| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: e-Mail Flut mit mailer-daemon MeldungenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
07.12.2012, 07:35
| #1 |
 |  e-Mail Flut mit mailer-daemon Meldungen Liebes Forum, erstens bin ich neu hier und zweitens auch nicht so fit, was das Umgehen mit Programmen betrifft. Trotzdem bitte ich dringend um Eure Hilfe, da mich seit vorgestern täglich ca. 200 mails erreichen (auf PC und Handy) alle von Mailer-Daemon@yahoo.com, postmaster@hotmail.com,Mail delivery system. Diese Adressen von Leuten, die ich angeblich angeschrieben habe, kenne ich alle nicht. Das Problem ist, weder malewarebites noch Avira zeigen irgendwelche Schädlinge an. Was soll ich jetzt machen? Es wäre nett wenn Ihr mir helfen könntet. Danke von Lessi |
|
13.12.2012, 15:09
| #2 |
| /// Malware-holic   |  e-Mail Flut mit mailer-daemon Meldungen Hi
__________________Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
Code:
ATTFilter activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
C:\Windows\system32\*.tsp
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
__________________ |
|
13.12.2012, 16:41
| #3 |
| | e-Mail Flut mit mailer-daemon Meldungen OTL Logfile:
__________________Code:
ATTFilter OTL logfile created on: 13.12.2012 16:29:00 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Susanne\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 7,98 Gb Total Physical Memory | 5,54 Gb Available Physical Memory | 69,42% Memory free 15,96 Gb Paging File | 12,51 Gb Available in Paging File | 78,39% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 677,05 Gb Total Space | 231,59 Gb Free Space | 34,20% Space Free | Partition Type: NTFS Computer Name: SUSANNE-VAIO | User Name: Susanne | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Susanne\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe (Emsisoft GmbH) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) PRC - C:\Users\Susanne\AppData\Roaming\cubby\cubby.exe (LogMeIn, Inc.) PRC - C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask) PRC - C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe (Emsisoft GmbH) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Programme\Sony\VAIO Care\VCService.exe (Sony Corporation) PRC - C:\Users\Susanne\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) PRC - C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe (Panasonic Corporation) PRC - C:\Programme\Sony\VAIO Care\listener.exe (Sony of America Corporation) PRC - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe (Sony Corporation) PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation) PRC - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) PRC - c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation) PRC - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG) PRC - c:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (ArcSoft, Inc.) PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) PRC - c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (ArcSoft Inc.) PRC - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo) PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.) PRC - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.) PRC - C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe (Hewlett-Packard Company) PRC - C:\Windows\SysWOW64\bgsvcgen.exe (B.H.A Corporation) ========== Modules (No Company Name) ========== MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\4a29fb5e489e57ccc97b19ca70db94a8\Microsoft.VisualBasic.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\413288993ff690e8251d2dbe32bee01f\System.Runtime.Remoting.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a67380b6387234a8a9032ccd5c3dbf4e\System.Runtime.Serialization.Formatters.Soap.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d040079bc7148afeca03c5abb6fc3c61\System.Windows.Forms.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\4e80768a2d88c7a333e43cbb7a6c0705\System.Drawing.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll () MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll () MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll () MOD - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL () MOD - C:\PROGRA~2\MICROS~2\Office12\ADDINS\UMOUTL~1.DLL () MOD - C:\PROGRA~2\MICROS~2\Office12\OUTLCTL.DLL () MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll () MOD - C:\PROGRA~2\MICROS~2\Office12\ADDINS\COLLEA~1.DLL () ========== Services (SafeList) ========== SRV:64bit: - (SampleCollector) -- C:\Program Files\Sony\VAIO Care\VCPerfService.exe (Sony Corporation) SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (a2AntiMalware) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe (Emsisoft GmbH) SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) SRV - (AntiVirWebService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE (Avira Operations GmbH & Co. KG) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (VCService) -- C:\Programme\Sony\VAIO Care\VCService.exe (Sony Corporation) SRV - (VUAgent) -- C:\Programme\Sony\VAIO Update Common\VUAgent.exe (Sony Corporation) SRV - (VCFw) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (Sony Corporation) SRV - (VcmIAlzMgr) -- C:\Programme\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe (Sony Corporation) SRV - (SpfService) -- C:\Programme\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe (Sony Corporation) SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.) SRV - (BBUpdate) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) SRV - (VSNService) -- C:\Programme\Sony\VAIO Smart Network\VSNService.exe (Sony Corporation) SRV - (VAIO Event Service) -- C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation) SRV - (VAIO Power Management) -- C:\Programme\Sony\VAIO Power Management\SPMService.exe (Sony Corporation) SRV - (VcmXmlIfHelper) -- C:\Programme\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe (Sony Corporation) SRV - (DCDhcpService) -- C:\Programme\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe (Atheros Communication Inc.) SRV - (PMBDeviceInfoProvider) -- c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation) SRV - (AtherosSvc) -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (Atheros Commnucations) SRV - (Atheros Bt&Wlan Coex Agent) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros) SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) SRV - (Fabs) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG) SRV - (FirebirdServerMAGIXInstance) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe (MAGIX®) SRV - (wlidsvc) -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) SRV - (uCamMonitor) -- c:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (ArcSoft, Inc.) SRV - (SOHDs) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe (Sony Corporation) SRV - (SOHCImp) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe (Sony Corporation) SRV - (VcmINSMgr) -- C:\Programme\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe (Sony Corporation) SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) SRV - (AdobeActiveFileMonitor9.0) -- c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe (Adobe Systems Incorporated) SRV - (wlcrasvc) -- C:\Programme\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation) SRV - (IviRegMgr) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.) SRV - (PSI_SVC_2) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (bgsvcgen) -- C:\Windows\SysWOW64\bgsvcgen.exe (B.H.A Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation) DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.) DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation) DRV:64bit: - (Netaapl) -- C:\Windows\SysNative\drivers\netaapl64.sys (Apple Inc.) DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation) DRV:64bit: - (BtFilter) -- C:\Windows\SysNative\drivers\btfilter.sys (Atheros) DRV:64bit: - (BTATH_RCP) -- C:\Windows\SysNative\drivers\btath_rcp.sys (Atheros) DRV:64bit: - (BTATH_HCRP) -- C:\Windows\SysNative\drivers\btath_hcrp.sys (Atheros) DRV:64bit: - (BTATH_LWFLT) -- C:\Windows\SysNative\drivers\btath_lwflt.sys (Atheros) DRV:64bit: - (AthBTPort) -- C:\Windows\SysNative\drivers\btath_flt.sys (Atheros) DRV:64bit: - (BTATH_A2DP) -- C:\Windows\SysNative\drivers\btath_a2dp.sys (Atheros) DRV:64bit: - (btath_avdt) -- C:\Windows\SysNative\drivers\btath_avdt.sys (Atheros) DRV:64bit: - (BTATH_BUS) -- C:\Windows\SysNative\drivers\btath_bus.sys (Atheros) DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation) DRV:64bit: - (risdsnpe) -- C:\Windows\SysNative\drivers\risdsnxc64.sys (REDC) DRV:64bit: - (rimspci) -- C:\Windows\SysNative\drivers\rimssne64.sys (REDC) DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek ) DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.) DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Rovi Corporation) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (Renesas Electronics Corporation) DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (Renesas Electronics Corporation) DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (SFEP) -- C:\Windows\SysNative\drivers\SFEP.sys (Sony Corporation) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (61883) -- C:\Windows\SysNative\drivers\61883.sys (Microsoft Corporation) DRV:64bit: - (Avc) -- C:\Windows\SysNative\drivers\avc.sys (Microsoft Corporation) DRV:64bit: - (MSDV) -- C:\Windows\SysNative\drivers\msdv.sys (Microsoft Corporation) DRV:64bit: - (e1yexpress) -- C:\Windows\SysNative\drivers\e1y60x64.sys (Intel Corporation) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (ArcSoftKsUFilter) -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys (ArcSoft, Inc.) DRV:64bit: - (regi) -- C:\Windows\SysNative\drivers\regi.sys (InterVideo) DRV:64bit: - (cdrbsdrv) -- C:\Windows\SysNative\drivers\cdrbsdrv.sys (B.H.A Corporation) DRV - (a2acc) -- C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys (Emsisoft GmbH) DRV - (a2injectiondriver) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys (Emsisoft GmbH) DRV - (A2DDA) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys (Emsi Software GmbH) DRV - (a2util) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys (Emsi Software GmbH) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\Susanne\Downloads IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://vaioportal.sony.eu IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://sony.msn.com [binary data] IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.de/ IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\..\SearchScopes\{34363C34-29E6-4D43-A9A4-28B7D77C8AFE}: "URL" = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q112&_nkw={searchTerms} IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\..\SearchScopes\{6961D874-EDA9-4E3B-B2AC-FA6B5B40EDEE}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=671416de-fa33-45f5-8c5a-a356adc1a547&apn_sauid=2900232E-EECE-46E4-9D57-3D9DAF04646F IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7PRFB_deDE480 IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local ========== FireFox ========== FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Ask.com" FF - prefs.js..browser.startup.homepage: "https://www.google.de/" FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.11 FF - prefs.js..extensions.enabledAddons: toolbar@ask.com:3.15.11.100015 FF - prefs.js..keyword.URL: "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=AVR-4&o=APN10261&locale=de_DE&apn_uid=671416de-fa33-45f5-8c5a-a356adc1a547&apn_ptnrs=^AGS&apn_sauid=2900232E-EECE-46E4-9D57-3D9DAF04646F&apn_dtid=^YYYYYY^YY^DE&&q=" FF - prefs.js..network.proxy.no_proxies_on: "localho,t,127.0.0.1,*.local" FF - prefs.js..network.proxy.type: 0 FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_135.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.) FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: C:\Program Files (x86)\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.11.12 08:28:41 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.11.12 08:28:41 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.05.24 15:41:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Susanne\AppData\Roaming\mozilla\Extensions [2012.12.07 13:45:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Susanne\AppData\Roaming\mozilla\Firefox\Profiles\nknrn709.default\extensions [2012.07.12 15:26:22 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Users\Susanne\AppData\Roaming\mozilla\Firefox\Profiles\nknrn709.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2012.11.11 15:05:59 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Susanne\AppData\Roaming\mozilla\Firefox\Profiles\nknrn709.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2012.12.09 17:39:18 | 000,000,000 | ---D | M] ("Avira SearchFree Toolbar plus Web Protection") -- C:\Users\Susanne\AppData\Roaming\mozilla\Firefox\Profiles\nknrn709.default\extensions\toolbar@ask.com [2012.08.06 15:53:50 | 000,007,915 | ---- | M] () (No name found) -- C:\Users\Susanne\AppData\Roaming\mozilla\firefox\profiles\nknrn709.default\extensions\toolbar@ask.com\chrome\content\Abine\chrome\content\ff\view_expiry.js [2012.12.09 17:39:36 | 000,002,413 | ---- | M] () -- C:\Users\Susanne\AppData\Roaming\mozilla\firefox\profiles\nknrn709.default\searchplugins\askcom.xml [2012.11.07 13:30:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2012.11.07 13:30:10 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2012.09.06 03:07:37 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2012.09.06 03:07:37 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2012.09.06 03:07:37 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2012.09.06 03:07:37 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2012.09.06 03:07:37 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2012.09.06 03:07:37 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml ========== Chrome ========== CHR - homepage: hxxp://www.google.com/ CHR - homepage: hxxp://www.google.com/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 6.0.270.7 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U27 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll CHR - plugin: Media Go Detector (Enabled) = C:\Program Files (x86)\Sony\Media Go\npmediago.dll CHR - plugin: PlayStation(R)Network Downloader Check Plug-in (Enabled) = C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll CHR - Extension: YouTube = C:\Users\Susanne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Google-Suche = C:\Users\Susanne\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Google Mail = C:\Users\Susanne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O2 - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O2 - BHO: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3:64bit: - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [AthBtTray] C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Atheros Commnucations) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask) O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [Dolby Home Theater v4] C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe (Dolby Laboratories Inc.) O4 - HKLM..\Run: [emsisoft anti-malware] c:\program files (x86)\emsisoft anti-malware\a2guard.exe (Emsisoft GmbH) O4 - HKLM..\Run: [HPUsageTracking] C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe (Hewlett-Packard Company) O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [TrayServer] C:\Program Files (x86)\MAGIX\Video_deluxe_MX_Plus_Sonderedition\TrayServer_de.exe (MAGIX AG) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-4227909374-2998257738-3775123284-1001..\Run: [LogMeIn Cubby] C:\Users\Susanne\AppData\Roaming\cubby\cubby.exe (LogMeIn, Inc.) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - Startup: C:\Users\Susanne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Susanne\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:64bit: - Extra context menu item: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Susanne\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8:64bit: - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Susanne\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found O9 - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000020 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG) O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27) O16:64bit: - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27) O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27) O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6640977B-BFC3-4897-BADA-900C7B50D965}: DhcpNameServer = 10.100.14.2 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E4AC2736-AF79-4CC9-A5DC-885AC2A8C79D}: DhcpNameServer = 192.168.2.1 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2012.12.12 06:46:05 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2012.12.12 06:46:05 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2012.12.12 06:46:05 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2012.12.12 06:46:05 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2012.12.12 06:46:04 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2012.12.12 06:46:04 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2012.12.12 06:46:04 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2012.12.12 06:46:04 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2012.12.12 06:46:04 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2012.12.12 06:46:03 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2012.12.12 06:46:03 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2012.12.12 06:46:03 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2012.12.12 06:46:02 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2012.12.12 06:46:02 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2012.12.12 06:46:02 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2012.12.12 06:36:24 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2012.12.12 06:36:24 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2012.12.12 06:36:24 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll [2012.12.12 06:36:24 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2012.12.12 06:36:18 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll [2012.12.12 06:36:18 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll [2012.12.12 06:36:18 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe [2012.12.12 06:36:18 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll [2012.12.12 06:36:17 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll [2012.12.12 06:36:17 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll [2012.12.12 06:36:17 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe [2012.12.12 06:36:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll [2012.12.12 06:36:17 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll [2012.12.12 06:36:17 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll [2012.12.12 06:36:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe [2012.12.12 06:36:17 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll [2012.12.12 06:36:17 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll [2012.12.12 06:36:17 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll [2012.12.12 06:36:17 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll [2012.12.12 06:36:17 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll [2012.12.12 06:36:17 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll [2012.12.12 06:36:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll [2012.12.12 06:36:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll [2012.12.12 06:36:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll [2012.12.12 06:36:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll [2012.12.12 06:36:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll [2012.12.12 06:36:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll [2012.12.12 06:36:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll [2012.12.12 06:36:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll [2012.12.12 06:36:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll [2012.12.12 06:36:16 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll [2012.12.12 06:36:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll [2012.12.12 06:36:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll [2012.12.12 06:36:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll [2012.12.12 06:36:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll [2012.12.12 06:36:15 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll [2012.12.12 06:36:15 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll [2012.12.12 06:36:15 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll [2012.12.12 06:36:15 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll [2012.12.12 06:36:15 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll [2012.12.12 06:36:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll [2012.12.12 06:36:15 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe [2012.12.12 06:36:08 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll [2012.12.12 06:36:08 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll [2012.12.10 11:21:02 | 000,000,000 | ---D | C] -- C:\Users\Susanne\AppData\Local\{98245FBA-A18F-4668-8222-F71BA9192AB1} [2012.12.07 13:51:35 | 000,000,000 | ---D | C] -- C:\Users\Susanne\AppData\Roaming\Avira [2012.12.07 13:45:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ask.com [2012.12.07 13:45:24 | 000,000,000 | ---D | C] -- C:\Users\Susanne\AppData\Local\APN [2012.12.07 13:43:23 | 000,129,216 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avipbb.sys [2012.12.07 13:43:23 | 000,099,912 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avgntflt.sys [2012.12.07 13:43:23 | 000,027,800 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avkmgr.sys [2012.12.07 13:43:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2012.12.07 13:33:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware [2012.12.07 13:33:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Emsisoft Anti-Malware [2012.12.07 13:33:08 | 000,000,000 | ---D | C] -- C:\Users\Susanne\Documents\Anti-Malware [2012.12.06 08:26:38 | 000,000,000 | ---D | C] -- C:\Users\Susanne\AppData\Roaming\Malwarebytes [2012.12.06 08:26:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2012.11.30 13:51:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes [2012.11.30 13:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2012.11.30 13:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2012.11.30 13:51:36 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 [2012.11.30 08:47:47 | 000,000,000 | R--D | C] -- C:\Users\Susanne\Documents\Cubby [2012.11.29 09:36:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\phase-6 [2012.11.29 09:03:36 | 000,000,000 | R--D | C] -- C:\Users\Susanne\My Cubby [2012.11.29 09:03:36 | 000,000,000 | ---D | C] -- C:\Users\Susanne\AppData\Roaming\cubby [2012.11.21 07:43:45 | 000,000,000 | ---D | C] -- C:\Users\Susanne\AppData\Local\{E0617BA7-436B-455A-A0AE-CDC992D3E96E} [2012.11.14 14:51:15 | 000,000,000 | ---D | C] -- C:\Users\Susanne\AppData\Local\{97273535-AF05-409F-8427-A35904B1C85B} [2012.11.14 09:28:26 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys [2012.11.14 09:28:26 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll [2012.11.14 09:23:49 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll [2012.11.14 09:23:49 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe [2012.11.14 09:23:49 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll [2012.11.14 09:23:49 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll [2012.11.14 06:58:08 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll [2012.11.14 06:58:08 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll [2012.11.14 06:58:08 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll [2012.11.14 06:58:06 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll [2012.11.14 06:58:06 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll [2012.11.14 06:58:06 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll [2012.11.14 06:58:06 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll [2012.11.14 06:58:05 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll [2012.11.14 06:58:05 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll [2012.11.14 06:57:38 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll [2012.11.14 06:57:38 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.12.13 16:21:32 | 000,001,117 | ---- | M] () -- C:\Users\Susanne\Desktop\OTL - Verknüpfung.lnk [2012.12.13 16:11:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012.12.13 16:10:39 | 000,020,992 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.12.13 16:10:39 | 000,020,992 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.12.13 16:09:01 | 000,001,112 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012.12.13 16:08:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.12.13 16:00:23 | 000,001,108 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012.12.13 15:59:58 | 2132,713,471 | -HS- | M] () -- C:\hiberfil.sys [2012.12.12 16:13:31 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2012.12.12 16:13:31 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2012.12.12 07:08:54 | 000,588,648 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.12.11 16:49:57 | 000,129,216 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avipbb.sys [2012.12.11 16:49:56 | 000,099,912 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avgntflt.sys [2012.12.11 14:37:39 | 001,621,308 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.12.11 14:37:39 | 000,700,418 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2012.12.11 14:37:39 | 000,655,090 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012.12.11 14:37:39 | 000,149,182 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2012.12.11 14:37:39 | 000,121,962 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012.12.10 10:13:35 | 000,829,387 | ---- | M] () -- C:\Users\Public\Documents\micro-sim-schablone-macnotes.pdf [2012.12.07 13:46:22 | 000,002,070 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.12.07 13:33:31 | 000,001,095 | ---- | M] () -- C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk [2012.12.07 12:42:02 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2012.11.30 13:51:50 | 000,001,783 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk [2012.11.30 08:22:15 | 001,641,654 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.11.29 09:36:18 | 000,001,273 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\phase-6 Reminder.lnk [2012.11.29 09:36:18 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\phase-6 desktop.lnk [2012.11.29 09:03:37 | 000,001,747 | ---- | M] () -- C:\Users\Susanne\Desktop\Cubby.lnk [2012.11.16 20:17:15 | 000,027,800 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avkmgr.sys [2012.11.14 07:11:44 | 002,312,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2012.11.14 07:02:49 | 001,494,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2012.11.14 07:02:04 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2012.11.14 06:58:36 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2012.11.14 06:57:46 | 000,599,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2012.11.14 06:57:35 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2012.11.14 06:55:26 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2012.11.14 06:53:22 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2012.11.14 06:46:25 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2012.11.14 02:58:15 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2012.11.14 02:55:46 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2012.11.14 02:49:25 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2012.11.14 02:49:19 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2012.11.14 02:45:01 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2012.11.14 02:41:30 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2012.12.13 16:21:32 | 000,001,117 | ---- | C] () -- C:\Users\Susanne\Desktop\OTL - Verknüpfung.lnk [2012.12.10 10:13:35 | 000,829,387 | ---- | C] () -- C:\Users\Public\Documents\micro-sim-schablone-macnotes.pdf [2012.12.07 13:46:22 | 000,002,070 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.12.07 13:33:31 | 000,001,095 | ---- | C] () -- C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk [2012.11.30 13:51:50 | 000,001,783 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk [2012.11.29 09:03:37 | 000,001,747 | ---- | C] () -- C:\Users\Susanne\Desktop\Cubby.lnk [2012.11.29 09:03:37 | 000,001,733 | ---- | C] () -- C:\Users\Susanne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cubby.lnk [2012.11.14 09:28:28 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf [2012.11.14 09:23:49 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf [2012.09.25 15:28:41 | 000,000,705 | ---- | C] () -- C:\Windows\SysWow64\unins000.dat [2012.09.24 09:25:57 | 000,642,085 | ---- | C] () -- C:\Windows\unins000.exe [2012.09.24 09:25:57 | 000,001,575 | ---- | C] () -- C:\Windows\unins000.dat [2012.04.30 18:13:02 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll [2012.04.30 18:11:35 | 000,006,768 | ---- | C] () -- C:\Windows\mgxoschk.ini [2012.04.17 18:08:56 | 000,111,932 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat [2012.04.17 18:08:56 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat [2012.04.17 18:08:56 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat [2012.04.17 18:08:56 | 000,026,154 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat [2012.04.17 18:08:56 | 000,024,903 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat [2012.04.17 18:08:56 | 000,021,390 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat [2012.04.17 18:08:56 | 000,020,148 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat [2012.04.17 18:08:56 | 000,011,811 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat [2012.04.17 18:08:56 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat [2012.04.17 18:08:56 | 000,001,146 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_DU.dat [2012.04.17 18:08:56 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat [2012.04.17 18:08:56 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat [2012.04.17 18:08:56 | 000,001,136 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat [2012.04.17 18:08:56 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat [2012.04.17 18:08:56 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat [2012.04.17 18:08:56 | 000,001,120 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_IT.dat [2012.04.17 18:08:56 | 000,001,107 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_GE.dat [2012.04.17 18:08:56 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat [2012.04.17 18:08:56 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini [2012.04.17 08:21:20 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys [2012.04.17 07:28:22 | 000,074,703 | ---- | C] () -- C:\Windows\SysWow64\mfc45.dll [2012.04.03 05:57:21 | 000,341,504 | ---- | C] () -- C:\Windows\SysWow64\SonyVideoProcessor.dll [2011.06.27 07:25:40 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll [2011.02.11 00:03:27 | 001,641,654 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI ========== ZeroAccess Check ========== [2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2012.12.13 08:27:42 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\cubby [2012.12.07 06:44:54 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\DAEMON Tools Lite [2012.12.13 16:09:39 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\Dropbox [2012.09.24 15:33:54 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\DTgrafic [2012.10.28 08:22:45 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\DVDVideoSoft [2012.07.12 15:26:21 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\DVDVideoSoftIEHelpers [2012.10.30 14:35:34 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\iolo [2012.10.31 09:45:38 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\MAGIX [2012.09.24 09:21:25 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\Map Maker [2012.09.24 09:18:38 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\My Pictures 3D [2012.10.28 08:22:32 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\OpenCandy [2012.04.30 19:01:52 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\Panasonic [2012.04.26 14:26:25 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\Phase6 [2012.10.31 10:00:54 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\proDAD [2012.10.29 08:48:11 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\TuneUpMedia [2012.04.23 11:35:43 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\Windows Live Writer [2012.10.06 12:43:17 | 000,000,000 | ---D | M] -- C:\Users\Susanne\AppData\Roaming\XMedia Recode ========== Purity Check ========== < End of report > Lieber Markusg, danke, dass Du Dich gemeldet hast. Zwischenzeitlich waren es deutlich weniger mailer-daemons, aber heute waren es dann mal wieder über 130. Emisoft Anti-Maleware zeigt nichts an und antivir auch nicht. Vielen Dank, dass Du versuchst zu helfen. Bitte hab etwas Geduld, ich bin nur ein Anwender, kein Programmfreak. Danke markusg! |
|
13.12.2012, 18:56
| #4 |
| /// Malware-holic | e-Mail Flut mit mailer-daemon Meldungen download tdss killer: http://www.trojaner-board.de/82358-t...entfernen.html Klicke auf Change parameters • Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system • Klick auf OK und anschließend auf Start scan - bei funden erst mal immer skip wählen, log posten
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
14.12.2012, 07:25
| #5 |
| | e-Mail Flut mit mailer-daemon Meldungen Hab ich gemacht. Ergebnis: Suspicious/ FirebirdServerMAGIXInstance(UnsignedFile.Multi.Generic) und Skipped by user/FirebirdServerMAGIXInstance (UnsignedFile.Mulit.Generic) Ich kann die Reportdatei nicht kopieren. Wenn ich die rechte Maustaste benutze erscheint kein Unterfenster. |
|
14.12.2012, 14:46
| #6 |
| /// Malware-holic | e-Mail Flut mit mailer-daemon Meldungen Hi öffne Computer, c: TDSS-Killer-Version-Datum.txt dann gehts.
