11:01.0922 3816  [ F5BC2345E8C89D4E90FAFD23A2239935 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
16:11:01.0922 3816  nusb3hub - ok
16:11:01.0953 3816  [ 5D42578241BC2A9B4A64837077436D5F ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
16:11:01.0984 3816  nusb3xhc - ok
16:11:02.0047 3816  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:11:02.0078 3816  nvraid - ok
16:11:02.0109 3816  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:11:02.0125 3816  nvstor - ok
16:11:02.0125 3816  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
16:11:02.0140 3816  nv_agp - ok
16:11:02.0156 3816  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
16:11:02.0156 3816  ohci1394 - ok
16:11:02.0218 3816  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:11:02.0249 3816  ose - ok
16:11:02.0374 3816  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:11:02.0483 3816  osppsvc - ok
16:11:02.0499 3816  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:11:02.0515 3816  p2pimsvc - ok
16:11:02.0530 3816  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:11:02.0546 3816  p2psvc - ok
16:11:02.0546 3816  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
16:11:02.0561 3816  Parport - ok
16:11:02.0593 3816  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:11:02.0624 3816  partmgr - ok
16:11:02.0639 3816  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:11:02.0655 3816  PcaSvc - ok
16:11:02.0671 3816  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\Windows\system32\DRIVERS\pci.sys
16:11:02.0686 3816  pci - ok
16:11:02.0686 3816  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
16:11:02.0702 3816  pciide - ok
16:11:02.0702 3816  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
16:11:02.0717 3816  pcmcia - ok
16:11:02.0749 3816  [ AF7CE12C4F3DC8CB2B07685C916BBCFE ] pcouffin        C:\Windows\system32\Drivers\pcouffin.sys
16:11:02.0764 3816  pcouffin - ok
16:11:02.0764 3816  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:11:02.0780 3816  pcw - ok
16:11:02.0795 3816  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:11:02.0842 3816  PEAUTH - ok
16:11:02.0873 3816  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:11:02.0889 3816  PeerDistSvc - ok
16:11:02.0905 3816  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:11:02.0920 3816  PerfHost - ok
16:11:02.0951 3816  [ DD797B8B2B295AFBDCD9F35CF62B5DCC ] PID_0928        C:\Windows\system32\DRIVERS\LV561V64.SYS
16:11:02.0983 3816  PID_0928 - ok
16:11:03.0029 3816  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\Windows\system32\pla.dll
16:11:03.0061 3816  pla - ok
16:11:03.0107 3816  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:11:03.0123 3816  PlugPlay - ok
16:11:03.0139 3816  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:11:03.0154 3816  PNRPAutoReg - ok
16:11:03.0170 3816  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:11:03.0185 3816  PNRPsvc - ok
16:11:03.0232 3816  [ 32D374C60778253B81FA76C2FE19E155 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
16:11:03.0248 3816  Point64 - ok
16:11:03.0279 3816  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:11:03.0326 3816  PolicyAgent - ok
16:11:03.0357 3816  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
16:11:03.0388 3816  Power - ok
16:11:03.0404 3816  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:11:03.0435 3816  PptpMiniport - ok
16:11:03.0435 3816  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
16:11:03.0451 3816  Processor - ok
16:11:03.0497 3816  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\Windows\system32\profsvc.dll
16:11:03.0513 3816  ProfSvc - ok
16:11:03.0529 3816  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:11:03.0529 3816  ProtectedStorage - ok
16:11:03.0560 3816  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:11:03.0591 3816  Psched - ok
16:11:03.0638 3816  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
16:11:03.0638 3816  PxHlpa64 - ok
16:11:03.0700 3816  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
16:11:03.0747 3816  ql2300 - ok
16:11:03.0778 3816  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
16:11:03.0778 3816  ql40xx - ok
16:11:03.0794 3816  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
16:11:03.0809 3816  QWAVE - ok
16:11:03.0825 3816  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:11:03.0841 3816  QWAVEdrv - ok
16:11:03.0856 3816  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:11:03.0887 3816  RasAcd - ok
16:11:03.0919 3816  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:11:03.0981 3816  RasAgileVpn - ok
16:11:03.0997 3816  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
16:11:04.0028 3816  RasAuto - ok
16:11:04.0028 3816  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:11:04.0075 3816  Rasl2tp - ok
16:11:04.0090 3816  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\Windows\System32\rasmans.dll
16:11:04.0121 3816  RasMan - ok
16:11:04.0121 3816  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:11:04.0153 3816  RasPppoe - ok