__________________ --> e-Mail Flut mit mailer-daemon Meldungen |
|
14.12.2012, 17:29
| #7 |
| | e-Mail Flut mit mailer-daemon Meldungen Hallo, der Text war wohl zu lang, deshalb teile ich ihn jetzt in 2 Teile auf: 07:14:15.0974 10268 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 07:14:16.0205 10268 ============================================================ 07:14:16.0205 10268 Current date / time: 2012/12/14 07:14:16.0205 07:14:16.0205 10268 SystemInfo: 07:14:16.0205 10268 07:14:16.0205 10268 OS Version: 6.1.7601 ServicePack: 1.0 07:14:16.0205 10268 Product type: Workstation 07:14:16.0206 10268 ComputerName: SUSANNE-VAIO 07:14:16.0206 10268 UserName: Susanne 07:14:16.0206 10268 Windows directory: C:\Windows 07:14:16.0206 10268 System windows directory: C:\Windows 07:14:16.0206 10268 Running under WOW64 07:14:16.0206 10268 Processor architecture: Intel x64 07:14:16.0206 10268 Number of processors: 4 07:14:16.0206 10268 Page size: 0x1000 07:14:16.0206 10268 Boot type: Normal boot 07:14:16.0206 10268 ============================================================ 07:14:16.0878 10268 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 07:14:16.0889 10268 ============================================================ 07:14:16.0889 10268 \Device\Harddisk0\DR0: 07:14:16.0889 10268 MBR partitions: 07:14:16.0889 10268 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2AF9800, BlocksNum 0x32000 07:14:16.0889 10268 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2B2B800, BlocksNum 0x54A1A6F0 07:14:16.0889 10268 ============================================================ 07:14:16.0937 10268 C: <-> \Device\Harddisk0\DR0\Partition2 07:14:16.0937 10268 ============================================================ 07:14:16.0937 10268 Initialize success 07:14:16.0937 10268 ============================================================ 07:15:56.0893 7700 ============================================================ 07:15:56.0893 7700 Scan started 07:15:56.0893 7700 Mode: Manual; SigCheck; TDLFS; 07:15:56.0893 7700 ============================================================ 07:16:00.0308 7700 ================ Scan system memory ======================== 07:16:00.0308 7700 System memory - ok 07:16:00.0309 7700 ================ Scan services ============================= 07:16:01.0338 7700 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 07:16:01.0406 7700 1394ohci - ok 07:16:01.0441 7700 [ E0A8525A951ADDB4655BC2068566407D ] 61883 C:\Windows\system32\DRIVERS\61883.sys 07:16:01.0500 7700 61883 - ok 07:16:01.0579 7700 [ 2D6434E957F7CFA0035C20890F77BBC6 ] a2acc C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys 07:16:01.0593 7700 a2acc - ok 07:16:01.0661 7700 [ C6D0B4BF12036D1EE092D2F5EF436FC7 ] a2AntiMalware C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe 07:16:01.0706 7700 a2AntiMalware - ok 07:16:01.0747 7700 [ 3044D0F3FEB9FFE8BC953D8F34B5B504 ] A2DDA C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys 07:16:01.0756 7700 A2DDA - ok 07:16:01.0780 7700 [ 3D55CE53128C81E06CD6B024C3B9FAC3 ] a2injectiondriver C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys 07:16:01.0786 7700 a2injectiondriver - ok 07:16:01.0807 7700 [ E41D79682A209F72F4F578CFD4A53952 ] a2util C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys 07:16:01.0815 7700 a2util - ok 07:16:01.0879 7700 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe 07:16:01.0887 7700 ACDaemon - ok 07:16:01.0950 7700 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 07:16:01.0966 7700 ACPI - ok 07:16:01.0984 7700 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 07:16:02.0072 7700 AcpiPmi - ok 07:16:02.0285 7700 [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe 07:16:02.0292 7700 AdobeActiveFileMonitor9.0 - ok 07:16:02.0614 7700 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 07:16:02.0620 7700 AdobeARMservice - ok 07:16:02.0847 7700 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 07:16:02.0855 7700 AdobeFlashPlayerUpdateSvc - ok 07:16:02.0893 7700 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 07:16:02.0908 7700 adp94xx - ok 07:16:02.0931 7700 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 07:16:02.0942 7700 adpahci - ok 07:16:02.0953 7700 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 07:16:02.0961 7700 adpu320 - ok 07:16:02.0979 7700 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 07:16:03.0076 7700 AeLookupSvc - ok 07:16:03.0147 7700 [ 0D0E5281784C2C526BA43C2ECD374288 ] Afc C:\Windows\syswow64\drivers\Afc.sys 07:16:03.0154 7700 Afc - ok 07:16:03.0184 7700 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 07:16:03.0238 7700 AFD - ok 07:16:03.0259 7700 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 07:16:03.0266 7700 agp440 - ok 07:16:03.0284 7700 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 07:16:03.0308 7700 ALG - ok 07:16:03.0337 7700 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 07:16:03.0343 7700 aliide - ok 07:16:03.0351 7700 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 07:16:03.0358 7700 amdide - ok 07:16:03.0379 7700 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 07:16:03.0403 7700 AmdK8 - ok 07:16:03.0425 7700 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 07:16:03.0453 7700 AmdPPM - ok 07:16:03.0493 7700 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 07:16:03.0499 7700 amdsata - ok 07:16:03.0519 7700 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 07:16:03.0532 7700 amdsbs - ok 07:16:03.0547 7700 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 07:16:03.0556 7700 amdxata - ok 07:16:03.0632 7700 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe 07:16:03.0639 7700 AntiVirSchedulerService - ok 07:16:03.0669 7700 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe 07:16:03.0675 7700 AntiVirService - ok 07:16:03.0700 7700 [ 255527AB98293EA390352A8C53B0042A ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE 07:16:03.0713 7700 AntiVirWebService - ok 07:16:03.0754 7700 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 07:16:03.0868 7700 AppID - ok 07:16:03.0892 7700 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 07:16:03.0942 7700 AppIDSvc - ok 07:16:03.0959 7700 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 07:16:04.0015 7700 Appinfo - ok 07:16:04.0080 7700 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 07:16:04.0085 7700 Apple Mobile Device - ok 07:16:04.0109 7700 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 07:16:04.0117 7700 arc - ok 07:16:04.0127 7700 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 07:16:04.0136 7700 arcsas - ok 07:16:04.0155 7700 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys 07:16:04.0162 7700 ArcSoftKsUFilter - ok 07:16:04.0238 7700 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 07:16:04.0244 7700 aspnet_state - ok 07:16:04.0271 7700 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 07:16:04.0312 7700 AsyncMac - ok 07:16:04.0337 7700 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 07:16:04.0343 7700 atapi - ok 07:16:04.0375 7700 [ A434E093CD25870E5D32CB0B70C442ED ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys 07:16:04.0380 7700 AthBTPort - ok 07:16:04.0423 7700 [ 4C4A576818EA028257C624AE36FF7A03 ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe 07:16:04.0428 7700 Atheros Bt&Wlan Coex Agent - ok 07:16:04.0438 7700 [ 520CE4BC1D9C83225F1DD76D1D2F28C8 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe 07:16:04.0444 7700 AtherosSvc - ok 07:16:04.0508 7700 [ A5E770426D18F8EF332A593F3289DA91 ] athr C:\Windows\system32\DRIVERS\athrx.sys 07:16:04.0600 7700 athr - ok 07:16:04.0646 7700 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 07:16:04.0689 7700 AudioEndpointBuilder - ok 07:16:04.0697 7700 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 07:16:04.0724 7700 AudioSrv - ok 07:16:04.0776 7700 [ 16FABE84916623D0607E4A975544032C ] Avc C:\Windows\system32\DRIVERS\avc.sys 07:16:04.0801 7700 Avc - ok 07:16:04.0838 7700 [ BFE9598EBC3934CF8D876A303849C896 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys 07:16:04.0845 7700 avgntflt - ok 07:16:04.0877 7700 [ F74D86A9FB35FA5F24627B8DBBF3A9A4 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys 07:16:04.0883 7700 avipbb - ok 07:16:04.0915 7700 [ CD0E732347BF09717E0BDDC0C66699AB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys 07:16:04.0921 7700 avkmgr - ok 07:16:04.0974 7700 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 07:16:05.0009 7700 AxInstSV - ok 07:16:05.0043 7700 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 07:16:05.0069 7700 b06bdrv - ok 07:16:05.0095 7700 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 07:16:05.0119 7700 b57nd60a - ok 07:16:05.0178 7700 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE 07:16:05.0186 7700 BBSvc - ok 07:16:05.0210 7700 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE 07:16:05.0220 7700 BBUpdate - ok 07:16:05.0242 7700 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 07:16:05.0267 7700 BDESVC - ok 07:16:05.0286 7700 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 07:16:05.0331 7700 Beep - ok 07:16:05.0373 7700 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 07:16:05.0418 7700 BFE - ok 07:16:05.0446 7700 [ ACC9C8C560C567FAD6F79C977AB2EA09 ] bgsvcgen C:\Windows\SysWOW64\bgsvcgen.exe 07:16:05.0455 7700 bgsvcgen - ok 07:16:05.0480 7700 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 07:16:05.0531 7700 BITS - ok 07:16:05.0553 7700 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 07:16:05.0573 7700 blbdrive - ok 07:16:05.0625 7700 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 07:16:05.0638 7700 Bonjour Service - ok 07:16:05.0661 7700 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 07:16:05.0704 7700 bowser - ok 07:16:05.0739 7700 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 07:16:05.0762 7700 BrFiltLo - ok 07:16:05.0765 7700 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 07:16:05.0779 7700 BrFiltUp - ok 07:16:05.0804 7700 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 07:16:05.0827 7700 Browser - ok 07:16:05.0843 7700 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 07:16:05.0876 7700 Brserid - ok 07:16:05.0894 7700 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 07:16:05.0917 7700 BrSerWdm - ok 07:16:05.0936 7700 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 07:16:05.0961 7700 BrUsbMdm - ok 07:16:05.0964 7700 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 07:16:05.0984 7700 BrUsbSer - ok 07:16:06.0011 7700 [ BC9616C9D05B4B0843FF0D8D7A003AA7 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys 07:16:06.0023 7700 BTATH_A2DP - ok 07:16:06.0040 7700 [ 00A186BAB2D5DB4F549BCF8666D8AB39 ] btath_avdt C:\Windows\system32\drivers\btath_avdt.sys 07:16:06.0047 7700 btath_avdt - ok 07:16:06.0068 7700 [ D6EAD8F45ECBEDE3B1ADBEE5F075E0E2 ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys 07:16:06.0074 7700 BTATH_BUS - ok 07:16:06.0107 7700 [ 557BC22D5AC7FB5DD51AD00F0A03BE09 ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys 07:16:06.0114 7700 BTATH_HCRP - ok 07:16:06.0118 7700 [ 3B9F872F1330728172D2F5ABFB8A7706 ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys 07:16:06.0124 7700 BTATH_LWFLT - ok 07:16:06.0150 7700 [ 4225B326514F20BAB3751E532F403D1D ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys 07:16:06.0161 7700 BTATH_RCP - ok 07:16:06.0210 7700 [ 60675E839A37056ED5CBC7E00935451C ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys 07:16:06.0225 7700 BtFilter - ok 07:16:06.0255 7700 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys 07:16:06.0289 7700 BthEnum - ok 07:16:06.0333 7700 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 07:16:06.0359 7700 BTHMODEM - ok 07:16:06.0392 7700 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 07:16:06.0413 7700 BthPan - ok 07:16:06.0443 7700 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys 07:16:06.0480 7700 BTHPORT - ok 07:16:06.0510 7700 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 07:16:06.0540 7700 bthserv - ok 07:16:06.0559 7700 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys 07:16:06.0586 7700 BTHUSB - ok 07:16:06.0613 7700 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 07:16:06.0680 7700 cdfs - ok 07:16:06.0712 7700 [ 9EDD76D0800A022AE10B9243D0224E72 ] cdrbsdrv C:\Windows\system32\drivers\cdrbsdrv.sys 07:16:06.0719 7700 cdrbsdrv - ok 07:16:06.0768 7700 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 07:16:06.0777 7700 cdrom - ok 07:16:06.0829 7700 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 07:16:06.0890 7700 CertPropSvc - ok 07:16:06.0909 7700 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 07:16:06.0950 7700 circlass - ok 07:16:07.0014 7700 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 07:16:07.0038 7700 CLFS - ok 07:16:07.0135 7700 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 07:16:07.0142 7700 clr_optimization_v2.0.50727_32 - ok 07:16:07.0217 7700 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 07:16:07.0224 7700 clr_optimization_v2.0.50727_64 - ok 07:16:07.0403 7700 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 07:16:07.0410 7700 clr_optimization_v4.0.30319_32 - ok 07:16:07.0434 7700 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 07:16:07.0442 7700 clr_optimization_v4.0.30319_64 - ok 07:16:07.0466 7700 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 07:16:07.0489 7700 CmBatt - ok 07:16:07.0501 7700 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 07:16:07.0510 7700 cmdide - ok 07:16:07.0534 7700 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys 07:16:07.0558 7700 CNG - ok 07:16:07.0594 7700 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 07:16:07.0602 7700 Compbatt - ok 07:16:07.0610 7700 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 07:16:07.0648 7700 CompositeBus - ok 07:16:07.0666 7700 COMSysApp - ok 07:16:07.0679 7700 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 07:16:07.0688 7700 crcdisk - ok 07:16:07.0710 7700 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 07:16:07.0743 7700 CryptSvc - ok 07:16:07.0817 7700 [ A759F37E0289F5290BED9138A776B7FF ] DCDhcpService C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe 07:16:07.0824 7700 DCDhcpService - ok 07:16:07.0859 7700 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 07:16:07.0913 7700 DcomLaunch - ok 07:16:07.0952 7700 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 07:16:07.0993 7700 defragsvc - ok 07:16:08.0012 7700 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 07:16:08.0050 7700 DfsC - ok 07:16:08.0074 7700 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 07:16:08.0095 7700 Dhcp - ok 07:16:08.0114 7700 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 07:16:08.0156 7700 discache - ok 07:16:08.0174 7700 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 07:16:08.0181 7700 Disk - ok 07:16:08.0197 7700 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 07:16:08.0221 7700 Dnscache - ok 07:16:08.0241 7700 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 07:16:08.0282 7700 dot3svc - ok 07:16:08.0299 7700 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 07:16:08.0342 7700 DPS - ok 07:16:08.0373 7700 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 07:16:08.0397 7700 drmkaud - ok 07:16:08.0422 7700 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 07:16:08.0446 7700 DXGKrnl - ok 07:16:08.0465 7700 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys 07:16:08.0487 7700 e1yexpress - ok 07:16:08.0508 7700 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 07:16:08.0552 7700 EapHost - ok 07:16:08.0608 7700 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 07:16:08.0690 7700 ebdrv - ok 07:16:08.0715 7700 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 07:16:08.0724 7700 EFS - ok 07:16:08.0775 7700 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 07:16:08.0803 7700 ehRecvr - ok 07:16:08.0818 7700 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 07:16:08.0827 7700 ehSched - ok 07:16:08.0846 7700 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 07:16:08.0861 7700 elxstor - ok 07:16:08.0871 7700 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 07:16:08.0895 7700 ErrDev - ok 07:16:08.0946 7700 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 07:16:08.0986 7700 EventSystem - ok 07:16:09.0003 7700 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 07:16:09.0028 7700 exfat - ok 07:16:09.0112 7700 Fabs - ok 07:16:09.0130 7700 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 07:16:09.0180 7700 fastfat - ok 07:16:09.0216 7700 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 07:16:09.0245 7700 Fax - ok 07:16:09.0270 7700 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 07:16:09.0288 7700 fdc - ok 07:16:09.0319 7700 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 07:16:09.0346 7700 fdPHost - ok 07:16:09.0359 7700 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 07:16:09.0400 7700 FDResPub - ok 07:16:09.0422 7700 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 07:16:09.0431 7700 FileInfo - ok 07:16:09.0441 7700 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 07:16:09.0486 7700 Filetrace - ok 07:16:09.0553 7700 [ 5BD96D8C5411ACE71A7EAACAF0EF2903 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe 07:16:09.0625 7700 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning 07:16:09.0625 7700 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1) 07:16:09.0652 7700 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 07:16:09.0662 7700 flpydisk - ok 07:16:09.0695 7700 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 07:16:09.0708 7700 FltMgr - ok 07:16:09.0742 7700 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 07:16:09.0776 7700 FontCache - ok 07:16:09.0868 7700 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 07:16:09.0873 7700 FontCache3.0.0.0 - ok 07:16:09.0888 7700 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 07:16:09.0894 7700 FsDepends - ok 07:16:09.0906 7700 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 07:16:09.0913 7700 Fs_Rec - ok 07:16:09.0952 7700 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 07:16:09.0964 7700 fvevol - ok 07:16:09.0973 7700 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 07:16:09.0980 7700 gagp30kx - ok 07:16:09.0999 7700 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 07:16:10.0004 7700 GEARAspiWDM - ok 07:16:10.0025 7700 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 07:16:10.0058 7700 gpsvc - ok 07:16:10.0104 7700 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 07:16:10.0111 7700 gupdate - ok 07:16:10.0124 7700 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 07:16:10.0131 7700 gupdatem - ok 07:16:10.0142 7700 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 07:16:10.0149 7700 gusvc - ok 07:16:10.0172 7700 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 07:16:10.0196 7700 hcw85cir - ok 07:16:10.0219 7700 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 07:16:10.0252 7700 HdAudAddService - ok 07:16:10.0280 7700 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 07:16:10.0362 7700 HDAudBus - ok 07:16:10.0380 7700 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 07:16:10.0401 7700 HidBatt - ok 07:16:10.0421 7700 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 07:16:10.0442 7700 HidBth - ok 07:16:10.0460 7700 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 07:16:10.0470 7700 HidIr - ok 07:16:10.0486 7700 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 07:16:10.0527 7700 hidserv - ok 07:16:10.0556 7700 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 07:16:10.0564 7700 HidUsb - ok 07:16:10.0594 7700 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 07:16:10.0634 7700 hkmsvc - ok 07:16:10.0650 7700 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 07:16:10.0672 7700 HomeGroupListener - ok 07:16:10.0700 7700 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 07:16:10.0723 7700 HomeGroupProvider - ok 07:16:10.0748 7700 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 07:16:10.0755 7700 HpSAMD - ok 07:16:10.0780 7700 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 07:16:10.0827 7700 HTTP - ok 07:16:10.0841 7700 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 07:16:10.0849 7700 hwpolicy - ok 07:16:10.0874 7700 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 07:16:10.0882 7700 i8042prt - ok 07:16:10.0902 7700 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\drivers\iaStor.sys 07:16:10.0914 7700 iaStor - ok 07:16:10.0968 7700 [ 983FC69644DDF0486C8DFEA262948D1A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 07:16:10.0974 7700 IAStorDataMgrSvc - ok 07:16:10.0999 7700 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 07:16:11.0016 7700 iaStorV - ok 07:16:11.0060 7700 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 07:16:11.0080 7700 idsvc - ok 07:16:11.0095 7700 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 07:16:11.0103 7700 iirsp - ok 07:16:11.0134 7700 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 07:16:11.0184 7700 IKEEXT - ok 07:16:11.0367 7700 [ 65F70696BE5ABC11634FCF96AF7D7896 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 07:16:11.0445 7700 IntcAzAudAddService - ok 07:16:11.0478 7700 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 07:16:11.0486 7700 intelide - ok 07:16:11.0508 7700 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 07:16:11.0528 7700 intelppm - ok 07:16:11.0563 7700 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 07:16:11.0605 7700 IPBusEnum - ok 07:16:11.0618 7700 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 07:16:11.0651 7700 IpFilterDriver - ok 07:16:11.0675 7700 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 07:16:11.0706 7700 iphlpsvc - ok 07:16:11.0718 7700 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 07:16:11.0744 7700 IPMIDRV - ok 07:16:11.0765 7700 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 07:16:11.0809 7700 IPNAT - ok 07:16:11.0868 7700 [ B474C756C13960793C7583B766F904C4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 07:16:11.0883 7700 iPod Service - ok 07:16:11.0912 7700 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 07:16:11.0945 7700 IRENUM - ok 07:16:11.0961 7700 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 07:16:11.0968 7700 isapnp - ok 07:16:11.0986 7700 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 07:16:11.0997 7700 iScsiPrt - ok 07:16:12.0021 7700 [ F415A88162D23977B5EDAE4F0410E903 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe 07:16:12.0029 7700 IviRegMgr - ok 07:16:12.0072 7700 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 07:16:12.0079 7700 kbdclass - ok 07:16:12.0091 7700 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 07:16:12.0141 7700 kbdhid - ok 07:16:12.0157 7700 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 07:16:12.0165 7700 KeyIso - ok 07:16:12.0186 7700 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 07:16:12.0194 7700 KSecDD - ok 07:16:12.0236 7700 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 07:16:12.0248 7700 KSecPkg - ok 07:16:12.0275 7700 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 07:16:12.0351 7700 ksthunk - ok 07:16:12.0451 7700 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 07:16:12.0602 7700 KtmRm - ok 07:16:12.0657 7700 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 07:16:12.0695 7700 LanmanServer - ok 07:16:12.0718 7700 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 07:16:12.0759 7700 LanmanWorkstation - ok 07:16:12.0793 7700 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 07:16:12.0834 7700 lltdio - ok 07:16:12.0850 7700 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 07:16:12.0894 7700 lltdsvc - ok 07:16:12.0925 7700 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 07:16:12.0960 7700 lmhosts - ok 07:16:13.0020 7700 [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 07:16:13.0028 7700 LMS - ok 07:16:13.0055 7700 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 07:16:13.0063 7700 LSI_FC - ok 07:16:13.0067 7700 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 07:16:13.0074 7700 LSI_SAS - ok 07:16:13.0079 7700 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 07:16:13.0087 7700 LSI_SAS2 - ok 07:16:13.0093 7700 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 07:16:13.0100 7700 LSI_SCSI - ok 07:16:13.0122 7700 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 07:16:13.0161 7700 luafv - ok 07:16:13.0184 7700 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 07:16:13.0206 7700 Mcx2Svc - ok 07:16:13.0219 7700 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 07:16:13.0225 7700 megasas - ok 07:16:13.0258 7700 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 07:16:13.0271 7700 MegaSR - ok 07:16:13.0304 7700 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 07:16:13.0311 7700 MEIx64 - ok 07:16:13.0336 7700 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 07:16:13.0368 7700 MMCSS - ok 07:16:13.0393 7700 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 07:16:13.0427 7700 Modem - ok 07:16:13.0448 7700 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 07:16:13.0471 7700 monitor - ok 07:16:13.0498 7700 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 07:16:13.0506 7700 mouclass - ok 07:16:13.0515 7700 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 07:16:13.0540 7700 mouhid - ok 07:16:13.0553 7700 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 07:16:13.0561 7700 mountmgr - ok 07:16:13.0619 7700 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 07:16:13.0625 7700 MozillaMaintenance - ok 07:16:13.0638 7700 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 07:16:13.0645 7700 mpio - ok 07:16:13.0659 7700 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 07:16:13.0684 7700 mpsdrv - ok 07:16:13.0716 7700 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 07:16:13.0751 7700 MpsSvc - ok 07:16:13.0770 7700 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 07:16:13.0800 7700 MRxDAV - ok 07:16:13.0822 7700 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 07:16:13.0861 7700 mrxsmb - ok 07:16:13.0884 7700 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 07:16:13.0896 7700 mrxsmb10 - ok 07:16:13.0901 7700 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 07:16:13.0908 7700 mrxsmb20 - ok 07:16:13.0924 7700 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 07:16:13.0931 7700 msahci - ok 07:16:13.0950 7700 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 07:16:13.0958 7700 msdsm - ok 07:16:13.0978 7700 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 07:16:14.0002 7700 MSDTC - ok 07:16:14.0046 7700 [ 72949A24D37A20A54B3D4D3DADBB55E9 ] MSDV C:\Windows\system32\DRIVERS\msdv.sys 07:16:14.0074 7700 MSDV - ok 07:16:14.0091 7700 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 07:16:14.0130 7700 Msfs - ok 07:16:14.0160 7700 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 07:16:14.0187 7700 mshidkmdf - ok 07:16:14.0198 7700 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 07:16:14.0204 7700 msisadrv - ok 07:16:14.0222 7700 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 07:16:14.0264 7700 MSiSCSI - ok 07:16:14.0267 7700 msiserver - ok 07:16:14.0294 7700 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 07:16:14.0334 7700 MSKSSRV - ok 07:16:14.0373 7700 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 07:16:14.0415 7700 MSPCLOCK - ok 07:16:14.0426 7700 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 07:16:14.0469 7700 MSPQM - ok 07:16:14.0490 7700 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 07:16:14.0504 7700 MsRPC - ok 07:16:14.0520 7700 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 07:16:14.0526 7700 mssmbios - ok 07:16:14.0539 7700 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 07:16:14.0580 7700 MSTEE - ok 07:16:14.0583 7700 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 07:16:14.0596 7700 MTConfig - ok 07:16:14.0611 7700 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 07:16:14.0619 7700 Mup - ok 07:16:14.0643 7700 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 07:16:14.0685 7700 napagent - ok 07:16:14.0719 7700 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 07:16:14.0748 7700 NativeWifiP - ok 07:16:14.0797 7700 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 07:16:14.0819 7700 NDIS - ok 07:16:14.0840 7700 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 07:16:14.0864 7700 NdisCap - ok 07:16:14.0879 7700 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 07:16:14.0902 7700 NdisTapi - ok 07:16:14.0927 7700 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 07:16:14.0954 7700 Ndisuio - ok 07:16:14.0976 7700 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 07:16:15.0016 7700 NdisWan - ok 07:16:15.0021 7700 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 07:16:15.0051 7700 NDProxy - ok 07:16:15.0085 7700 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys 07:16:15.0105 7700 Netaapl - ok 07:16:15.0136 7700 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 07:16:15.0172 7700 NetBIOS - ok 07:16:15.0194 7700 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 07:16:15.0219 7700 NetBT - ok 07:16:15.0230 7700 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 07:16:15.0237 7700 Netlogon - ok 07:16:15.0265 7700 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 07:16:15.0305 7700 Netman - ok 07:16:15.0332 7700 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 07:16:15.0345 7700 NetMsmqActivator - ok 07:16:15.0349 7700 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 07:16:15.0355 7700 NetPipeActivator - ok 07:16:15.0370 7700 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 07:16:15.0414 7700 netprofm - ok 07:16:15.0418 7700 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 07:16:15.0426 7700 NetTcpActivator - ok 07:16:15.0429 7700 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 07:16:15.0436 7700 NetTcpPortSharing - ok 07:16:15.0496 7700 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 07:16:15.0504 7700 nfrd960 - ok 07:16:15.0527 7700 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 07:16:15.0554 7700 NlaSvc - ok 07:16:15.0569 7700 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 07:16:15.0594 7700 Npfs - ok 07:16:15.0602 7700 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 07:16:15.0627 7700 nsi - ok 07:16:15.0633 7700 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 07:16:15.0673 7700 nsiproxy - ok 07:16:15.0723 7700 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 07:16:15.0766 7700 Ntfs - ok 07:16:15.0784 7700 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 07:16:15.0822 7700 Null - ok 07:16:15.0852 7700 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys 07:16:15.0866 7700 nusb3hub - ok 07:16:15.0894 7700 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys 07:16:15.0934 7700 nusb3xhc - ok 07:16:15.0963 7700 [ F2662FDC20518EE8A8EED4F61BA42349 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 07:16:15.0972 7700 NVHDA - ok 07:16:16.0152 7700 [ A8151A773CE78233375445D41B77E85E ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 07:16:16.0433 7700 nvlddmkm - ok 07:16:16.0449 7700 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 07:16:16.0456 7700 nvraid - ok 07:16:16.0484 7700 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 07:16:16.0493 7700 nvstor - ok 07:16:16.0519 7700 [ B10CCA77064C6171846E1CF0D7155AF3 ] NVSvc C:\Windows\system32\nvvsvc.exe 07:16:16.0540 7700 NVSvc - ok 07:16:16.0565 7700 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 07:16:16.0574 7700 nv_agp - ok 07:16:16.0645 7700 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 07:16:16.0660 7700 odserv - ok 07:16:16.0671 7700 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 07:16:16.0696 7700 ohci1394 - ok 07:16:16.0735 7700 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 07:16:16.0742 7700 ose - ok 07:16:16.0773 7700 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 07:16:16.0794 7700 p2pimsvc - ok 07:16:16.0816 7700 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 07:16:16.0828 7700 p2psvc - ok 07:16:16.0855 7700 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 07:16:16.0874 7700 Parport - ok 07:16:16.0903 7700 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 07:16:16.0911 7700 partmgr - ok 07:16:16.0934 7700 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 07:16:16.0964 7700 PcaSvc - ok 07:16:16.0987 7700 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 07:16:16.0997 7700 pci - ok 07:16:17.0011 7700 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 07:16:17.0021 7700 pciide - ok 07:16:17.0037 7700 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 07:16:17.0048 7700 pcmcia - ok 07:16:17.0052 7700 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 07:16:17.0061 7700 pcw - ok 07:16:17.0076 7700 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 07:16:17.0130 7700 PEAUTH - ok 07:16:17.0180 7700 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 07:16:17.0200 7700 PerfHost - ok 07:16:17.0241 7700 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 07:16:17.0305 7700 pla - ok 07:16:17.0341 7700 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 07:16:17.0368 7700 PlugPlay - ok 07:16:17.0427 7700 [ AE6C778717DE2F6B0C0B5335036D3363 ] PMBDeviceInfoProvider c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe 07:16:17.0444 7700 PMBDeviceInfoProvider - ok 07:16:17.0458 7700 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 07:16:17.0478 7700 PNRPAutoReg - ok 07:16:17.0497 7700 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 07:16:17.0509 7700 PNRPsvc - ok 07:16:17.0526 7700 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 07:16:17.0581 7700 PolicyAgent - ok 07:16:17.0601 7700 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 07:16:17.0655 7700 Power - ok 07:16:17.0690 7700 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 07:16:17.0734 7700 PptpMiniport - ok 07:16:17.0754 7700 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 07:16:17.0775 7700 Processor - ok 07:16:17.0812 7700 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 07:16:17.0834 7700 ProfSvc - ok 07:16:17.0848 7700 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 07:16:17.0857 7700 ProtectedStorage - ok 07:16:17.0874 7700 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 07:16:17.0912 7700 Psched - ok 07:16:17.0951 7700 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe 07:16:17.0959 7700 PSI_SVC_2 - ok 07:16:17.0984 7700 [ F2EECF8977BD3FE4E38743DDCFBECD20 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 07:16:17.0991 7700 PxHlpa64 - ok 07:16:18.0185 7700 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 07:16:18.0226 7700 ql2300 - ok 07:16:18.0237 7700 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 07:16:18.0245 7700 ql40xx - ok 07:16:18.0278 7700 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 07:16:18.0294 7700 QWAVE - ok 07:16:18.0302 7700 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 07:16:18.0327 7700 QWAVEdrv - ok 07:16:18.0341 7700 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 07:16:18.0388 7700 RasAcd - ok 07:16:18.0424 7700 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 07:16:18.0452 7700 RasAgileVpn - ok 07:16:18.0487 7700 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 07:16:18.0530 7700 RasAuto - ok 07:16:18.0554 7700 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 07:16:18.0590 7700 Rasl2tp - ok 07:16:18.0613 7700 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 07:16:18.0647 7700 RasMan - ok 07:16:18.0667 7700 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 07:16:18.0707 7700 RasPppoe - ok 07:16:18.0728 7700 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 07:16:18.0785 7700 RasSstp - ok 07:16:18.0791 7700 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 07:16:18.0829 7700 rdbss - ok 07:16:18.0854 7700 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 07:16:18.0865 7700 rdpbus - ok 07:16:18.0873 7700 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 07:16:18.0902 7700 RDPCDD - ok 07:16:18.0950 7700 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 07:16:18.0991 7700 RDPENCDD - ok 07:16:19.0006 7700 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 07:16:19.0029 7700 RDPREFMP - ok 07:16:19.0106 7700 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 07:16:19.0125 7700 RdpVideoMiniport - ok 07:16:19.0175 7700 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 07:16:19.0195 7700 RDPWD - ok 07:16:19.0229 7700 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 07:16:19.0237 7700 rdyboost - ok 07:16:19.0255 7700 [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi C:\Windows\system32\drivers\regi.sys 07:16:19.0260 7700 regi - ok 07:16:19.0295 7700 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 07:16:19.0320 7700 RemoteAccess - ok 07:16:19.0368 7700 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 07:16:19.0413 7700 RemoteRegistry - ok 07:16:19.0438 7700 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 07:16:19.0466 7700 RFCOMM - ok 07:16:19.0492 7700 [ FF71ECB1B121C6273EC4C45EDDBC4FE4 ] rimspci C:\Windows\system32\DRIVERS\rimssne64.sys 07:16:19.0539 7700 rimspci - ok 07:16:19.0574 7700 [ E33075C22C14C57095F037253F936BB8 ] risdsnpe C:\Windows\system32\DRIVERS\risdsnxc64.sys 07:16:19.0613 7700 risdsnpe - ok 07:16:19.0641 7700 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 07:16:19.0694 7700 RpcEptMapper - ok 07:16:19.0714 7700 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 07:16:19.0737 7700 RpcLocator - ok 07:16:19.0768 7700 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 07:16:19.0805 7700 RpcSs - ok 07:16:19.0829 7700 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 07:16:19.0860 7700 rspndr - ok 07:16:19.0897 7700 [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 07:16:19.0914 7700 RTL8167 - ok 07:16:19.0948 7700 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 07:16:19.0958 7700 SamSs - ok 07:16:19.0968 7700 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 07:16:19.0978 7700 sbp2port - ok 07:16:20.0000 7700 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 07:16:20.0036 7700 SCardSvr - ok 07:16:20.0053 7700 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 07:16:20.0096 7700 scfilter - ok 07:16:20.0126 7700 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 07:16:20.0184 7700 Schedule - ok 07:16:20.0211 7700 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 07:16:20.0243 7700 SCPolicySvc - ok 07:16:20.0280 7700 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 07:16:20.0308 7700 sdbus - ok 07:16:20.0334 7700 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 07:16:20.0353 7700 SDRSVC - ok 07:16:20.0379 7700 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 07:16:20.0420 7700 secdrv - ok 07:16:20.0439 7700 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 07:16:20.0472 7700 seclogon - ok 07:16:20.0483 7700 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 07:16:20.0530 7700 SENS - ok 07:16:20.0559 7700 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 07:16:20.0586 7700 SensrSvc - ok 07:16:20.0631 7700 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 07:16:20.0656 7700 Serenum - ok 07:16:20.0677 7700 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 07:16:20.0699 7700 Serial - ok 07:16:20.0715 7700 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 07:16:20.0738 7700 sermouse - ok 07:16:20.0760 7700 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 07:16:20.0804 7700 SessionEnv - ok 07:16:20.0855 7700 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys 07:16:20.0895 7700 SFEP - ok 07:16:20.0909 7700 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 07:16:20.0930 7700 sffdisk - ok 07:16:20.0957 7700 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 07:16:20.0983 7700 sffp_mmc - ok 07:16:21.0003 7700 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 07:16:21.0026 7700 sffp_sd - ok 07:16:21.0044 7700 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 07:16:21.0066 7700 sfloppy - ok 07:16:21.0096 7700 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 07:16:21.0142 7700 SharedAccess - ok 07:16:21.0173 7700 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 07:16:21.0221 7700 ShellHWDetection - ok 07:16:21.0238 7700 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 07:16:21.0247 7700 SiSRaid2 - ok 07:16:21.0273 7700 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 07:16:21.0280 7700 SiSRaid4 - ok 07:16:21.0317 7700 [ B866E8C5ED1DCBEA72285BA4107892C2 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 07:16:21.0323 7700 SkypeUpdate - ok 07:16:21.0344 7700 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 07:16:21.0391 7700 Smb - ok 07:16:21.0417 7700 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 07:16:21.0429 7700 SNMPTRAP - ok 07:16:21.0487 7700 [ DDF2EC98AF6FC70608A4F9CE4DB52758 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe 07:16:21.0495 7700 SOHCImp - ok 07:16:21.0513 7700 [ 5FA03F5EA6EFEF6D17B4A1A48C40A23C ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe 07:16:21.0519 7700 SOHDs - ok 07:16:21.0624 7700 [ C03E480E63A80D73FABE28D24D3B6B47 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe 07:16:21.0632 7700 SpfService - ok 07:16:21.0642 7700 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 07:16:21.0651 7700 spldr - ok 07:16:21.0705 7700 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 07:16:21.0717 7700 Spooler - ok 07:16:21.0950 7700 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 07:16:22.0041 7700 sppsvc - ok 07:16:22.0095 7700 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 07:16:22.0123 7700 sppuinotify - ok 07:16:22.0230 7700 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 07:16:22.0271 7700 srv - ok 07:16:22.0285 7700 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 07:16:22.0311 7700 srv2 - ok 07:16:22.0330 7700 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 07:16:22.0341 7700 srvnet - ok 07:16:22.0373 7700 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 07:16:22.0403 7700 SSDPSRV - ok 07:16:22.0417 7700 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 07:16:22.0443 7700 SstpSvc - ok 07:16:22.0490 7700 [ 525597FA2E9D49F19C59623B05562968 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 07:16:22.0499 7700 Stereo Service - ok 07:16:22.0523 7700 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 07:16:22.0529 7700 stexstor - ok 07:16:22.0552 7700 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 07:16:22.0590 7700 stisvc - ok 07:16:22.0605 7700 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 07:16:22.0611 7700 swenum - ok 07:16:22.0626 7700 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 07:16:22.0678 7700 swprv - ok 07:16:22.0746 7700 [ B0C7D4DCF4800DF2F2145B500D0161E8 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 07:16:22.0776 7700 SynTP - ok 07:16:22.0846 7700 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 07:16:22.0906 7700 SysMain - ok 07:16:22.0938 7700 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 07:16:22.0970 7700 TabletInputService - ok 07:16:23.0015 7700 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 07:16:23.0042 7700 TapiSrv - ok 07:16:23.0059 7700 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 07:16:23.0096 7700 TBS - ok 07:16:23.0178 7700 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 07:16:23.0230 7700 Tcpip - ok 07:16:23.0268 7700 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 07:16:23.0296 7700 TCPIP6 - ok 07:16:23.0309 7700 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 07:16:23.0320 7700 tcpipreg - ok 07:16:23.0336 7700 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 07:16:23.0356 7700 TDPIPE - ok 07:16:23.0401 7700 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 07:16:23.0410 7700 TDTCP - ok 07:16:23.0440 7700 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 07:16:23.0477 7700 tdx - ok 07:16:23.0480 7700 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 07:16:23.0489 7700 TermDD - ok 07:16:23.0520 7700 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 