16:11:04.0184 3816  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:11:04.0231 3816  RasSstp - ok
16:11:04.0246 3816  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:11:04.0277 3816  rdbss - ok
16:11:04.0293 3816  rdeepfqv - ok
16:11:04.0293 3816  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:11:04.0309 3816  rdpbus - ok
16:11:04.0324 3816  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:11:04.0340 3816  RDPCDD - ok
16:11:04.0371 3816  [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:11:04.0387 3816  RDPDR - ok
16:11:04.0402 3816  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:11:04.0433 3816  RDPENCDD - ok
16:11:04.0449 3816  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:11:04.0480 3816  RDPREFMP - ok
16:11:04.0511 3816  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:11:04.0543 3816  RDPWD - ok
16:11:04.0574 3816  [ 634B9A2181D98F15941236886164EC8B ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:11:04.0589 3816  rdyboost - ok
16:11:04.0589 3816  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:11:04.0621 3816  RemoteAccess - ok
16:11:04.0636 3816  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:11:04.0667 3816  RemoteRegistry - ok
16:11:04.0699 3816  RichVideo - ok
16:11:04.0714 3816  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:11:04.0745 3816  RpcEptMapper - ok
16:11:04.0761 3816  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
16:11:04.0777 3816  RpcLocator - ok
16:11:04.0792 3816  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\Windows\system32\rpcss.dll
16:11:04.0839 3816  RpcSs - ok
16:11:04.0839 3816  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:11:04.0870 3816  rspndr - ok
16:11:04.0917 3816  [ 777FC2C418465404E3D8A290DC247D24 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
16:11:04.0948 3816  RTL8167 - ok
16:11:04.0964 3816  [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap           C:\Windows\system32\DRIVERS\vms3cap.sys
16:11:04.0979 3816  s3cap - ok
16:11:04.0995 3816  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\Windows\system32\lsass.exe
16:11:05.0011 3816  SamSs - ok
16:11:05.0057 3816  [ 035DD5D74ED74DE036113CAE60FE55B3 ] SbieDrv         C:\Program Files\Sandboxie\SbieDrv.sys
16:11:05.0089 3816  SbieDrv - ok
16:11:05.0104 3816  [ 6EEE34E7F3C46C0111EE16DB30D289D1 ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe
16:11:05.0120 3816  SbieSvc - ok
16:11:05.0135 3816  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
16:11:05.0151 3816  sbp2port - ok
16:11:05.0260 3816  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
16:11:05.0307 3816  SBSDWSCService - ok
16:11:05.0323 3816  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:11:05.0369 3816  SCardSvr - ok
16:11:05.0369 3816  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:11:05.0401 3816  scfilter - ok
16:11:05.0463 3816  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\Windows\system32\schedsvc.dll
16:11:05.0479 3816  Schedule - ok
16:11:05.0510 3816  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:11:05.0541 3816  SCPolicySvc - ok
16:11:05.0557 3816  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:11:05.0572 3816  SDRSVC - ok
16:11:05.0572 3816  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:11:05.0603 3816  secdrv - ok
16:11:05.0619 3816  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\Windows\system32\seclogon.dll
16:11:05.0650 3816  seclogon - ok
16:11:05.0650 3816  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
16:11:05.0681 3816  SENS - ok
16:11:05.0697 3816  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:11:05.0713 3816  SensrSvc - ok
16:11:05.0759 3816  [ 255476B54C82A89416EFDF09FD62F107 ] Sentinel64      C:\Windows\System32\Drivers\Sentinel64.sys
16:11:05.0775 3816  Sentinel64 - ok
16:11:05.0791 3816  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:11:05.0806 3816  Serenum - ok
16:11:05.0822 3816  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:11:05.0837 3816  Serial - ok
16:11:05.0869 3816  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
16:11:05.0884 3816  sermouse - ok
16:11:05.0900 3816  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\Windows\system32\sessenv.dll
16:11:05.0931 3816  SessionEnv - ok
16:11:05.0947 3816  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
16:11:05.0962 3816  sffdisk - ok
16:11:05.0962 3816  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
16:11:05.0978 3816  sffp_mmc - ok
16:11:05.0978 3816  [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
16:11:05.0978 3816  sffp_sd - ok
16:11:06.0009 3816  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
16:11:06.0009 3816  sfloppy - ok
16:11:06.0040 3816  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:11:06.0087 3816  SharedAccess - ok
16:11:06.0087 3816  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:11:06.0118 3816  ShellHWDetection - ok
16:11:06.0134 3816  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:11:06.0134 3816  SiSRaid2 - ok
16:11:06.0149 3816  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