07:16:23.0554 7700 TermService - ok 07:16:23.0569 7700 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 07:16:23.0582 7700 Themes - ok 07:16:23.0606 7700 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 07:16:23.0632 7700 THREADORDER - ok 07:16:23.0642 7700 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 07:16:23.0688 7700 TrkWks - ok 07:16:23.0734 7700 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 07:16:23.0756 7700 TrustedInstaller - ok 07:16:23.0768 7700 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 07:16:23.0810 7700 tssecsrv - ok 07:16:23.0845 7700 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 07:16:23.0868 7700 TsUsbFlt - ok 07:16:23.0888 7700 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 07:16:23.0897 7700 TsUsbGD - ok 07:16:23.0926 7700 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 07:16:23.0972 7700 tunnel - ok 07:16:23.0987 7700 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 07:16:23.0994 7700 uagp35 - ok 07:16:24.0041 7700 [ 1FE69F3C1CA1CF4B7EC7E2E9090FFFDC ] uCamMonitor c:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe 07:16:24.0048 7700 uCamMonitor - ok 07:16:24.0064 7700 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 07:16:24.0115 7700 udfs - ok 07:16:24.0136 7700 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 07:16:24.0156 7700 UI0Detect - ok 07:16:24.0187 7700 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 07:16:24.0194 7700 uliagpkx - ok 07:16:24.0207 7700 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 07:16:24.0230 7700 umbus - ok 07:16:24.0250 7700 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 07:16:24.0270 7700 UmPass - ok 07:16:24.0359 7700 [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 07:16:24.0393 7700 UNS - ok 07:16:24.0426 7700 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 07:16:24.0465 7700 upnphost - ok 07:16:24.0498 7700 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 07:16:24.0505 7700 USBAAPL64 - ok 07:16:24.0550 7700 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 07:16:24.0571 7700 usbaudio - ok 07:16:24.0603 7700 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 07:16:24.0624 7700 usbccgp - ok 07:16:24.0645 7700 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 07:16:24.0654 7700 usbcir - ok 07:16:24.0658 7700 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 07:16:24.0676 7700 usbehci - ok 07:16:24.0706 7700 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 07:16:24.0729 7700 usbhub - ok 07:16:24.0746 7700 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 07:16:24.0765 7700 usbohci - ok 07:16:24.0794 7700 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 07:16:24.0819 7700 usbprint - ok 07:16:24.0848 7700 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 07:16:24.0877 7700 USBSTOR - ok 07:16:24.0899 7700 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 07:16:24.0919 7700 usbuhci - ok 07:16:24.0947 7700 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 07:16:24.0975 7700 usbvideo - ok 07:16:25.0000 7700 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 07:16:25.0039 7700 UxSms - ok 07:16:25.0079 7700 [ 203FD19D70549A2939E1AE3A36608151 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe 07:16:25.0086 7700 VAIO Event Service - ok 07:16:25.0128 7700 [ 63DD41D4C6F5FD59BEB08C88292CA76A ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe 07:16:25.0145 7700 VAIO Power Management - ok 07:16:25.0152 7700 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 07:16:25.0160 7700 VaultSvc - ok 07:16:25.0222 7700 [ ADD5A5BA64D0710E1C764A8D4DAD510E ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe 07:16:25.0245 7700 VCFw - ok 07:16:25.0291 7700 [ EEE5AD6FB40B35F7867C3A49B98BB4EF ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe 07:16:25.0311 7700 VcmIAlzMgr - ok 07:16:25.0388 7700 [ 2F06D134554BA84FE253DBC481DCFE6D ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe 07:16:25.0400 7700 VcmINSMgr - ok 07:16:25.0430 7700 [ 9BC1F203C5604C24F345BCFCD6956BAE ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe 07:16:25.0437 7700 VcmXmlIfHelper - ok 07:16:25.0474 7700 [ 9F2D25FA154A32C8C80420A46FBBF815 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe 07:16:25.0480 7700 VCService - ok 07:16:25.0509 7700 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 07:16:25.0516 7700 vdrvroot - ok 07:16:25.0540 7700 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 07:16:25.0578 7700 vds - ok 07:16:25.0591 7700 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 07:16:25.0603 7700 vga - ok 07:16:25.0620 7700 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 07:16:25.0660 7700 VgaSave - ok 07:16:25.0678 7700 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 07:16:25.0687 7700 vhdmp - ok 07:16:25.0696 7700 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 07:16:25.0702 7700 viaide - ok 07:16:25.0713 7700 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 07:16:25.0720 7700 volmgr - ok 07:16:25.0732 7700 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 07:16:25.0743 7700 volmgrx - ok 07:16:25.0759 7700 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 07:16:25.0772 7700 volsnap - ok 07:16:25.0790 7700 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 07:16:25.0798 7700 vsmraid - ok 07:16:25.0851 7700 [ 6B427EF11B77646E7E3EEFB2C4870191 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe 07:16:25.0883 7700 VSNService - ok 07:16:25.0925 7700 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 07:16:25.0996 7700 VSS - ok 07:16:26.0053 7700 [ F5742637A15179AD47C41855A3BF9415 ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe 07:16:26.0071 7700 VUAgent - ok 07:16:26.0088 7700 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 07:16:26.0111 7700 vwifibus - ok 07:16:26.0134 7700 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 07:16:26.0163 7700 vwififlt - ok 07:16:26.0189 7700 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 07:16:26.0216 7700 vwifimp - ok 07:16:26.0244 7700 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 07:16:26.0273 7700 W32Time - ok 07:16:26.0289 7700 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 07:16:26.0298 7700 WacomPen - ok 07:16:26.0324 7700 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 07:16:26.0363 7700 WANARP - ok 07:16:26.0366 7700 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 07:16:26.0389 7700 Wanarpv6 - ok 07:16:26.0441 7700 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 07:16:26.0491 7700 wbengine - ok 07:16:26.0513 7700 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 07:16:26.0528 7700 WbioSrvc - ok 07:16:26.0544 7700 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 07:16:26.0572 7700 wcncsvc - ok 07:16:26.0593 7700 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 07:16:26.0613 7700 WcsPlugInService - ok 07:16:26.0642 7700 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 07:16:26.0649 7700 Wd - ok 07:16:26.0681 7700 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 07:16:26.0701 7700 Wdf01000 - ok 07:16:26.0711 7700 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 07:16:26.0740 7700 WdiServiceHost - ok 07:16:26.0743 7700 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 07:16:26.0757 7700 WdiSystemHost - ok 07:16:26.0780 7700 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 07:16:26.0807 7700 WebClient - ok 07:16:26.0823 7700 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 07:16:26.0864 7700 Wecsvc - ok 07:16:26.0883 7700 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 07:16:26.0921 7700 wercplsupport - ok 07:16:26.0942 7700 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 07:16:26.0973 7700 WerSvc - ok 07:16:27.0000 7700 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 07:16:27.0028 7700 WfpLwf - ok 07:16:27.0043 7700 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 07:16:27.0051 7700 WIMMount - ok 07:16:27.0062 7700 WinDefend - ok 07:16:27.0066 7700 WinHttpAutoProxySvc - ok 07:16:27.0098 7700 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 07:16:27.0134 7700 Winmgmt - ok 07:16:27.0178 7700 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 07:16:27.0239 7700 WinRM - ok 07:16:27.0269 7700 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 07:16:27.0283 7700 WinUsb - ok 07:16:27.0311 7700 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 07:16:27.0349 7700 Wlansvc - ok 07:16:27.0385 7700 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 07:16:27.0392 7700 wlcrasvc - ok 07:16:27.0452 7700 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 07:16:27.0504 7700 wlidsvc - ok 07:16:27.0528 7700 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 07:16:27.0548 7700 WmiAcpi - ok 07:16:27.0574 7700 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 07:16:27.0598 7700 wmiApSrv - ok 07:16:27.0631 7700 WMPNetworkSvc - ok 07:16:27.0653 7700 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 07:16:27.0660 7700 WPCSvc - ok 07:16:27.0674 7700 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 07:16:27.0687 7700 WPDBusEnum - ok 07:16:27.0706 7700 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 07:16:27.0729 7700 ws2ifsl - ok 07:16:27.0733 7700 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 07:16:27.0758 7700 wscsvc - ok 07:16:27.0760 7700 WSearch - ok 07:16:27.0814 7700 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 07:16:27.0846 7700 wuauserv - ok 07:16:27.0865 7700 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 07:16:27.0894 7700 WudfPf - ok 07:16:27.0918 7700 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 07:16:27.0942 7700 WUDFRd - ok 07:16:27.0974 7700 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 07:16:27.0995 7700 wudfsvc - ok 07:16:28.0025 7700 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 07:16:28.0040 7700 WwanSvc - ok 07:16:28.0072 7700 ================ Scan global =============================== 07:16:28.0085 7700 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 07:16:28.0100 7700 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll 07:16:28.0106 7700 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll 07:16:28.0127 7700 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 07:16:28.0141 7700 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 07:16:28.0143 7700 [Global] - ok 07:16:28.0144 7700 ================ Scan MBR ================================== 07:16:28.0154 7700 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 07:16:28.0438 7700 \Device\Harddisk0\DR0 - ok 07:16:28.0440 7700 ================ Scan VBR ================================== 07:16:28.0442 7700 [ 3956C3CFF839EB3B3DE8478C12167FC2 ] \Device\Harddisk0\DR0\Partition1 07:16:28.0443 7700 \Device\Harddisk0\DR0\Partition1 - ok 07:16:28.0476 7700 [ 53240A12CB9A826592C3A968FA82B404 ] \Device\Harddisk0\DR0\Partition2 07:16:28.0478 7700 \Device\Harddisk0\DR0\Partition2 - ok 07:16:28.0478 7700 ============================================================ 07:16:28.0478 7700 Scan finished 07:16:28.0478 7700 ============================================================ 07:16:28.0486 9996 Detected object count: 1 07:16:28.0486 9996 Actual detected object count: 1 07:17:52.0237 9996 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user 07:17:52.0237 9996 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip |
|
14.12.2012, 17:31
| #8 |
| | e-Mail Flut mit mailer-daemon Meldungen Oh je, ist das richtig so? Was geb ich denn da alles preis? ;-) 07:26:29.0434 7680 ============================================================ 07:26:29.0434 7680 Scan started 07:26:29.0434 7680 Mode: Manual; SigCheck; TDLFS; 07:26:29.0434 7680 ============================================================ 07:26:31.0052 7680 ================ Scan system memory ======================== 07:26:31.0052 7680 System memory - ok 07:26:31.0052 7680 ================ Scan services ============================= 07:26:31.0150 7680 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 07:26:31.0174 7680 1394ohci - ok 07:26:31.0195 7680 [ E0A8525A951ADDB4655BC2068566407D ] 61883 C:\Windows\system32\DRIVERS\61883.sys 07:26:31.0209 7680 61883 - ok 07:26:31.0400 7680 [ 2D6434E957F7CFA0035C20890F77BBC6 ] a2acc C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys 07:26:31.0407 7680 a2acc - ok 07:26:31.0465 7680 [ C6D0B4BF12036D1EE092D2F5EF436FC7 ] a2AntiMalware C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe 07:26:31.0520 7680 a2AntiMalware - ok 07:26:31.0543 7680 [ 3044D0F3FEB9FFE8BC953D8F34B5B504 ] A2DDA C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys 07:26:31.0551 7680 A2DDA - ok 07:26:31.0559 7680 [ 3D55CE53128C81E06CD6B024C3B9FAC3 ] a2injectiondriver C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys 07:26:31.0568 7680 a2injectiondriver - ok 07:26:31.0579 7680 [ E41D79682A209F72F4F578CFD4A53952 ] a2util C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys 07:26:31.0585 7680 a2util - ok 07:26:31.0642 7680 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe 07:26:31.0650 7680 ACDaemon - ok 07:26:31.0672 7680 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 07:26:31.0686 7680 ACPI - ok 07:26:31.0705 7680 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 07:26:31.0717 7680 AcpiPmi - ok 07:26:31.0774 7680 [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe 07:26:31.0783 7680 AdobeActiveFileMonitor9.0 - ok 07:26:31.0825 7680 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 07:26:31.0833 7680 AdobeARMservice - ok 07:26:31.0959 7680 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 07:26:31.0967 7680 AdobeFlashPlayerUpdateSvc - ok 07:26:31.0989 7680 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 07:26:32.0005 7680 adp94xx - ok 07:26:32.0027 7680 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 07:26:32.0039 7680 adpahci - ok 07:26:32.0057 7680 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 07:26:32.0064 7680 adpu320 - ok 07:26:32.0083 7680 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 07:26:32.0109 7680 AeLookupSvc - ok 07:26:32.0145 7680 [ 0D0E5281784C2C526BA43C2ECD374288 ] Afc C:\Windows\syswow64\drivers\Afc.sys 07:26:32.0150 7680 Afc - ok 07:26:32.0173 7680 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 07:26:32.0188 7680 AFD - ok 07:26:32.0207 7680 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 07:26:32.0215 7680 agp440 - ok 07:26:32.0232 7680 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 07:26:32.0240 7680 ALG - ok 07:26:32.0255 7680 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 07:26:32.0264 7680 aliide - ok 07:26:32.0274 7680 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 07:26:32.0280 7680 amdide - ok 07:26:32.0294 7680 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 07:26:32.0302 7680 AmdK8 - ok 07:26:32.0315 7680 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 07:26:32.0326 7680 AmdPPM - ok 07:26:32.0350 7680 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 07:26:32.0357 7680 amdsata - ok 07:26:32.0383 7680 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 07:26:32.0391 7680 amdsbs - ok 07:26:32.0405 7680 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 07:26:32.0413 7680 amdxata - ok 07:26:32.0473 7680 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe 07:26:32.0478 7680 AntiVirSchedulerService - ok 07:26:32.0502 7680 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe 07:26:32.0508 7680 AntiVirService - ok 07:26:32.0533 7680 [ 255527AB98293EA390352A8C53B0042A ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE 07:26:32.0543 7680 AntiVirWebService - ok 07:26:32.0562 7680 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 07:26:32.0586 7680 AppID - ok 07:26:32.0601 7680 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 07:26:32.0625 7680 AppIDSvc - ok 07:26:32.0635 7680 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 07:26:32.0660 7680 Appinfo - ok 07:26:32.0707 7680 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 07:26:32.0713 7680 Apple Mobile Device - ok 07:26:32.0728 7680 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 07:26:32.0737 7680 arc - ok 07:26:32.0745 7680 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 07:26:32.0754 7680 arcsas - ok 07:26:32.0773 7680 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys 07:26:32.0779 7680 ArcSoftKsUFilter - ok 07:26:32.0839 7680 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 07:26:32.0847 7680 aspnet_state - ok 07:26:32.0857 7680 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 07:26:32.0885 7680 AsyncMac - ok 07:26:32.0897 7680 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 07:26:32.0905 7680 atapi - ok 07:26:32.0928 7680 [ A434E093CD25870E5D32CB0B70C442ED ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys 07:26:32.0933 7680 AthBTPort - ok 07:26:32.0967 7680 [ 4C4A576818EA028257C624AE36FF7A03 ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe 07:26:32.0975 7680 Atheros Bt&Wlan Coex Agent - ok 07:26:32.0982 7680 [ 520CE4BC1D9C83225F1DD76D1D2F28C8 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe 07:26:32.0989 7680 AtherosSvc - ok 07:26:33.0044 7680 [ A5E770426D18F8EF332A593F3289DA91 ] athr C:\Windows\system32\DRIVERS\athrx.sys 07:26:33.0119 7680 athr - ok 07:26:33.0149 7680 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 07:26:33.0187 7680 AudioEndpointBuilder - ok 07:26:33.0196 7680 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 07:26:33.0225 7680 AudioSrv - ok 07:26:33.0255 7680 [ 16FABE84916623D0607E4A975544032C ] Avc C:\Windows\system32\DRIVERS\avc.sys 07:26:33.0268 7680 Avc - ok 07:26:33.0284 7680 [ BFE9598EBC3934CF8D876A303849C896 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys 07:26:33.0291 7680 avgntflt - ok 07:26:33.0306 7680 [ F74D86A9FB35FA5F24627B8DBBF3A9A4 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys 07:26:33.0312 7680 avipbb - ok 07:26:33.0336 7680 [ CD0E732347BF09717E0BDDC0C66699AB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys 07:26:33.0341 7680 avkmgr - ok 07:26:33.0362 7680 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 07:26:33.0379 7680 AxInstSV - ok 07:26:33.0406 7680 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 07:26:33.0430 7680 b06bdrv - ok 07:26:33.0458 7680 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 07:26:33.0471 7680 b57nd60a - ok 07:26:33.0508 7680 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE 07:26:33.0518 7680 BBSvc - ok 07:26:33.0540 7680 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE 07:26:33.0551 7680 BBUpdate - ok 07:26:33.0572 7680 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 07:26:33.0589 7680 BDESVC - ok 07:26:33.0600 7680 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 07:26:33.0624 7680 Beep - ok 07:26:33.0645 7680 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 07:26:33.0679 7680 BFE - ok 07:26:33.0694 7680 [ ACC9C8C560C567FAD6F79C977AB2EA09 ] bgsvcgen C:\Windows\SysWOW64\bgsvcgen.exe 07:26:33.0702 7680 bgsvcgen - ok 07:26:33.0727 7680 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 07:26:33.0763 7680 BITS - ok 07:26:33.0776 7680 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 07:26:33.0784 7680 blbdrive - ok 07:26:33.0823 7680 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 07:26:33.0836 7680 Bonjour Service - ok 07:26:33.0851 7680 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 07:26:33.0868 7680 bowser - ok 07:26:33.0879 7680 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 07:26:33.0889 7680 BrFiltLo - ok 07:26:33.0894 7680 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 07:26:33.0903 7680 BrFiltUp - ok 07:26:33.0927 7680 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 07:26:33.0947 7680 Browser - ok 07:26:33.0959 7680 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 07:26:33.0972 7680 Brserid - ok 07:26:33.0985 7680 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 07:26:33.0998 7680 BrSerWdm - ok 07:26:34.0003 7680 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 07:26:34.0016 7680 BrUsbMdm - ok 07:26:34.0020 7680 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 07:26:34.0028 7680 BrUsbSer - ok 07:26:34.0044 7680 [ BC9616C9D05B4B0843FF0D8D7A003AA7 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys 07:26:34.0055 7680 BTATH_A2DP - ok 07:26:34.0066 7680 [ 00A186BAB2D5DB4F549BCF8666D8AB39 ] btath_avdt C:\Windows\system32\drivers\btath_avdt.sys 07:26:34.0072 7680 btath_avdt - ok 07:26:34.0085 7680 [ D6EAD8F45ECBEDE3B1ADBEE5F075E0E2 ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys 07:26:34.0090 7680 BTATH_BUS - ok 07:26:34.0116 7680 [ 557BC22D5AC7FB5DD51AD00F0A03BE09 ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys 07:26:34.0123 7680 BTATH_HCRP - ok 07:26:34.0134 7680 [ 3B9F872F1330728172D2F5ABFB8A7706 ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys 07:26:34.0140 7680 BTATH_LWFLT - ok 07:26:34.0145 7680 [ 4225B326514F20BAB3751E532F403D1D ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys 07:26:34.0153 7680 BTATH_RCP - ok 07:26:34.0169 7680 [ 60675E839A37056ED5CBC7E00935451C ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys 07:26:34.0182 7680 BtFilter - ok 07:26:34.0206 7680 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys 07:26:34.0231 7680 BthEnum - ok 07:26:34.0252 7680 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 07:26:34.0265 7680 BTHMODEM - ok 07:26:34.0269 7680 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 07:26:34.0279 7680 BthPan - ok 07:26:34.0296 7680 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys 07:26:34.0314 7680 BTHPORT - ok 07:26:34.0329 7680 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 07:26:34.0358 7680 bthserv - ok 07:26:34.0371 7680 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys 07:26:34.0379 7680 BTHUSB - ok 07:26:34.0391 7680 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 07:26:34.0418 7680 cdfs - ok 07:26:34.0433 7680 [ 9EDD76D0800A022AE10B9243D0224E72 ] cdrbsdrv C:\Windows\system32\drivers\cdrbsdrv.sys 07:26:34.0440 7680 cdrbsdrv - ok 07:26:34.0454 7680 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 07:26:34.0463 7680 cdrom - ok 07:26:34.0476 7680 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 07:26:34.0503 7680 CertPropSvc - ok 07:26:34.0515 7680 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 07:26:34.0529 7680 circlass - ok 07:26:34.0545 7680 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 07:26:34.0558 7680 CLFS - ok 07:26:34.0592 7680 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 07:26:34.0599 7680 clr_optimization_v2.0.50727_32 - ok 07:26:34.0625 7680 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 07:26:34.0632 7680 clr_optimization_v2.0.50727_64 - ok 07:26:34.0671 7680 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 07:26:34.0678 7680 clr_optimization_v4.0.30319_32 - ok 07:26:34.0702 7680 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 07:26:34.0710 7680 clr_optimization_v4.0.30319_64 - ok 07:26:34.0734 7680 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 07:26:34.0742 7680 CmBatt - ok 07:26:34.0753 7680 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 07:26:34.0762 7680 cmdide - ok 07:26:34.0788 7680 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys 07:26:34.0811 7680 CNG - ok 07:26:34.0821 7680 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 07:26:34.0828 7680 Compbatt - ok 07:26:34.0837 7680 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 07:26:34.0848 7680 CompositeBus - ok 07:26:34.0851 7680 COMSysApp - ok 07:26:34.0865 7680 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 07:26:34.0875 7680 crcdisk - ok 07:26:34.0896 7680 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 07:26:34.0916 7680 CryptSvc - ok 07:26:34.0969 7680 [ A759F37E0289F5290BED9138A776B7FF ] DCDhcpService C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe 07:26:34.0976 7680 DCDhcpService - ok 07:26:35.0003 7680 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 07:26:35.0029 7680 DcomLaunch - ok 07:26:35.0047 7680 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 07:26:35.0075 7680 defragsvc - ok 07:26:35.0090 7680 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 07:26:35.0122 7680 DfsC - ok 07:26:35.0136 7680 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 07:26:35.0154 7680 Dhcp - ok 07:26:35.0168 7680 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 07:26:35.0193 7680 discache - ok 07:26:35.0203 7680 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 07:26:35.0213 7680 Disk - ok 07:26:35.0226 7680 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 07:26:35.0244 7680 Dnscache - ok 07:26:35.0262 7680 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 07:26:35.0297 7680 dot3svc - ok 07:26:35.0312 7680 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 07:26:35.0342 7680 DPS - ok 07:26:35.0352 7680 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 07:26:35.0364 7680 drmkaud - ok 07:26:35.0385 7680 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 07:26:35.0409 7680 DXGKrnl - ok 07:26:35.0428 7680 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys 07:26:35.0442 7680 e1yexpress - ok 07:26:35.0455 7680 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 07:26:35.0479 7680 EapHost - ok 07:26:35.0530 7680 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 07:26:35.0600 7680 ebdrv - ok 07:26:35.0621 7680 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 07:26:35.0631 7680 EFS - ok 07:26:35.0681 7680 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 07:26:35.0698 7680 ehRecvr - ok 07:26:35.0707 7680 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 07:26:35.0719 7680 ehSched - ok 07:26:35.0743 7680 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 07:26:35.0758 7680 elxstor - ok 07:26:35.0769 7680 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 07:26:35.0777 7680 ErrDev - ok 07:26:35.0802 7680 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 07:26:35.0839 7680 EventSystem - ok 07:26:35.0851 7680 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 07:26:35.0876 7680 exfat - ok 07:26:35.0936 7680 Fabs - ok 07:26:35.0954 7680 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 07:26:35.0987 7680 fastfat - ok 07:26:36.0015 7680 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 07:26:36.0039 7680 Fax - ok 07:26:36.0060 7680 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 07:26:36.0069 7680 fdc - ok 07:26:36.0077 7680 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 07:26:36.0100 7680 fdPHost - ok 07:26:36.0108 7680 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 07:26:36.0132 7680 FDResPub - ok 07:26:36.0147 7680 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 07:26:36.0157 7680 FileInfo - ok 07:26:36.0165 7680 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 07:26:36.0193 7680 Filetrace - ok 07:26:36.0252 7680 [ 5BD96D8C5411ACE71A7EAACAF0EF2903 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe 07:26:36.0311 7680 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning 07:26:36.0311 7680 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1) 07:26:36.0327 7680 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 07:26:36.0337 7680 flpydisk - ok 07:26:36.0354 7680 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 07:26:36.0366 7680 FltMgr - ok 07:26:36.0392 7680 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 07:26:36.0417 7680 FontCache - ok 07:26:36.0452 7680 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 07:26:36.0459 7680 FontCache3.0.0.0 - ok 07:26:36.0472 7680 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 07:26:36.0481 7680 FsDepends - ok 07:26:36.0499 7680 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 07:26:36.0506 7680 Fs_Rec - ok 07:26:36.0527 7680 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 07:26:36.0540 7680 fvevol - ok 07:26:36.0549 7680 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 07:26:36.0557 7680 gagp30kx - ok 07:26:36.0575 7680 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 07:26:36.0581 7680 GEARAspiWDM - ok 07:26:36.0609 7680 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 07:26:36.0648 7680 gpsvc - ok 07:26:36.0680 7680 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 07:26:36.0689 7680 gupdate - ok 07:26:36.0692 7680 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 07:26:36.0698 7680 gupdatem - ok 07:26:36.0710 7680 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 07:26:36.0719 7680 gusvc - ok 07:26:36.0740 7680 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 07:26:36.0747 7680 hcw85cir - ok 07:26:36.0762 7680 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 07:26:36.0779 7680 HdAudAddService - ok 07:26:36.0790 7680 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 07:26:36.0805 7680 HDAudBus - ok 07:26:36.0817 7680 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 07:26:36.0827 7680 HidBatt - ok 07:26:36.0840 7680 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 07:26:36.0853 7680 HidBth - ok 07:26:36.0863 7680 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 07:26:36.0877 7680 HidIr - ok 07:26:36.0898 7680 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 07:26:36.0927 7680 hidserv - ok 07:26:36.0935 7680 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 07:26:36.0943 7680 HidUsb - ok 07:26:36.0964 7680 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 07:26:36.0994 7680 hkmsvc - ok 07:26:37.0004 7680 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 07:26:37.0021 7680 HomeGroupListener - ok 07:26:37.0046 7680 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 07:26:37.0056 7680 HomeGroupProvider - ok 07:26:37.0069 7680 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 07:26:37.0077 7680 HpSAMD - ok 07:26:37.0093 7680 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 07:26:37.0125 7680 HTTP - ok 07:26:37.0138 7680 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 07:26:37.0146 7680 hwpolicy - ok 07:26:37.0154 7680 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 07:26:37.0163 7680 i8042prt - ok 07:26:37.0182 7680 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\drivers\iaStor.sys 07:26:37.0196 7680 iaStor - ok 07:26:37.0240 7680 [ 983FC69644DDF0486C8DFEA262948D1A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 07:26:37.0247 7680 IAStorDataMgrSvc - ok 07:26:37.0263 7680 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 07:26:37.0276 7680 iaStorV - ok 07:26:37.0323 7680 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 07:26:37.0343 7680 idsvc - ok 07:26:37.0358 7680 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 07:26:37.0368 7680 iirsp - ok 07:26:37.0397 7680 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 07:26:37.0436 7680 IKEEXT - ok 07:26:37.0498 7680 [ 65F70696BE5ABC11634FCF96AF7D7896 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 07:26:37.0569 7680 IntcAzAudAddService - ok 07:26:37.0577 7680 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 07:26:37.0584 7680 intelide - ok 07:26:37.0599 7680 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 07:26:37.0608 7680 intelppm - ok 07:26:37.0629 7680 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 07:26:37.0659 7680 IPBusEnum - ok 07:26:37.0674 7680 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 07:26:37.0701 7680 IpFilterDriver - ok 07:26:37.0725 7680 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 07:26:37.0741 7680 iphlpsvc - ok 07:26:37.0745 7680 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 07:26:37.0754 7680 IPMIDRV - ok 07:26:37.0758 7680 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 07:26:37.0792 7680 IPNAT - ok 07:26:37.0867 7680 [ B474C756C13960793C7583B766F904C4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 07:26:37.0881 7680 iPod Service - ok 07:26:37.0887 7680 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 07:26:37.0901 7680 IRENUM - ok 07:26:37.0912 7680 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 07:26:37.0919 7680 isapnp - ok 07:26:37.0936 7680 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 07:26:37.0951 7680 iScsiPrt - ok 07:26:37.0972 7680 [ F415A88162D23977B5EDAE4F0410E903 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe 07:26:37.0980 7680 IviRegMgr - ok 07:26:37.0989 7680 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 07:26:37.0998 7680 kbdclass - ok 07:26:38.0012 7680 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 07:26:38.0022 7680 kbdhid - ok 07:26:38.0033 7680 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 07:26:38.0041 7680 KeyIso - ok 07:26:38.0062 7680 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 07:26:38.0070 7680 KSecDD - ok 07:26:38.0086 7680 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 07:26:38.0098 7680 KSecPkg - ok 07:26:38.0110 7680 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 07:26:38.0135 7680 ksthunk - ok 07:26:38.0162 7680 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 07:26:38.0190 7680 KtmRm - ok 07:26:38.0220 7680 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 07:26:38.0253 7680 LanmanServer - ok 07:26:38.0265 7680 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 07:26:38.0292 7680 LanmanWorkstation - ok 07:26:38.0324 7680 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 07:26:38.0349 7680 lltdio - ok 07:26:38.0364 7680 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 07:26:38.0393 7680 lltdsvc - ok 07:26:38.0406 7680 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 07:26:38.0434 7680 lmhosts - ok 07:26:38.0460 7680 [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 07:26:38.0471 7680 LMS - ok 07:26:38.0495 7680 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 07:26:38.0503 7680 LSI_FC - ok 07:26:38.0512 7680 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 07:26:38.0522 7680 LSI_SAS - ok 07:26:38.0531 7680 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 07:26:38.0540 7680 LSI_SAS2 - ok 07:26:38.0549 7680 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 07:26:38.0560 7680 LSI_SCSI - ok 07:26:38.0570 7680 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 07:26:38.0599 7680 luafv - ok 07:26:38.0615 7680 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 07:26:38.0625 7680 Mcx2Svc - ok 07:26:38.0634 7680 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 07:26:38.0642 7680 megasas - ok 07:26:38.0657 7680 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 07:26:38.0669 7680 MegaSR - ok 07:26:38.0673 7680 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 07:26:38.0680 7680 MEIx64 - ok 07:26:38.0694 7680 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 07:26:38.0725 7680 MMCSS - ok 07:26:38.0734 7680 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 07:26:38.0762 7680 Modem - ok 07:26:38.0773 7680 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 07:26:38.0783 7680 monitor - ok 07:26:38.0798 7680 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 07:26:38.0804 7680 mouclass - ok 07:26:38.0814 7680 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 07:26:38.0824 7680 mouhid - ok 07:26:38.0837 7680 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 07:26:38.0844 7680 mountmgr - ok 07:26:38.0877 7680 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 07:26:38.0886 7680 MozillaMaintenance - ok 07:26:38.0902 7680 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 07:26:38.0911 7680 mpio - ok 07:26:38.0934 7680 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 07:26:38.0960 7680 mpsdrv - ok 07:26:38.0991 7680 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 07:26:39.0020 7680 MpsSvc - ok 07:26:39.0034 7680 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 07:26:39.0050 7680 MRxDAV - ok 07:26:39.0064 7680 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 07:26:39.0073 7680 mrxsmb - ok 07:26:39.0079 7680 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 07:26:39.0089 7680 mrxsmb10 - ok 07:26:39.0093 7680 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 07:26:39.0103 7680 mrxsmb20 - ok 07:26:39.0117 7680 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 07:26:39.0123 7680 msahci - ok 07:26:39.0143 7680 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 07:26:39.0151 7680 msdsm - ok 07:26:39.0171 7680 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 07:26:39.0179 7680 MSDTC - ok 07:26:39.0206 7680 [ 72949A24D37A20A54B3D4D3DADBB55E9 ] MSDV C:\Windows\system32\DRIVERS\msdv.sys 07:26:39.0217 7680 MSDV - ok 07:26:39.0227 7680 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 07:26:39.0254 7680 Msfs - ok 07:26:39.0270 7680 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 07:26:39.0297 7680 mshidkmdf - ok 07:26:39.0309 7680 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 07:26:39.0317 7680 msisadrv - ok 07:26:39.0341 7680 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 07:26:39.0367 7680 MSiSCSI - ok 07:26:39.0370 7680 msiserver - ok 07:26:39.0380 7680 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 07:26:39.0406 7680 MSKSSRV - ok 07:26:39.0417 7680 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 07:26:39.0441 7680 MSPCLOCK - ok 07:26:39.0454 7680 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 07:26:39.0476 7680 MSPQM - ok 07:26:39.0493 7680 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 07:26:39.0506 7680 MsRPC - ok 07:26:39.0515 7680 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 07:26:39.0521 7680 mssmbios - ok 07:26:39.0534 7680 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 07:26:39.0556 7680 MSTEE - ok 07:26:39.0560 7680 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 07:26:39.0568 7680 MTConfig - ok 07:26:39.0571 7680 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 07:26:39.0581 7680 Mup - ok 07:26:39.0605 7680 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 07:26:39.0631 7680 napagent - ok 07:26:39.0638 7680 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 07:26:39.0650 7680 NativeWifiP - ok 07:26:39.0684 7680 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 07:26:39.0702 7680 NDIS - ok 07:26:39.0719 7680 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 07:26:39.0742 7680 NdisCap - ok 07:26:39.0758 7680 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 07:26:39.0783 7680 NdisTapi - ok 07:26:39.0798 7680 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 07:26:39.0825 7680 Ndisuio - ok 07:26:39.0839 7680 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 07:26:39.0867 7680 NdisWan - ok 07:26:39.0881 7680 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 07:26:39.0911 7680 NDProxy - ok 07:26:39.0931 7680 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys 07:26:39.0938 7680 Netaapl - ok 07:26:39.0949 7680 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 07:26:39.0979 7680 NetBIOS - ok 07:26:39.0984 7680 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 07:26:40.0013 7680 NetBT - ok 07:26:40.0034 7680 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 07:26:40.0042 7680 Netlogon - ok 07:26:40.0062 7680 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 07:26:40.0088 7680 Netman - ok 07:26:40.0112 7680 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 07:26:40.0119 7680 NetMsmqActivator - ok 07:26:40.0123 7680 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 07:26:40.0130 7680 NetPipeActivator - ok 07:26:40.0149 7680 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 07:26:40.0186 7680 netprofm - ok 07:26:40.0190 7680 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 07:26:40.0196 7680 NetTcpActivator - ok 07:26:40.0205 7680 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 07:26:40.0211 7680 NetTcpPortSharing - ok 07:26:40.0227 7680 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 07:26:40.0233 7680 nfrd960 - ok 07:26:40.0250 7680 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 07:26:40.0260 7680 NlaSvc - ok 07:26:40.0275 7680 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 07:26:40.0298 7680 Npfs - ok 07:26:40.0316 7680 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 07:26:40.0339 7680 nsi - ok 07:26:40.0347 7680 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 07:26:40.0372 7680 nsiproxy - ok 07:26:40.0412 7680 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 07:26:40.0438 7680 Ntfs - ok 07:26:40.0457 7680 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 07:26:40.0482 7680 Null - ok 07:26:40.0500 7680 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys 07:26:40.0506 7680 nusb3hub - ok 07:26:40.0517 7680 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys 07:26:40.0524 7680 nusb3xhc - ok 07:26:40.0537 7680 [ F2662FDC20518EE8A8EED4F61BA42349 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 07:26:40.0544 7680 NVHDA - ok 07:26:40.0718 7680 [ A8151A773CE78233375445D41B77E85E ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 07:26:40.0869 7680 nvlddmkm - ok 07:26:40.0899 7680 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 07:26:40.0907 7680 nvraid - ok 07:26:40.0935 7680 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 07:26:40.0943 7680 nvstor - ok 07:26:40.0970 7680 [ B10CCA77064C6171846E1CF0D7155AF3 ] NVSvc C:\Windows\system32\nvvsvc.exe 07:26:40.0988 7680 NVSvc - ok 07:26:41.0008 7680 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 07:26:41.0015 7680 nv_agp - ok 07:26:41.0071 7680 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 07:26:41.0081 7680 odserv - ok 07:26:41.0097 7680 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 07:26:41.0107 7680 ohci1394 - ok 07:26:41.0128 7680 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 07:26:41.0134 7680 ose - ok 07:26:41.0166 7680 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 07:26:41.0178 7680 p2pimsvc - ok 07:26:41.0192 7680 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 07:26:41.0203 7680 p2psvc - ok 07:26:41.0231 7680 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 07:26:41.0240 7680 Parport - ok 07:26:41.0263 7680 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 07:26:41.0270 7680 partmgr - ok 07:26:41.0286 7680 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 07:26:41.0300 7680 PcaSvc - ok 07:26:41.0314 7680 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 07:26:41.0324 7680 pci - ok 07:26:41.0338 7680 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 07:26:41.0344 7680 pciide - ok 07:26:41.0365 7680 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 07:26:41.0373 7680 pcmcia - ok 07:26:41.0382 7680 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 07:26:41.0388 7680 pcw - ok 07:26:41.0411 7680 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 07:26:41.0447 7680 PEAUTH - ok 07:26:41.0491 7680 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 07:26:41.0498 7680 PerfHost - ok 07:26:41.0535 7680 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 07:26:41.0566 7680 pla - ok 07:26:41.0586 7680 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 07:26:41.0596 7680 PlugPlay - ok 07:26:41.0647 7680 [ AE6C778717DE2F6B0C0B5335036D3363 ] PMBDeviceInfoProvider c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe 07:26:41.0656 7680 PMBDeviceInfoProvider - ok 07:26:41.0670 7680 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 07:26:41.0678 7680 PNRPAutoReg - ok 07:26:41.0693 7680 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 07:26:41.0702 7680 PNRPsvc - ok 07:26:41.0721 7680 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 07:26:41.0752 7680 PolicyAgent - ok 07:26:41.0764 7680 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 07:26:41.0791 7680 Power - ok 07:26:41.0812 7680 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 07:26:41.0843 7680 PptpMiniport - ok 07:26:41.0858 7680 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 07:26:41.0867 7680 Processor - ok 07:26:41.0892 7680 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 07:26:41.0902 7680 ProfSvc - ok 07:26:41.0912 7680 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 07:26:41.0920 7680 ProtectedStorage - ok 07:26:41.0929 7680 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 07:26:41.0952 7680 Psched - ok 07:26:41.0974 7680 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe 07:26:41.0980 7680 PSI_SVC_2 - ok 07:26:41.0999 7680 [ F2EECF8977BD3FE4E38743DDCFBECD20 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 07:26:42.0004 7680 PxHlpa64 - ok 07:26:42.0042 7680 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 07:26:42.0064 7680 ql2300 - ok 07:26:42.0079 7680 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 07:26:42.0086 7680 ql40xx - ok 07:26:42.0111 7680 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 07:26:42.0123 7680 QWAVE - ok 07:26:42.0136 7680 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 07:26:42.0146 7680 QWAVEdrv - ok 07:26:42.0158 7680 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 07:26:42.0180 7680 RasAcd - ok 07:26:42.0191 7680 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 07:26:42.0214 7680 RasAgileVpn - ok 07:26:42.0222 7680 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 07:26:42.0245 7680 RasAuto - ok 07:26:42.0264 7680 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 07:26:42.0286 7680 Rasl2tp - ok 07:26:42.0297 7680 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 07:26:42.0322 7680 RasMan - ok 07:26:42.0335 7680 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 07:26:42.0358 7680 RasPppoe - ok 07:26:42.0362 7680 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 07:26:42.0386 7680 RasSstp - ok 07:26:42.0392 7680 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 07:26:42.0420 7680 rdbss - ok 07:26:42.0449 7680 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 07:26:42.0461 7680 rdpbus - ok 07:26:42.0476 7680 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 07:26:42.0505 7680 RDPCDD - ok 07:26:42.0511 7680 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 07:26:42.0537 7680 RDPENCDD - ok 07:26:42.0550 7680 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 07:26:42.0583 7680 RDPREFMP - ok 07:26:42.0602 7680 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 07:26:42.0608 7680 RdpVideoMiniport - ok 07:26:42.0637 7680 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 07:26:42.0645 7680 RDPWD - ok 07:26:42.0666 7680 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 07:26:42.0674 7680 rdyboost - ok 07:26:42.0693 7680 [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi C:\Windows\system32\drivers\regi.sys 07:26:42.0699 7680 regi - ok 07:26:42.0724 7680 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 07:26:42.0749 7680 RemoteAccess - ok 07:26:42.0771 7680 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 07:26:42.0797 7680 RemoteRegistry - ok 07:26:42.0818 7680 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 07:26:42.0830 7680 RFCOMM - ok 07:26:42.0848 7680 [ FF71ECB1B121C6273EC4C45EDDBC4FE4 ] rimspci C:\Windows\system32\DRIVERS\rimssne64.sys 07:26:42.0856 7680 rimspci - ok 07:26:42.0864 7680 [ E33075C22C14C57095F037253F936BB8 ] risdsnpe C:\Windows\system32\DRIVERS\risdsnxc64.sys 07:26:42.0871 7680 risdsnpe - ok 07:26:42.0881 7680 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 07:26:42.0904 7680 RpcEptMapper - ok 07:26:42.0922 7680 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 07:26:42.0930 7680 RpcLocator - ok 07:26:42.0950 7680 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 07:26:42.0978 7680 RpcSs - ok 07:26:42.0995 7680 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 07:26:43.0018 7680 rspndr - ok 07:26:43.0038 7680 [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 07:26:43.0048 7680 RTL8167 - ok 07:26:43.0057 7680 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 07:26:43.0065 7680 SamSs - ok 07:26:43.0076 7680 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 07:26:43.0084 7680 sbp2port - ok 07:26:43.0109 7680 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 07:26:43.0133 7680 SCardSvr - ok 07:26:43.0154 7680 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 07:26:43.0178 7680 scfilter - ok 07:26:43.0201 7680 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 07:26:43.0237 7680 Schedule - ok 07:26:43.0262 7680 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 07:26:43.0291 7680 SCPolicySvc - ok 07:26:43.0306 7680 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 07:26:43.0316 7680 sdbus - ok 07:26:43.0335 7680 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 07:26:43.0343 7680 SDRSVC - ok 07:26:43.0356 7680 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 07:26:43.0380 7680 secdrv - ok 07:26:43.0391 7680 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 07:26:43.0418 7680 seclogon - ok 07:26:43.0427 7680 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 07:26:43.0450 7680 SENS - ok 07:26:43.0462 7680 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 07:26:43.0469 7680 SensrSvc - ok 07:26:43.0492 7680 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 07:26:43.0499 7680 Serenum - ok 07:26:43.0514 7680 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 07:26:43.0521 7680 Serial - ok 07:26:43.0535 7680 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 07:26:43.0543 7680 sermouse - ok 07:26:43.0563 7680 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 07:26:43.0591 7680 SessionEnv - ok 07:26:43.0609 7680 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys 07:26:43.0617 7680 SFEP - ok 07:26:43.0631 7680 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 07:26:43.0640 7680 sffdisk - ok 07:26:43.0662 7680 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 07:26:43.0671 7680 sffp_mmc - ok 07:26:43.0683 7680 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 07:26:43.0693 7680 sffp_sd - ok 07:26:43.0708 7680 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 07:26:43.0717 7680 sfloppy - ok 07:26:43.0743 7680 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 07:26:43.0768 7680 SharedAccess - ok 07:26:43.0796 7680 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 07:26:43.0827 7680 ShellHWDetection - ok 07:26:43.0844 7680 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 07:26:43.0851 7680 SiSRaid2 - ok 07:26:43.0871 7680 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 07:26:43.0880 7680 SiSRaid4 - ok 07:26:43.0906 7680 [ B866E8C5ED1DCBEA72285BA4107892C2 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 07:26:43.0914 7680 SkypeUpdate - ok 07:26:43.0925 7680 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 07:26:43.0956 7680 Smb - ok 07:26:43.0975 7680 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 07:26:43.0985 7680 SNMPTRAP - ok 07:26:44.0028 7680 [ DDF2EC98AF6FC70608A4F9CE4DB52758 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe 07:26:44.0036 7680 SOHCImp - ok 07:26:44.0046 7680 [ 5FA03F5EA6EFEF6D17B4A1A48C40A23C ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe 07:26:44.0054 7680 SOHDs - ok 07:26:44.0129 7680 [ C03E480E63A80D73FABE28D24D3B6B47 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe 07:26:44.0138 7680 SpfService - ok 07:26:44.0151 7680 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 07:26:44.0159 7680 spldr - ok 07:26:44.0184 7680 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 07:26:44.0197 7680 Spooler - ok 07:26:44.0260 7680 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 07:26:44.0316 7680 sppsvc - ok 07:26:44.0356 7680 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 07:26:44.0391 7680 sppuinotify - ok 07:26:44.0442 7680 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 07:26:44.0454 7680 srv - ok 07:26:44.0473 7680 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 07:26:44.0484 7680 srv2 - ok 07:26:44.0501 7680 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 07:26:44.0511 7680 srvnet - ok 07:26:44.0528 7680 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 07:26:44.0558 7680 SSDPSRV - ok 07:26:44.0571 7680 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 07:26:44.0604 7680 SstpSvc - ok 07:26:44.0644 7680 [ 525597FA2E9D49F19C59623B05562968 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 07:26:44.0654 7680 Stereo Service - ok 07:26:44.0685 7680 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 07:26:44.0694 7680 stexstor - ok 07:26:44.0715 7680 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 07:26:44.0734 7680 stisvc - ok 07:26:44.0743 7680 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 07:26:44.0750 7680 swenum - ok 07:26:44.0772 7680 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 07:26:44.0800 7680 swprv - ok 07:26:44.0834 7680 [ B0C7D4DCF4800DF2F2145B500D0161E8 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 07:26:44.0859 7680 SynTP - ok 07:26:44.0890 7680 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 07:26:44.0920 7680 SysMain - ok 07:26:44.0977 7680 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 07:26:44.0993 7680 TabletInputService - ok 07:26:44.0998 7680 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 07:26:45.0024 7680 TapiSrv - ok 07:26:45.0065 7680 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 07:26:45.0099 7680 TBS - ok 07:26:45.0183 7680 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 07:26:45.0213 7680 Tcpip - ok 07:26:45.0290 7680 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 07:26:45.0315 7680 TCPIP6 - ok 07:26:45.0340 7680 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 07:26:45.0347 7680 tcpipreg - ok 07:26:45.0367 7680 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 07:26:45.0374 7680 TDPIPE - ok 07:26:45.0399 7680 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 07:26:45.0405 7680 TDTCP - ok 07:26:45.0430 7680 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 07:26:45.0456 7680 tdx - ok 07:26:45.0459 7680 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 07:26:45.0466 7680 TermDD - ok 07:26:45.0493 7680 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 07:26:45.0529 7680 TermService - ok 07:26:45.0542 7680 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 07:26:45.0555 7680 Themes - ok 07:26:45.0579 7680 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 07:26:45.0605 7680 THREADORDER - ok 07:26:45.0616 7680 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 07:26:45.0643 7680 TrkWks - ok 07:26:45.0682 7680 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 07:26:45.0710 7680 TrustedInstaller - ok 07:26:45.0724 7680 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 07:26:45.0746 7680 tssecsrv - ok 07:26:45.0768 7680 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 07:26:45.0776 7680 TsUsbFlt - ok 07:26:45.0795 7680 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 07:26:45.0802 7680 TsUsbGD - ok 07:26:45.0825 7680 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 07:26:45.0848 7680 tunnel - ok 07:26:45.0862 7680 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 07:26:45.0868 7680 uagp35 - ok 07:26:45.0907 7680 [ 1FE69F3C1CA1CF4B7EC7E2E9090FFFDC ] uCamMonitor c:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe 07:26:45.0913 7680 uCamMonitor - ok 07:26:45.0930 7680 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 07:26:45.0954 7680 udfs - ok 07:26:45.0978 7680 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 07:26:45.0987 7680 UI0Detect - ok 07:26:46.0003 7680 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 07:26:46.0010 7680 uliagpkx - ok 07:26:46.0023 7680 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 07:26:46.0032 7680 umbus - ok 07:26:46.0042 7680 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 07:26:46.0048 7680 UmPass - ok 07:26:46.0126 7680 [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 07:26:46.0159 7680 UNS - ok 07:26:46.0226 7680 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 07:26:46.0252 7680 upnphost - ok 07:26:46.0273 7680 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 07:26:46.0281 7680 USBAAPL64 - ok 07:26:46.0300 7680 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 07:26:46.0312 7680 usbaudio - ok 07:26:46.0337 7680 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 07:26:46.0344 7680 usbccgp - ok 07:26:46.0354 7680 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 07:26:46.0366 7680 usbcir - ok 07:26:46.0369 7680 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 07:26:46.0378 7680 usbehci - ok 07:26:46.0396 7680 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 07:26:46.0407 7680 usbhub - ok 07:26:46.0421 7680 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 07:26:46.0428 7680 usbohci - ok 07:26:46.0432 7680 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 07:26:46.0442 7680 usbprint - ok 07:26:46.0467 7680 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 07:26:46.0475 7680 USBSTOR - ok 07:26:46.0493 7680 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 07:26:46.0501 7680 usbuhci - ok 07:26:46.0507 7680 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 07:26:46.0518 7680 usbvideo - ok 07:26:46.0537 7680 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 07:26:46.0561 7680 UxSms - ok 07:26:46.0591 7680 [ 203FD19D70549A2939E1AE3A36608151 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe 07:26:46.0597 7680 VAIO Event Service - ok 07:26:46.0632 7680 [ 63DD41D4C6F5FD59BEB08C88292CA76A ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe 07:26:46.0645 7680 VAIO Power Management - ok 07:26:46.0656 7680 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 07:26:46.0663 7680 VaultSvc - ok 07:26:46.0726 7680 [ ADD5A5BA64D0710E1C764A8D4DAD510E ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe 07:26:46.0742 7680 VCFw - ok 07:26:46.0786 7680 [ EEE5AD6FB40B35F7867C3A49B98BB4EF ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe 07:26:46.0800 7680 VcmIAlzMgr - ok 07:26:46.0842 7680 [ 2F06D134554BA84FE253DBC481DCFE6D ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe 07:26:46.0852 7680 VcmINSMgr - ok 07:26:46.0884 7680 [ 9BC1F203C5604C24F345BCFCD6956BAE ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe 07:26:46.0891 7680 VcmXmlIfHelper - ok 07:26:46.0920 7680 [ 9F2D25FA154A32C8C80420A46FBBF815 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe 07:26:46.0926 7680 VCService - ok 07:26:46.0947 7680 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 07:26:46.0954 7680 vdrvroot - ok 07:26:46.0977 7680 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 07:26:47.0006 7680 vds - ok 07:26:47.0021 7680 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 07:26:47.0030 7680 vga - ok 07:26:47.0041 7680 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 07:26:47.0064 7680 VgaSave - ok 07:26:47.0082 7680 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 07:26:47.0090 7680 vhdmp - ok 07:26:47.0101 7680 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 07:26:47.0107 7680 viaide - ok 07:26:47.0118 7680 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 07:26:47.0125 7680 volmgr - ok 07:26:47.0136 7680 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 07:26:47.0150 7680 volmgrx - ok 07:26:47.0164 7680 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 07:26:47.0173 7680 volsnap - ok 07:26:47.0187 7680 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 07:26:47.0196 7680 vsmraid - ok 07:26:47.0240 7680 [ 6B427EF11B77646E7E3EEFB2C4870191 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe 07:26:47.0261 7680 VSNService - ok 07:26:47.0305 7680 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 07:26:47.0344 7680 VSS - ok 07:26:47.0392 7680 [ F5742637A15179AD47C41855A3BF9415 ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe 07:26:47.0410 7680 VUAgent - ok 07:26:47.0427 7680 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 07:26:47.0440 7680 vwifibus - ok 07:26:47.0448 7680 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 07:26:47.0459 7680 vwififlt - ok 07:26:47.0470 7680 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 07:26:47.0482 7680 vwifimp - ok 07:26:47.0501 7680 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 07:26:47.0530 7680 W32Time - ok 07:26:47.0545 7680 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 07:26:47.0552 7680 WacomPen - ok 07:26:47.0556 7680 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 07:26:47.0580 7680 WANARP - ok 07:26:47.0582 7680 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 07:26:47.0607 7680 Wanarpv6 - ok 07:26:47.0657 7680 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 07:26:47.0676 7680 wbengine - ok 07:26:47.0682 7680 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 07:26:47.0695 7680 WbioSrvc - ok 07:26:47.0751 7680 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 07:26:47.0765 7680 wcncsvc - ok 07:26:47.0775 7680 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 07:26:47.0784 7680 WcsPlugInService - ok 07:26:47.0800 7680 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 07:26:47.0807 7680 Wd - ok 07:26:47.0839 7680 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 07:26:47.0857 7680 Wdf01000 - ok 07:26:47.0869 7680 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 07:26:47.0883 7680 WdiServiceHost - ok 07:26:47.0894 7680 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 07:26:47.0906 7680 WdiSystemHost - ok 07:26:47.0921 7680 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 07:26:47.0934 7680 WebClient - ok 07:26:47.0948 7680 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 07:26:47.0973 7680 Wecsvc - ok 07:26:47.0983 7680 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 07:26:48.0009 7680 wercplsupport - ok 07:26:48.0017 7680 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 07:26:48.0049 7680 WerSvc - ok 07:26:48.0067 7680 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 07:26:48.0093 7680 WfpLwf - ok 07:26:48.0102 7680 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 07:26:48.0110 7680 WIMMount - ok 07:26:48.0121 7680 WinDefend - ok 07:26:48.0126 7680 WinHttpAutoProxySvc - ok 07:26:48.0157 7680 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 07:26:48.0185 7680 Winmgmt - ok 07:26:48.0221 7680 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 07:26:48.0263 7680 WinRM - ok 07:26:48.0287 7680 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 07:26:48.0297 7680 WinUsb - ok 07:26:48.0331 7680 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 07:26:48.0350 7680 Wlansvc - ok 07:26:48.0370 7680 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 07:26:48.0376 7680 wlcrasvc - ok 07:26:48.0437 7680 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 07:26:48.0467 7680 wlidsvc - ok 07:26:48.0480 7680 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 07:26:48.0488 7680 WmiAcpi - ok 07:26:48.0510 7680 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 07:26:48.0518 7680 wmiApSrv - ok 07:26:48.0533 7680 WMPNetworkSvc - ok 07:26:48.0555 7680 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 07:26:48.0563 7680 WPCSvc - ok 07:26:48.0577 7680 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 07:26:48.0586 7680 WPDBusEnum - ok 07:26:48.0600 7680 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 07:26:48.0623 7680 ws2ifsl - ok 07:26:48.0627 7680 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 07:26:48.0639 7680 wscsvc - ok 07:26:48.0641 7680 WSearch - ok 07:26:48.0692 7680 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 07:26:48.0732 7680 wuauserv - ok 07:26:48.0751 7680 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 07:26:48.0760 7680 WudfPf - ok 07:26:48.0771 7680 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 07:26:48.0780 7680 WUDFRd - ok 07:26:48.0802 7680 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 07:26:48.0812 7680 wudfsvc - ok 07:26:48.0837 7680 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 07:26:48.0849 7680 WwanSvc - ok 07:26:48.0863 7680 ================ Scan global =============================== 07:26:48.0880 7680 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 07:26:48.0896 7680 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll 07:26:48.0902 7680 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll 07:26:48.0914 7680 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 07:26:48.0928 7680 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 07:26:48.0931 7680 [Global] - ok 07:26:48.0931 7680 ================ Scan MBR ================================== 07:26:48.0941 7680 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 07:26:49.0201 7680 \Device\Harddisk0\DR0 - ok 07:26:49.0202 7680 ================ Scan VBR ================================== 07:26:49.0203 7680 [ 3956C3CFF839EB3B3DE8478C12167FC2 ] \Device\Harddisk0\DR0\Partition1 07:26:49.0204 7680 \Device\Harddisk0\DR0\Partition1 - ok 07:26:49.0231 7680 [ 53240A12CB9A826592C3A968FA82B404 ] \Device\Harddisk0\DR0\Partition2 07:26:49.0232 7680 \Device\Harddisk0\DR0\Partition2 - ok 07:26:49.0233 7680 ============================================================ 07:26:49.0233 7680 Scan finished 07:26:49.0233 7680 ============================================================ 07:26:49.0238 8472 Detected object count: 1 07:26:49.0239 8472 Actual detected object count: 1 07:27:09.0972 8472 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user 07:27:09.0972 8472 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip 07:27:28.0687 6424 Deinitialize success |
|
14.12.2012, 17:46
| #9 | |
| /// Malware-holic | e-Mail Flut mit mailer-daemon Meldungen Hi nichts persönliches, keine angst Dies war ein Test, auf einige Rootkits, die wir mit anderen Programmen nicht aufspüren können. combofix: Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!Downloade dir bitte Combofix von einem dieser Downloadspiegel Link 1 Link 2 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
15.12.2012, 11:16
| #10 |
| | e-Mail Flut mit mailer-daemon Meldungen Combofix Logfile: Code:
ATTFilter ComboFix 12-12-14.01 - Susanne 14.12.2012 18:23:47.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.8173.5171 [GMT 1:00]
ausgeführt von:: c:\users\Susanne\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: Emsisoft Anti-Malware *Disabled/Updated* {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Emsisoft Anti-Malware *Disabled/Updated* {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Susanne\AppData\Local\assembly\tmp
c:\windows\IsUn0407.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-11-14 bis 2012-12-14 ))))))))))))))))))))))))))))))
.