16:11:06.0165 3816  SiSRaid4 - ok
16:11:06.0227 3816  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
16:11:06.0259 3816  SkypeUpdate - ok
16:11:06.0274 3816  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:11:06.0321 3816  Smb - ok
16:11:06.0337 3816  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:11:06.0337 3816  SNMPTRAP - ok
16:11:06.0352 3816  [ 2D5576C01C8A34AA614870E745FE8F19 ] SNTUSB64        C:\Windows\system32\DRIVERS\SNTUSB64.SYS
16:11:06.0368 3816  SNTUSB64 - ok
16:11:06.0368 3816  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:11:06.0383 3816  spldr - ok
16:11:06.0430 3816  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\Windows\System32\spoolsv.exe
16:11:06.0446 3816  Spooler - ok
16:11:06.0493 3816  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\Windows\system32\sppsvc.exe
16:11:06.0539 3816  sppsvc - ok
16:11:06.0555 3816  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:11:06.0586 3816  sppuinotify - ok
16:11:06.0633 3816  [ B9413B99DBB704E0F5824775A1118CC7 ] Spyder2         C:\Windows\system32\DRIVERS\Spyder2.sys
16:11:06.0633 3816  Spyder2 - ok
16:11:06.0680 3816  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:11:06.0711 3816  srv - ok
16:11:06.0727 3816  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:11:06.0742 3816  srv2 - ok
16:11:06.0789 3816  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:11:06.0805 3816  srvnet - ok
16:11:06.0820 3816  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:11:06.0867 3816  SSDPSRV - ok
16:11:06.0883 3816  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:11:06.0914 3816  SstpSvc - ok
16:11:06.0961 3816  [ 74425FFA11C133D045E1C3BE2EAD481D ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
16:11:06.0976 3816  ssudmdm - ok
16:11:06.0976 3816  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
16:11:06.0992 3816  stexstor - ok
16:11:07.0023 3816  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\Windows\System32\wiaservc.dll
16:11:07.0039 3816  stisvc - ok
16:11:07.0054 3816  [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
16:11:07.0054 3816  storflt - ok
16:11:07.0070 3816  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
16:11:07.0085 3816  StorSvc - ok
16:11:07.0101 3816  [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc         C:\Windows\system32\DRIVERS\storvsc.sys
16:11:07.0101 3816  storvsc - ok
16:11:07.0117 3816  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:11:07.0132 3816  swenum - ok
16:11:07.0226 3816  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:11:07.0257 3816  SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
16:11:07.0257 3816  SwitchBoard - detected UnsignedFile.Multi.Generic (1)
16:11:07.0273 3816  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
16:11:07.0319 3816  swprv - ok
16:11:07.0351 3816  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\Windows\system32\sysmain.dll
16:11:07.0382 3816  SysMain - ok
16:11:07.0397 3816  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:11:07.0413 3816  TabletInputService - ok
16:11:07.0429 3816  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:11:07.0460 3816  TapiSrv - ok
16:11:07.0475 3816  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
16:11:07.0507 3816  TBS - ok
16:11:07.0569 3816  [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:11:07.0631 3816  Tcpip - ok
16:11:07.0663 3816  [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:11:07.0694 3816  TCPIP6 - ok
16:11:07.0709 3816  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:11:07.0741 3816  tcpipreg - ok
16:11:07.0741 3816  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:11:07.0756 3816  TDPIPE - ok
16:11:07.0787 3816  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:11:07.0803 3816  TDTCP - ok
16:11:07.0819 3816  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:11:07.0850 3816  tdx - ok
16:11:07.0943 3816  [ 213723E1A736910C644B457DE6D095E2 ] TeamViewer5     C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
16:11:07.0975 3816  TeamViewer5 - ok
16:11:07.0990 3816  [ C448651339196C0E869A355171875522 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:11:08.0006 3816  TermDD - ok
16:11:08.0037 3816  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\Windows\System32\termsrv.dll
16:11:08.0099 3816  TermService - ok
16:11:08.0099 3816  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
16:11:08.0115 3816  Themes - ok
16:11:08.0131 3816  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
16:11:08.0162 3816  THREADORDER - ok
16:11:08.0177 3816  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
16:11:08.0209 3816  TrkWks - ok
16:11:08.0255 3816  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:11:08.0271 3816  TrustedInstaller - ok
16:11:08.0287 3816  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:11:08.0318 3816  tssecsrv - ok
16:11:08.0333 3816  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:11:08.0365 3816  tunnel - ok
16:11:08.0380 3816  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
16:11:08.0396 3816  uagp35 - ok