.
2012-12-14 17:37 . 2012-12-14 17:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-12-14 07:17 . 2012-12-14 07:17 -------- d-----w- c:\program files\iPod
2012-12-14 07:17 . 2012-12-14 07:17 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-12-14 07:17 . 2012-12-14 07:17 -------- d-----w- c:\program files\iTunes
2012-12-12 05:45 . 2012-11-14 07:06 17811968 ----a-w- c:\windows\system32\mshtml.dll
2012-12-12 05:45 . 2012-11-14 06:32 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-12-07 12:51 . 2012-12-07 12:51 -------- d-----w- c:\users\Susanne\AppData\Roaming\Avira
2012-12-07 12:45 . 2012-12-07 12:46 -------- d-----w- c:\program files (x86)\Ask.com
2012-12-07 12:45 . 2012-12-07 12:45 -------- d-----w- c:\users\Susanne\AppData\Local\APN
2012-12-07 12:43 . 2012-12-11 15:49 129216 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-12-07 12:43 . 2012-12-11 15:49 99912 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-12-07 12:43 . 2012-11-16 19:17 27800 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-12-07 12:43 . 2012-12-07 12:43 -------- d-----w- c:\program files (x86)\Avira
2012-12-07 12:33 . 2012-12-14 17:20 -------- d-----w- c:\program files (x86)\Emsisoft Anti-Malware
2012-12-06 07:26 . 2012-12-06 07:26 -------- d-----w- c:\users\Susanne\AppData\Roaming\Malwarebytes
2012-12-06 07:26 . 2012-12-06 07:26 -------- d-----w- c:\programdata\Malwarebytes
2012-12-04 06:35 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4B7E6D70-B899-4300-80B2-FB1EB2DBC0AC}\mpengine.dll
2012-11-29 08:03 . 2012-12-14 07:35 -------- d-----w- c:\users\Susanne\AppData\Roaming\cubby
2012-11-29 08:03 . 2012-12-13 15:01 -------- d-----r- c:\users\Susanne\My Cubby
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-12-12 15:13 . 2012-04-26 07:09 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-12 15:13 . 2012-04-03 04:28 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-12 05:47 . 2012-04-19 14:57 67413224 ----a-w- c:\windows\system32\MRT.exe
2012-10-25 02:12 . 2012-10-25 02:12 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
2012-10-25 02:12 . 2012-10-25 02:12 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
2012-10-16 08:38 . 2012-11-28 06:22 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38 . 2012-11-28 06:22 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39 . 2012-11-28 06:22 561664 ----a-w- c:\windows\apppatch\AcLayers.dll
2012-10-13 08:23 . 2012-04-17 07:21 952 --sha-w- c:\programdata\KGyGaAvL.sys
2012-10-09 18:17 . 2012-11-14 05:58 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2012-10-09 18:17 . 2012-11-14 05:58 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
2012-10-09 17:40 . 2012-11-14 05:58 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
2012-10-09 17:40 . 2012-11-14 05:58 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
2012-10-04 16:40 . 2012-12-12 05:36 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-10-03 17:56 . 2012-11-14 05:58 1914248 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-10-03 17:44 . 2012-11-14 05:58 303104 ----a-w- c:\windows\system32\nlasvc.dll
2012-10-03 17:44 . 2012-11-14 05:58 70656 ----a-w- c:\windows\system32\nlaapi.dll
2012-10-03 17:44 . 2012-11-14 05:58 246272 ----a-w- c:\windows\system32\netcorehc.dll
2012-10-03 17:44 . 2012-11-14 05:58 18944 ----a-w- c:\windows\system32\netevent.dll
2012-10-03 17:44 . 2012-11-14 05:58 216576 ----a-w- c:\windows\system32\ncsi.dll
2012-10-03 17:42 . 2012-11-14 05:58 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2012-10-03 16:42 . 2012-11-14 05:58 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2012-10-03 16:42 . 2012-11-14 05:58 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2012-10-03 16:42 . 2012-11-14 05:58 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2012-10-03 16:07 . 2012-11-14 05:58 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2012-09-28 09:32 . 2012-09-28 09:32 5989776 ----a-w- c:\windows\system32\usbaaplrc.dll
2012-09-28 09:32 . 2012-09-28 09:32 53760 ----a-w- c:\windows\system32\drivers\usbaapl64.sys
2012-09-25 22:47 . 2012-11-14 05:57 78336 ----a-w- c:\windows\SysWow64\synceng.dll
2012-09-25 22:46 . 2012-11-14 05:57 95744 ----a-w- c:\windows\system32\synceng.dll
2012-09-25 14:54 . 2001-12-15 10:10 294912 ----a-w- c:\windows\system32\Euphoria.scr
2012-09-25 14:54 . 2001-11-06 08:58 5906432 ----a-w- c:\windows\system32\Skyrocket.scr
2012-09-25 14:54 . 2001-11-06 08:53 90112 ----a-w- c:\windows\system32\OpenAL32.dll
2012-09-25 14:54 . 2001-03-09 21:51 57344 ----a-w- c:\windows\system32\Plasma.scr
2012-09-25 14:54 . 2001-01-12 21:37 294912 ----a-w- c:\windows\system32\Helios.scr
2012-09-25 14:54 . 2000-07-26 12:30 69632 ----a-w- c:\windows\system32\Flux.scr
2012-09-25 14:54 . 2000-02-20 21:06 69632 ----a-w- c:\windows\system32\SolarWinds.scr
2012-09-25 14:54 . 1999-04-12 07:37 81408 ----a-w- c:\windows\system32\FieldLines.scr
2012-09-25 14:54 . 1999-03-04 19:46 95744 ----a-w- c:\windows\system32\Cyclone.scr
2012-09-25 14:54 . 2000-05-08 19:38 77824 ----a-w- c:\windows\system32\Flocks.scr
2012-09-25 14:36 . 2000-12-10 20:18 1724416 ----a-w- c:\windows\system32\Lattice.scr
2012-09-25 14:30 . 2012-09-25 14:30 49152 ----a-w- c:\windows\fLoSaftRemov1_04.exe
2012-09-24 08:25 . 2012-09-24 08:25 642085 ----a-w- c:\windows\unins000.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2012-10-29 1521872]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-10-29 16:33 1521872 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2012-10-29 1521872]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 94208 ----a-w- c:\users\Susanne\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 94208 ----a-w- c:\users\Susanne\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 94208 ----a-w- c:\users\Susanne\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LogMeIn Cubby"="c:\users\Susanne\AppData\Roaming\cubby\cubby.exe" [2012-11-30 4612992]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Home Theater v4"="c:\program files (x86)\Dolby Home Theater v4\pcee4.exe" [2011-05-02 500736]
"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2011-09-20 60552]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"HPUsageTracking"="c:\program files (x86)\HP\HP UT\bin\hppusg.exe" [2009-05-11 24576]
"TrayServer"="c:\program files (x86)\MAGIX\Video_deluxe_MX_Plus_Sonderedition\TrayServer_de.exe" [2008-08-07 90112]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
"emsisoft anti-malware"="c:\program files (x86)\emsisoft anti-malware\a2guard.exe" [2012-10-17 3364264]
"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2012-10-29 1573584]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-12-11 384800]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-12-12 152544]
.
c:\users\Susanne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Susanne\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
phase-6 Reminder.lnk - c:\program files (x86)\phase-6\phase-6\reminder\reminder.exe [2012-11-21 724992]
PHOTOfunSTUDIO 8.0 AE.lnk - c:\program files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe [2012-10-24 188600]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-10-19 160944]
R2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2011-02-23 105024]
R3 DCDhcpService;DCDhcpService;c:\program files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe [2011-08-25 111776]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y60x64.sys [2009-06-10 281088]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys [2011-08-02 22528]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 SOHCImp;VAIO Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2011-02-21 113824]
R3 SOHDs;VAIO Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2011-02-21 67232]
R3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2011-12-01 289952]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-09-28 53760]
R3 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2011-12-29 960160]
R3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2011-12-21 550128]
R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2011-02-18 385336]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2011-08-26 101600]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2011-05-24 55952]
S1 A2DDA;A2 Direct Disk Access Support Driver;c:\program files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [2011-05-19 23208]
S1 a2injectiondriver;a2injectiondriver;c:\program files (x86)\Emsisoft Anti-Malware\a2dix64.sys [2012-04-30 44688]
S1 a2util;a-squared Malware-IDS utility driver;c:\program files (x86)\Emsisoft Anti-Malware\a2util64.sys [2010-05-05 14720]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2012-11-16 27800]
S2 a2AntiMalware;Emsisoft Anti-Malware 7.0 - Service;c:\program files (x86)\Emsisoft Anti-Malware\a2service.exe [2012-12-12 3084688]
S2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-30 169408]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-12-11 85280]
S2 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2012-12-11 565024]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-07-05 138400]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2011-07-05 98976]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2011-05-24 1840128]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-12 13336]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2011-08-24 430136]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-04-17 14112]
S2 rimspci;rimspci;c:\windows\system32\DRIVERS\rimssne64.sys [2011-06-23 102400]
S2 risdsnpe;risdsnpe;c:\windows\system32\DRIVERS\risdsnxc64.sys [2011-06-23 98816]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [2011-11-30 260768]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-06-16 378472]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-06-24 2656536]
S2 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2011-09-20 535176]
S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2011-09-30 955832]
S3 a2acc;a2acc;c:\program files (x86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [2012-04-30 66320]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 19968]
S3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2011-07-05 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2011-07-05 330400]
S3 btath_avdt;Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys [2011-07-05 110240]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2011-07-05 30368]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2011-07-05 167072]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2011-07-05 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2011-07-05 280992]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2011-07-05 496800]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-23 471144]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [2010-04-26 12032]
S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe [2012-05-28 54464]
S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update Common\VUAgent.exe [2012-05-10 1259104]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 82000380
*Deregistered* - 82000380
.
Inhalt des "geplante Tasks" Ordners
.
2012-12-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-26 15:13]
.
2012-12-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-16 15:27]
.
2012-12-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-16 15:27]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Susanne\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Susanne\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Susanne\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Susanne\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AthBtTray"="c:\program files (x86)\Bluetooth Suite\AthBtTray.exe" [2011-07-05 797344]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-07-28 497648]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.google.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>;*.local
IE: Add to Evernote 4.0 - c:\program files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Free YouTube to MP3 Converter - c:\users\Susanne\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Susanne\AppData\Roaming\Mozilla\Firefox\Profiles\nknrn709.default\
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: browser.startup.homepage - hxxps://www.google.de/
FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=AVR-4&o=APN10261&locale=de_DE&apn_uid=671416de-fa33-45f5-8c5a-a356adc1a547&apn_ptnrs=^AGS&apn_sauid=2900232E-EECE-46E4-9D57-3D9DAF04646F&apn_dtid=^YYYYYY^YY^DE&&q=
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2012-12-07 13:46; toolbar@ask.com; c:\users\Susanne\AppData\Roaming\Mozilla\Firefox\Profiles\nknrn709.default\extensions\toolbar@ask.com
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Screensaver Sun and Clouds_is1 - c:\windows\system32\unins000.exe
AddRemove-PDF Reader - c:\users\Susanne\PDFReader\Uninstall\Uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\%C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-12-14 18:59:29
ComboFix-quarantined-files.txt 2012-12-14 17:59
.
Vor Suchlauf: 13 Verzeichnis(se), 248.730.226.688 Bytes frei
Nach Suchlauf: 19 Verzeichnis(se), 248.288.030.720 Bytes frei
.