16:11:08.0411 3816  [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:11:08.0443 3816  udfs - ok
16:11:08.0443 3816  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:11:08.0458 3816  UI0Detect - ok
16:11:08.0474 3816  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
16:11:08.0489 3816  uliagpkx - ok
16:11:08.0489 3816  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:11:08.0505 3816  umbus - ok
16:11:08.0505 3816  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
16:11:08.0521 3816  UmPass - ok
16:11:08.0536 3816  [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:11:08.0552 3816  UmRdpService - ok
16:11:08.0630 3816  [ 02C298382359653BEC4C737C2AB7F9C5 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:11:08.0661 3816  UNS - ok
16:11:08.0677 3816  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
16:11:08.0708 3816  upnphost - ok
16:11:08.0755 3816  [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
16:11:08.0786 3816  USBAAPL64 - ok
16:11:08.0817 3816  [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
16:11:08.0833 3816  usbccgp - ok
16:11:08.0848 3816  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
16:11:08.0864 3816  usbcir - ok
16:11:08.0879 3816  [ 92969BA5AC44E229C55A332864F79677 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
16:11:08.0879 3816  usbehci - ok
16:11:08.0911 3816  [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:11:08.0926 3816  usbhub - ok
16:11:08.0957 3816  [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:11:08.0973 3816  usbohci - ok
16:11:08.0989 3816  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:11:09.0004 3816  usbprint - ok
16:11:09.0004 3816  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:11:09.0020 3816  USBSTOR - ok
16:11:09.0020 3816  [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:11:09.0035 3816  usbuhci - ok
16:11:09.0067 3816  [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
16:11:09.0098 3816  usb_rndisx - ok
16:11:09.0113 3816  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
16:11:09.0145 3816  UxSms - ok
16:11:09.0160 3816  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\Windows\system32\lsass.exe
16:11:09.0160 3816  VaultSvc - ok
16:11:09.0176 3816  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
16:11:09.0176 3816  vdrvroot - ok
16:11:09.0191 3816  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\Windows\System32\vds.exe
16:11:09.0207 3816  vds - ok
16:11:09.0223 3816  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:11:09.0238 3816  vga - ok
16:11:09.0238 3816  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:11:09.0269 3816  VgaSave - ok
16:11:09.0285 3816  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
16:11:09.0301 3816  vhdmp - ok
16:11:09.0301 3816  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
16:11:09.0316 3816  viaide - ok
16:11:09.0332 3816  [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus           C:\Windows\system32\DRIVERS\vmbus.sys
16:11:09.0347 3816  vmbus - ok
16:11:09.0347 3816  [ AE10C35761889E65A6F7176937C5592C ] VMBusHID        C:\Windows\system32\DRIVERS\VMBusHID.sys
16:11:09.0347 3816  VMBusHID - ok
16:11:09.0363 3816  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
16:11:09.0379 3816  volmgr - ok
16:11:09.0394 3816  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:11:09.0410 3816  volmgrx - ok
16:11:09.0457 3816  [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap         C:\Windows\system32\DRIVERS\volsnap.sys
16:11:09.0472 3816  volsnap - ok
16:11:09.0488 3816  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
16:11:09.0503 3816  vsmraid - ok
16:11:09.0535 3816  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\Windows\system32\vssvc.exe
16:11:09.0566 3816  VSS - ok
16:11:09.0581 3816  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
16:11:09.0597 3816  vwifibus - ok
16:11:09.0613 3816  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
16:11:09.0644 3816  W32Time - ok
16:11:09.0644 3816  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
16:11:09.0659 3816  WacomPen - ok
16:11:09.0675 3816  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:11:09.0706 3816  WANARP - ok
16:11:09.0706 3816  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:11:09.0737 3816  Wanarpv6 - ok
16:11:09.0784 3816  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
16:11:09.0815 3816  WatAdminSvc - ok
16:11:09.0831 3816  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\Windows\system32\wbengine.exe
16:11:09.0862 3816  wbengine - ok
16:11:09.0862 3816  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:11:09.0893 3816  WbioSrvc - ok
16:11:09.0925 3816  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:11:09.0956 3816  wcncsvc - ok
16:11:09.0971 3816  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:11:09.0987 3816  WcsPlugInService - ok
16:11:09.0987 3816  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
16:11:10.0003 3816  Wd - ok
16:11:10.0034 3816  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:11:10.0065 3816  Wdf01000 - ok