- - End Of File - - 710C05C3D1FCBECDCBC15FA4AF1B8275
|
|
15.12.2012, 13:27
| #11 |
| /// Malware-holic | e-Mail Flut mit mailer-daemon Meldungen hi lade den CCleaner standard: CCleaner Download - CCleaner 3.25.1872 falls der CCleaner bereits instaliert, überspringen. instalieren, öffnen, extras, liste der instalierten programme, als txt speichern. öffnen. hinter, jedes von dir benötigte programm, schreibe notwendig. hinter, jedes, von dir nicht benötigte, unnötig. hinter, dir unbekannte, unbekannt. liste posten.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
15.12.2012, 14:09
| #12 |
| | e-Mail Flut mit mailer-daemon Meldungen Danke, dass Du hilfst markusg!! Hier die Liste ,vieles kenne ich nicht, brauch es aber evtl. ?? 2007 Microsoft Office system Microsoft Corporation 18.04.2012 12.0.6612.1000 notwendig 7-Zip 9.20 28.06.2012 ActiveX-kontroll för fjärranslutningar för Windows Live Mesh Microsoft Corporation 03.04.2012 5,37MB 15.4.5722.2 unbekannt Adobe AIR Adobe Systems Incorporated 03.04.2012 2.7.0.19460 unbekannt Adobe Community Help Adobe Systems Incorporated 03.04.2012 3.2.1.650 unbekannt Adobe Digital Editions 28.09.2012 unbekannt Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 12.12.2012 6,00MB 11.5.502.135 notwendig Adobe Flash Player 11 Plugin Adobe Systems Incorporated 12.12.2012 6,00MB 11.5.502.135 notwendig Adobe Photoshop Elements 9 Adobe Systems Incorporated 02.09.2012 2,60GB 9.0.3.0 notwendig Adobe Premiere Elements 9 Adobe Systems Incorporated 03.04.2012 1,23GB 9.0 notwendig Adobe Reader X (10.1.4) MUI Adobe Systems Incorporated 20.08.2012 543MB 10.1.4 notwendig Adobe Shockwave Player 11.6 Adobe Systems, Inc. 25.05.2012 11.6.5.635 notwendig Apple Application Support Apple Inc. 30.11.2012 65,0MB 2.3.2 unbekannt Apple Mobile Device Support Apple Inc. 30.11.2012 25,1MB 6.0.1.3 unbekannt Apple Software Update Apple Inc. 16.04.2012 2,38MB 2.1.3.127 notwendig ArcSoft Magic-i Visual Effects 2 ArcSoft 03.04.2012 82,8MB 2.0.1.154 notwendig ArcSoft Software Suite ArcSoft 17.04.2012 1.0 notwendig? ArcSoft WebCam Companion 4 ArcSoft 03.04.2012 189MB 4.0.21.485 notwendig? Atheros WiFi Driver Installation Atheros 03.04.2012 3.0 notwendig? Avira Free Antivirus Avira 11.12.2012 129MB 13.0.0.2890 notwendig Avira SearchFree Toolbar plus Web Protection Ask.com 07.12.2012 10,2MB 1.15.11.0 notwendig Avira SearchFree Toolbar plus Web Protection Updater Ask.com 07.12.2012 1.2.3.30498 notwendig Bing Bar Microsoft Corporation 08.12.2012 26,8MB 7.0.850.0 unbekannt Bluetooth Win7 Suite (64) Atheros Communications 03.04.2012 107MB 7.04.000.82 unbekannt Bonjour Apple Inc. 16.04.2012 2,04MB 3.0.0.10 unbekann t CCleaner Piriform 04.12.2012 3.25 nötig Cities of Earth 3D Screensaver v. 2.1 Screenomania.com 25.09.2012 unnötig Control ActiveX Windows Live Mesh pentru conexiuni la distanță Microsoft Corporation 03.04.2012 5,37MB 15.4.5722.2 unbekannt Controlo ActiveX do Windows Live Mesh para Ligações Remotas Microsoft Corporation 03.04.2012 5,38MB 15.4.5722.2 unbekannt Contrôle ActiveX Windows Live Mesh pour connexions à distance Microsoft Corporation 03.04.2012 5,37MB 15.4.5722.2 unbekannt ConvertHelper 2.2 DownloadHelper 12.09.2012 nötig Corel WinDVD Corel Inc. 03.04.2012 257MB 10.0.6.124 unbekannt Cubby LogMeIn, Inc. 03.12.2012 6,00MB 1.0.0.10964 nötig (kann das die Ursache sein? ca. seit ich diese cloud habe, ging der Mist los) Defraggler Piriform 25.10.2012 2.11 nötig DeltaVision Screensaver Sun and Clouds 1.0 DeltaVision 25.09.2012 1.0 unnötig Dolby Home Theater v4 Dolby Laboratories Inc 03.04.2012 2,32MB 7.2.7000.6 nötig Doodle Outlook Connector Doodle AG 24.10.2012 1.6.1.0 nötig Dropbox Dropbox, Inc. 25.05.2012 1.4.7 nötig Emsisoft Anti-Malware Emsisoft GmbH 07.12.2012 260MB 7.0 nötig Evernote v. 4.5 Evernote Corp. 03.04.2012 149MB 4.5.0.5229 unbekannt Firebird SQL Server - MAGIX Edition MAGIX AG 31.10.2012 11,5MB 2.1.31.0 nötig fishMaus Screen Saver 25.09.2012 unnötig Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych Microsoft Corporation 03.04.2012 5,37MB 15.4.5722.2 unbekannt Free YouTube to MP3 Converter version 3.11.34.1015 DVDVideoSoft Ltd. 28.10.2012 60,9MB 3.11.34.1015 nötig GlobFX Space Travel GlobFX Technologies 24.09.2012 1.0 unbekannt Google Chrome Google Inc. 28.08.2012 23.0.1271.97 unnötig Google Toolbar for Internet Explorer Google Inc. 23.09.2012 7.4.3230.2052 unnötig HP LaserJet P1000 series 18.04.2012 nötig HPSSupply Ihr Firmenname 18.04.2012 987KB 2.1.1.0000 unbekannt iCloud Apple Inc. 30.11.2012 81,8MB 2.1.0.39 nötig Intel(R) Management Engine Components Intel Corporation 03.04.2012 7.0.0.1144 unbekannt Intel(R) Rapid Storage Technology Intel Corporation 03.04.2012 10.1.2.1004 unbekannt iTunes Apple Inc. 14.12.2012 189MB 11.0.1.12 nötig Java(TM) 6 Update 27 Oracle 03.04.2012 97,0MB 6.0.270 unbekannt Java(TM) 6 Update 27 (64-bit) Oracle 03.04.2012 91,6MB 6.0.270 unbekannt MAGIX Screenshare MAGIX AG 31.10.2012 4.3.6.1987 unbekannt MAGIX Speed burnR (MSI) MAGIX AG 31.10.2012 7.0.2.6 unbekannt MAGIX Video deluxe MX Plus Sonderedition MAGIX AG 31.10.2012 11.0.5.0 nötig Media Go Sony 03.04.2012 99,3MB 2.0.317 unbekannt Microsoft .NET Framework 4 Client Profile Microsoft Corporation 11.02.2011 38,8MB 4.0.30319 (MS - keine Ahnung, vermute mal alle nötig, oder) Microsoft .NET Framework 4 Client Profile DEU Language Pack Microsoft Corporation 03.04.2012 2,93MB 4.0.30319 Microsoft .NET Framework 4 Extended Microsoft Corporation 11.02.2011 51,9MB 4.0.30319 Microsoft .NET Framework 4 Extended DEU Language Pack Microsoft Corporation 03.04.2012 10,6MB 4.0.30319 Microsoft Office File Validation Add-In Microsoft Corporation 20.04.2012 7,95MB 14.0.5130.5003 Microsoft Office Live Add-in 1.5 Microsoft Corporation 19.04.2012 508KB 2.0.4024.1 Microsoft Picture It! Foto Premium 10 Microsoft Corporation 19.04.2012 10.0.0715 Microsoft Silverlight Microsoft Corporation 11.05.2012 60,3MB 4.1.10329.0 Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 03.04.2012 1,69MB 3.1.0000 Microsoft SQL Server Compact 3.5 SP2 ENU Microsoft Corporation 24.10.2012 3,39MB 3.5.8080.0 Microsoft SQL Server Compact 3.5 SP2 x64 ENU Microsoft Corporation 24.10.2012 4,50MB 3.5.8080.0 Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 17.04.2012 290KB 8.0.59193 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 03.04.2012 788KB 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 17.04.2012 788KB 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 03.04.2012 596KB 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 03.04.2012 590KB 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 17.04.2012 590KB 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 18.11.2012 13,8MB 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 18.11.2012 5,13MB 10.0.40219 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 18.11.2012 10.0.40302 Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU Microsoft Corporation 18.11.2012 10.0.40302 Mozilla Firefox 15.0.1 (x86 de) Mozilla 13.09.2012 38,4MB 15.0.1 unnötig? Mozilla Firefox 16.0.1 (x86 de) Mozilla 11.11.2012 38,5MB 16.0.1 nötig Mozilla Maintenance Service Mozilla 11.11.2012 329KB 16.0.1 unbekannt MrvlUsgTracking Marvell 18.04.2012 144KB 1.0.7 unbekannt MrvlUsgTracking64 Marvell Semiconductor Pvt Ltd 18.04.2012 360KB 1.0.1 unbekannt MSXML 4.0 SP3 Parser Microsoft Corporation 03.04.2012 1,47MB 4.30.2100.0 unbekannt MSXML 4.0 SP3 Parser (KB2721691) Microsoft Corporation 12.07.2012 1,53MB 4.30.2114.0 unbekannt MSXML 4.0 SP3 Parser (KB973685) Microsoft Corporation 17.04.2012 1,53MB 4.30.2107.0 unbekannt My Pictures 3D 1.2 24.09.2012 unbekannt NVIDIA 3D Vision Treiber 268.93 NVIDIA Corporation 03.04.2012 268.93 (Ich glaube alle Nvidia nötig, da Grarikkarte) NVIDIA 3D Vision Video Player NVIDIA Corporation 03.04.2012 7,67MB 1.7.2 NVIDIA Grafiktreiber 268.93 NVIDIA Corporation 03.04.2012 268.93 NVIDIA HD-Audiotreiber 1.2.22.1 NVIDIA Corporation 03.04.2012 1.2.22.1 NVIDIA PhysX-Systemsoftware 9.10.0514 NVIDIA Corporation 03.04.2012 9.10.0514 Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení Microsoft Corporation 03.04.2012 5,37MB 15.4.5722.2 unbekannt Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia Microsoft Corporation 03.04.2012 5,37MB 15.4.5722.2 unbekannt PCLinq2 High-Speed USB Bridge Cable 18.04.2012 unbekannt phase-6 2.3.2a phase-6 29.11.2012 2.3.2a nötig!! Vokabeltrainer meiner Tochter! PHOTOfunSTUDIO 8.0 AE Panasonic Corporation 24.10.2012 8.00.511 nötig Picasa 3 Google, Inc. 06.08.2012 3.8 nötig PlayStation(R)Network Downloader Sony Computer Entertainment Inc. 03.04.2012 827KB 2.07.00849 unbekannt PlayStation(R)Store Sony Computer Entertainment Inc. 03.04.2012 5,54MB 4.5.15.13232 unbekannt PMB Sony Corporation 03.04.2012 295MB 5.8.02.10270 unbekannt proDAD Adorage 3.0 proDAD GmbH 31.10.2012 3.0.92 unbekannt Quick Web Access Sony Corporation 03.04.2012 334MB 1.4.8.1 unbekannt QuickTime Apple Inc. 12.11.2012 73,1MB 7.73.80.64 unbekannt Realtek High Definition Audio Driver Realtek Semiconductor Corp. 03.04.2012 6.0.1.6400 nötig? Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 03.04.2012 272KB 2.0.32.0 unbekannt Revo Uninstaller 1.94 VS Revo Group 24.09.2012 1.94 nötig Roxio Creator LJ Roxio 03.04.2012 209MB 12.1.13.12 unbekannt Safari Apple Inc. 23.05.2012 104MB 5.34.57.2 nötig Shock Screensaver 25.09.2012 unnötig Skype Click to Call Skype Technologies S.A. 16.04.2012 8,25MB 5.9.9216 unnötig? Skype™ 6.0 Skype Technologies S.A. 21.11.2012 20,3MB 6.0.126 nötig SmartSound Quicktracks for Premiere Elements 9.0 SmartSound Software Inc 03.04.2012 20,0MB 3.12.3090 unbekannt Synaptics Pointing Device Driver Synaptics Incorporated 03.04.2012 46,4MB 15.2.6.0 unbekannt Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi Microsoft Corporation 03.04.2012 5,37MB 15.4.5722.2 unbekannt VAIO - Media Gallery Sony Corporation 03.04.2012 1.5.4.09210 (ich schätze mal alle Vaio nötig, oder?) VAIO - PlayMemories Home Plug-in Sony Corporation 31.10.2012 199MB 2.2.00.18250 VAIO - PMB VAIO Edition Guide Sony Corporation 03.04.2012 72,5MB 1.7.00.10100 VAIO - Remote Play mit PlayStation®3 Sony Corporation 03.04.2012 1.1.0.21090 VAIO - Remote-Tastatur Sony Corporation 03.04.2012 1.2.0.09270 VAIO - Remote-Tastatur mit PlayStation®3 Sony Corporation 03.04.2012 1.2.0.09210 VAIO - TrackID™ mit BRAVIA Sony Corporation 03.04.2012 1.2.0.09270 VAIO 3D Portal Sony Corporation 03.04.2012 1.2.0.10131 VAIO Care Sony Corporation 29.10.2012 102MB 7.3.1.05290 VAIO Control Center Sony Corporation 03.04.2012 5.1.0.09300 VAIO Data Restore Tool Sony Corporation 03.04.2012 1.8.0.09210 VAIO Easy Connect Sony Corporation 03.04.2012 14,6MB 1.1.1.12200 VAIO Gate Sony Corporation 12.05.2012 2.4.2.02200 VAIO Gate Default Sony Corporation 03.04.2012 2.5.1.09230 VAIO Hero Screensaver - Fall 2011 Screensaver 03.04.2012 VAIO Improvement Sony Corporation 03.04.2012 1.2.0.09270 VAIO Improvement Validation Sony Corporation 03.04.2012 496KB 1.0.4.01190 VAIO Sample Contents Sony Corporation 03.04.2012 1.4.2.09010 VAIO Smart Network Sony Corporation 03.04.2012 3.10.0.09300 VAIO Update Sony Corporation 29.10.2012 5.7.1.05100 VAIO-Handbuch Sony Corporation 03.04.2012 1.5.0.09200 VAIO-Support für Übertragungen Sony Corporation 03.04.2012 1.6.0.09220 VAIOCareLearnContents 11.02.2011 VideoPerformer PerformerSoft LLC 06.10.2012 Windows Live Essentials Microsoft Corporation 04.07.2012 15.4.3555.0308 unbekannt Windows Live Mesh ActiveX Control for Remote Connections Microsoft Corporation 03.04.2012 5,37MB 15.4.5722.2 unbekannt Windows Live Mesh ActiveX control for remote connections Microsoft Corporation 03.04.2012 5,38MB 15.4.5722.2 unbekannt Warum hat die Textbox jetzt keinen Balken mehr zu scrollen? |
|
15.12.2012, 15:04
| #13 |
| /// Malware-holic | e-Mail Flut mit mailer-daemon Meldungen deinstaliere: Adobe Flash Player alle Adobe - Adobe Flash Player installieren neueste version laden adobe reader: Adobe - Adobe Reader herunterladen - Alle Versionen haken bei mcafee security scan raus nehmen bitte auch mal den adobe reader wie folgt konfigurieren: adobe reader öffnen, bearbeiten, voreinstellungen. allgemein: nur zertifizierte zusatz module verwenden, anhaken. internet: hier sollte alles deaktiviert werden, es ist sehr unsicher pdfs automatisch zu öffnen, zu downloaden etc. es ist immer besser diese direkt abzuspeichern da man nur so die kontrolle hat was auf dem pc vor geht. bei javascript den haken bei java script verwenden raus nehmen bei updater, automatisch instalieren wählen. übernehmen /ok deinstaliere: Avira SearchFree : beide, wir tauschen Avira sowieso aus. allgemein noch: Du hast ja Emsisoft drauf sehe ich, ich würde dir raten, dass in der Vollversion zu nutzen, da es, aus meiner Sicht, momentan eines der besten Programme ist, kann dir, einen Shop nennen, wo es das Programm für 20 € gibt Bing Cities Control Controlo Contrôle Corel Cubby : nein, das Programm ist legitim, dein Problem sind warscheinlich eher schwache Passwörter, darum kümmern wir uns bald. deinstaliere: DeltaVision Evernote fishMaus Formant GlobFX Space Google : beide Java: alle downloade Java jre: Java-Downloads für alle Betriebssysteme klicke: Download der Java-Software für Windows Offline laden, und instalieren deinstaliere: My Pictures Ovládací : beide proDAD Adorage : Videobearbeitung scheint das zu sein, falls nötig, behalten. deinstaliere: Shock Skype Click Uzak VideoPerformer Windows Live : alle für dich unnötigen. Wegen deiner Frage, du hast keine Codebox erstellt, passt aber alles. Öffne CCleaner, analysieren, starten, PC neustarten. Danach: Downloade Dir bitte AdwCleaner auf deinen Desktop.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
15.12.2012, 17:08
| #14 |
| | e-Mail Flut mit mailer-daemon Meldungen # AdwCleaner v2.100 - Datei am 15/12/2012 um 17:04:43 erstellt # Aktualisiert am 09/12/2012 von Xplode # Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits) # Benutzer : Susanne - SUSANNE-VAIO # Bootmodus : Normal # Ausgeführt unter : C:\Users\Susanne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FOI6X98H\adwcleaner.exe # Option [Suche] **** [Dienste] **** ***** [Dateien / Ordner] ***** Datei Gefunden : C:\Users\Susanne\AppData\Roaming\Mozilla\Firefox\Profiles\nknrn709.default\searchplugins\Askcom.xml Ordner Gefunden : C:\Program Files (x86)\Ask.com Ordner Gefunden : C:\Users\Susanne\AppData\Local\APN Ordner Gefunden : C:\Users\Susanne\AppData\LocalLow\AskToolbar Ordner Gefunden : C:\Users\Susanne\AppData\LocalLow\Conduit Ordner Gefunden : C:\Users\Susanne\AppData\LocalLow\PriceGong Ordner Gefunden : C:\Users\Susanne\AppData\Roaming\Mozilla\Firefox\Profiles\nknrn709.default\extensions\toolbar@ask.com Ordner Gefunden : C:\Users\Susanne\AppData\Roaming\OpenCandy Ordner Gefunden : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} ***** [Registrierungsdatenbank] ***** Schlüssel Gefunden : HKCU\Software\APN Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\AskToolbar Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Crossrider Schlüssel Gefunden : HKCU\Software\Ask.com Schlüssel Gefunden : HKCU\Software\Ask.com.tmp Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Schlüssel Gefunden : HKLM\Software\APN Schlüssel Gefunden : HKLM\Software\AskToolbar Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL Schlüssel Gefunden : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd Schlüssel Gefunden : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1 Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9 Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56} Schlüssel Gefunden : HKLM\Software\Freeze.com Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011501160} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110011501160} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}] Wert Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}] ***** [Internet Browser] ***** -\\ Internet Explorer v9.0.8112.16457 [OK] Die Registrierungsdatenbank ist sauber. -\\ Mozilla Firefox v15.0.1 (de) Profilname : default Datei : C:\Users\Susanne\AppData\Roaming\Mozilla\Firefox\Profiles\nknrn709.default\prefs.js Gefunden : user_pref("browser.search.defaultengine", "Ask.com"); Gefunden : user_pref("browser.search.defaultenginename", "Ask.com"); Gefunden : user_pref("browser.search.order.1", "Ask.com"); Gefunden : user_pref("browser.search.selectedEngine", "Ask.com"); Gefunden : user_pref("extensions.asktb.InstallDir", "C:\\Program Files (x86)\\Ask.com\\"); Gefunden : user_pref("extensions.asktb.apn_dbr", "ie_9.0.8112.16421"); Gefunden : user_pref("extensions.asktb.autofill-text-highlight-enabled", true); Gefunden : user_pref("extensions.asktb.cbid", "^AGS"); Gefunden : user_pref("extensions.asktb.config-updated", false); Gefunden : user_pref("extensions.asktb.cr-o", "APN10261"); Gefunden : user_pref("extensions.asktb.crumb", "2012.12.07+04.42.37-toolbar019iad-DE-SGFtYnVyZyxHZXJtYW55"); Gefunden : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://{domainName}/web?q={query}&o={o}&l={l[...] Gefunden : user_pref("extensions.asktb.domain", "avira-int.ask.com"); Gefunden : user_pref("extensions.asktb.domainName", "avira-int.ask.com"); Gefunden : user_pref("extensions.asktb.dtid", "^YYYYYY^YY^DE"); Gefunden : user_pref("extensions.asktb.ff-original-keyword-url", ""); Gefunden : user_pref("extensions.asktb.fresh-install", false); Gefunden : user_pref("extensions.asktb.guid", "671416de-fa33-45f5-8c5a-a356adc1a547"); Gefunden : user_pref("extensions.asktb.hxxp-header-whitelist-hosts", "[\"static-dev.en.dev.ask.com\", \"ask.com[...] Gefunden : user_pref("extensions.asktb.if", "first"); Gefunden : user_pref("extensions.asktb.l", "dis"); Gefunden : user_pref("extensions.asktb.last-config-req", "1355071174451"); Gefunden : user_pref("extensions.asktb.locale", "de_DE"); Gefunden : user_pref("extensions.asktb.localePref", true); Gefunden : user_pref("extensions.asktb.location", "Hamburg,Germany"); Gefunden : user_pref("extensions.asktb.o", "APN10261"); Gefunden : user_pref("extensions.asktb.overlay-reloaded-using-restart", true); Gefunden : user_pref("extensions.asktb.qsrc", "2871"); Gefunden : user_pref("extensions.asktb.r", "4"); Gefunden : user_pref("extensions.asktb.sa", "YES"); Gefunden : user_pref("extensions.asktb.saguid", "2900232E-EECE-46E4-9D57-3D9DAF04646F"); Gefunden : user_pref("extensions.asktb.search-suggestions-enabled", true); Gefunden : user_pref("extensions.asktb.silent-upgrade-from-pre-newtabs-build", false); Gefunden : user_pref("extensions.asktb.socialmini-first", true); Gefunden : user_pref("extensions.asktb.socialmini-interval", "1200000"); Gefunden : user_pref("extensions.asktb.socialmini-max-char-ticker", "33"); Gefunden : user_pref("extensions.asktb.socialmini-max-items", "30"); Gefunden : user_pref("extensions.asktb.socialmini-native-on", true); Gefunden : user_pref("extensions.asktb.socialmini-speed", "5000"); Gefunden : user_pref("extensions.asktb.themeid", ""); Gefunden : user_pref("extensions.asktb.timeinstalled", "07.12.2012 13:45:59"); Gefunden : user_pref("extensions.asktb.to", ""); Gefunden : user_pref("extensions.asktb.v", "3.15.11.100015"); Gefunden : user_pref("extensions.asktb.version", "5.15.11.30498"); Gefunden : user_pref("extensions.enabledAddons", "{b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.11,toolbar@ask.com[...] Gefunden : user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=AVR-4&o=APN10261&loc[...] ************************* AdwCleaner[R1].txt - [8414 octets] - [15/12/2012 17:04:43] ########## EOF - C:\AdwCleaner[R1].txt - [8474 octets] ########## Solllte ich auch die gefundenen Datein von AdwCleaner löschen? Hab ich jetzt noch nicht gemacht. Au wei, das war viel Arbeit. Habe alles mit Unistaller mit der "erweitert"-Funktion gelöscht. Hoffe nicht, dass das System jetzt irgendwas vermisst ;-) |
|
15.12.2012, 18:50
| #15 |
| /// Malware-holic | e-Mail Flut mit mailer-daemon Meldungen Hi
Neustarten, testen, wie PC läuft, und auch die Browser.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu e-Mail Flut mit mailer-daemon Meldungen |
| adresse, adressen, angeblich, avira, delivery, dringend, e-mail, erreiche, forum, gen, handy, leute, leuten, mail delivery, mail delivery sytem, mailer daemon, mailer-daemon, mailflut, mails, mas, master, meldungen, neu, problem, programme, programmen, schädlinge, täglich, umgehen, yahoo.com |
Linear-Darstellung