16:11:10.0081 3816  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:11:10.0096 3816  WdiServiceHost - ok
16:11:10.0096 3816  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:11:10.0112 3816  WdiSystemHost - ok
16:11:10.0159 3816  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\Windows\System32\webclnt.dll
16:11:10.0190 3816  WebClient - ok
16:11:10.0205 3816  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:11:10.0268 3816  Wecsvc - ok
16:11:10.0268 3816  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:11:10.0299 3816  wercplsupport - ok
16:11:10.0330 3816  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:11:10.0361 3816  WerSvc - ok
16:11:10.0393 3816  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:11:10.0424 3816  WfpLwf - ok
16:11:10.0424 3816  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:11:10.0439 3816  WIMMount - ok
16:11:10.0455 3816  WinDefend - ok
16:11:10.0455 3816  WinHttpAutoProxySvc - ok
16:11:10.0502 3816  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:11:10.0533 3816  Winmgmt - ok
16:11:10.0595 3816  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:11:10.0658 3816  WinRM - ok
16:11:10.0705 3816  [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:11:10.0720 3816  WinUsb - ok
16:11:10.0736 3816  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:11:10.0751 3816  Wlansvc - ok
16:11:10.0767 3816  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
16:11:10.0783 3816  WmiAcpi - ok
16:11:10.0798 3816  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:11:10.0829 3816  wmiApSrv - ok
16:11:10.0845 3816  WMPNetworkSvc - ok
16:11:10.0861 3816  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:11:10.0876 3816  WPCSvc - ok
16:11:10.0892 3816  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:11:10.0907 3816  WPDBusEnum - ok
16:11:10.0907 3816  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:11:10.0939 3816  ws2ifsl - ok
16:11:10.0985 3816  [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc          C:\Windows\System32\wscsvc.dll
16:11:11.0001 3816  wscsvc - ok
16:11:11.0001 3816  WSearch - ok
16:11:11.0063 3816  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:11:11.0141 3816  wuauserv - ok
16:11:11.0141 3816  [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:11:11.0173 3816  WudfPf - ok
16:11:11.0188 3816  [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:11:11.0219 3816  WUDFRd - ok
16:11:11.0235 3816  [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:11:11.0266 3816  wudfsvc - ok
16:11:11.0282 3816  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:11:11.0297 3816  WwanSvc - ok
16:11:11.0313 3816  ================ Scan global ===============================
16:11:11.0329 3816  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:11:11.0375 3816  [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
16:11:11.0375 3816  [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
16:11:11.0407 3816  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:11:11.0422 3816  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:11:11.0438 3816  [Global] - ok
16:11:11.0438 3816  ================ Scan MBR ==================================
16:11:11.0453 3816  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:11:11.0625 3816  \Device\Harddisk0\DR0 - ok
16:11:11.0641 3816  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
16:11:11.0656 3816  \Device\Harddisk1\DR1 - ok
16:11:11.0672 3816  [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk2\DR2
16:11:11.0781 3816  \Device\Harddisk2\DR2 - ok
16:11:11.0781 3816  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk7\DR7
16:11:11.0859 3816  \Device\Harddisk7\DR7 - ok
16:11:11.0859 3816  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk8\DR8
16:11:12.0062 3816  \Device\Harddisk8\DR8 - ok
16:11:12.0062 3816  ================ Scan VBR ==================================
16:11:12.0062 3816  [ 1CFA437CDB66CEBCD783E3F569AB5DC8 ] \Device\Harddisk0\DR0\Partition1
16:11:12.0062 3816  \Device\Harddisk0\DR0\Partition1 - ok
16:11:12.0093 3816  [ 30ACD981306E661E82911D8770A51FE2 ] \Device\Harddisk0\DR0\Partition2
16:11:12.0093 3816  \Device\Harddisk0\DR0\Partition2 - ok
16:11:12.0093 3816  [ 71F2E4C5B187FF4F5B549B79811BA9DC ] \Device\Harddisk1\DR1\Partition1
16:11:12.0109 3816  \Device\Harddisk1\DR1\Partition1 - ok
16:11:12.0109 3816  [ 27E58EC2035B67644E112ABFF797C75B ] \Device\Harddisk2\DR2\Partition1
16:11:12.0109 3816  \Device\Harddisk2\DR2\Partition1 - ok
16:11:12.0109 3816  [ 45C7937E86FC08076DE9F94DFC57954B ] \Device\Harddisk7\DR7\Partition1
16:11:12.0109 3816  \Device\Harddisk7\DR7\Partition1 - ok
16:11:12.0124 3816  [ 7D49194CE38B7A792B284FA59EBF6B61 ] \Device\Harddisk8\DR8\Partition1
16:11:12.0124 3816  \Device\Harddisk8\DR8\Partition1 - ok
16:11:12.0124 3816  ============================================================
16:11:12.0124 3816  Scan finished
16:11:12.0124 3816  ============================================================
16:11:12.0140 4252  Detected object count: 3
16:11:12.0140 4252  Actual detected object count: 3

cosinus · 13.11.2012, 17:11

Log vom TDSS-Killer ist unvollständig, die untere Zusammenfassung fehlt

sniper1983 · 14.11.2012, 09:46

Hallo cosinus,

ich hab die log nochmal verglichen. Sie stimmt mit der geposteten überein. TDSSKiller hat nur das ausgespuckt :-(

cosinus · 14.11.2012, 13:12

Dann hast du das Log vermutlich falsch erstellt, vllt ist meine Anleitung aber auch noch auf eine ältere Version zugeschnitten - probier das nochmal

Edit: Hab das eben selbst nochmal probiert, meine Anleitung ist richtig

13.11.2012, 17:11	#6
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Unbekannter Störenfried Log vom TDSS-Killer ist unvollständig, die untere Zusammenfassung fehlt __________________ --> Unbekannter Störenfried

14.11.2012, 13:12	#8
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Unbekannter Störenfried Dann hast du das Log vermutlich falsch erstellt, vllt ist meine Anleitung aber auch noch auf eine ältere Version zugeschnitten - probier das nochmal Edit: Hab das eben selbst nochmal probiert, meine Anleitung ist richtig __________________ Logfiles bitte immer in CODE-Tags posten Geändert von cosinus (14.11.2012 um 13:32 Uhr)

Unbekannter Störenfried

Plagegeister aller Art und deren Bekämpfung: Unbekannter Störenfried