| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows 7 Anwenderprogramme öffnen nur sehr langsamWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
21.02.2013, 19:09
| #1 |
 |  Windows 7 Anwenderprogramme öffnen nur sehr langsam Hallo, seit einiger Zeit habe ich ein Problem mit meinem PC. Alle Anwendungsprogramme starten manchmal erst nach mehr als 10 Sekunden. Was kann ich machen? Danke im Vorraus! Mit freundlichen Grüßen weoiss |
|
21.02.2013, 19:11
| #2 |
| /// Malware-holic   | Windows 7 Anwenderprogramme öffnen nur sehr langsam hi,
__________________Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
Code:
ATTFilter activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
C:\Windows\system32\*.tsp
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
__________________ |
|
22.02.2013, 16:17
| #3 |
| | Windows 7 Anwenderprogramme öffnen nur sehr langsam Ich bin irritiert, aber keine Extra.txt Datei wurde erstellt
__________________ Außerdem läuft er zur Zeit wieder flüssig, ich werde noch mal so ein Scan machen wenn es wieder hängt ok? OTL Logfile:Code:
ATTFilter OTL logfile created on: 22.02.2013 15:57:53 - Run 3 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\User\Desktop 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 15,95 Gb Total Physical Memory | 13,90 Gb Available Physical Memory | 87,19% Memory free 31,89 Gb Paging File | 29,73 Gb Available in Paging File | 93,21% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 1862,79 Gb Total Space | 1470,47 Gb Free Space | 78,94% Space Free | Partition Type: NTFS Drive I: | 571,17 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: ***** | User Name: User | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013.02.21 20:44:41 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe PRC - [2013.02.10 04:25:27 | 001,266,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2013.02.09 18:43:48 | 000,383,264 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2012.01.05 12:59:50 | 000,291,608 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe PRC - [2011.12.16 14:08:32 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2010.09.06 01:19:58 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe PRC - [2009.10.07 00:47:22 | 000,125,464 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe ========== Modules (No Company Name) ========== ========== Services (SafeList) ========== SRV:64bit: - [2012.09.19 11:10:54 | 000,037,216 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysNative\uxtuneup.dll -- (UxTuneUp) SRV:64bit: - [2011.12.02 04:12:11 | 000,165,456 | ---- | M] (Samsung Electronics) [On_Demand | Stopped] -- C:\Windows\SysNative\SUPDSvc2.exe -- (Samsung UPD Service2) SRV:64bit: - [2010.04.06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv) SRV:64bit: - [2010.03.03 10:01:00 | 000,182,784 | ---- | M] (Samsung India Software Center) [Disabled | Stopped] -- C:\Program Files\Samsung\FrameManager\sam_service.exe -- (FrameManager Service) SRV:64bit: - [2009.10.07 00:47:10 | 000,191,000 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcS64) SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend) SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2013.02.20 15:41:55 | 000,115,608 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013.02.15 13:08:20 | 000,543,144 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2013.02.14 15:33:11 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013.02.10 04:25:27 | 001,266,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2013.02.09 18:43:48 | 000,383,264 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2013.01.28 14:19:28 | 002,402,080 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc) SRV - [2013.01.08 12:55:20 | 000,161,536 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012.12.14 10:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) [Disabled | Stopped] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8) SRV - [2012.12.10 17:29:46 | 002,465,712 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - [2012.11.26 18:35:10 | 000,745,368 | ---- | M] (Tunngle.net GmbH) [On_Demand | Stopped] -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe -- (TunngleService) SRV - [2012.09.19 11:10:54 | 000,029,536 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp) SRV - [2012.04.10 18:21:22 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Stopped] -- C:\Program Files (x86)\Kaspersky Security Suite CBE 12\avp.exe -- (AVP) SRV - [2011.12.16 14:08:32 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2011.08.22 13:44:48 | 001,421,216 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe -- (ACT2_Service) SRV - [2010.09.06 01:19:58 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor9.0) SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2003.01.17 03:59:56 | 000,001,984 | ---- | M] () [Unknown (-1) | Unknown] -- C:\Windows\SysWOW64\drivers\papycpu2.sys -- (papycpu2) SRV - [2003.01.17 03:59:56 | 000,001,856 | ---- | M] () [Unknown (-1) | Unknown] -- C:\Windows\SysWOW64\drivers\papyjoy.sys -- (papyjoy) ========== Driver Services (SafeList) ========== DRV:64bit: - [2013.01.29 16:18:58 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2012.12.27 01:26:12 | 000,805,088 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2012.12.19 06:41:52 | 000,194,488 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2012.08.23 15:12:16 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt) DRV:64bit: - [2012.08.23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2012.08.23 15:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2012.08.23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2012.07.17 18:12:08 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) DRV:64bit: - [2012.06.28 17:17:44 | 000,615,728 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF) DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012.01.05 12:58:48 | 000,786,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc) DRV:64bit: - [2012.01.05 12:58:48 | 000,355,096 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub) DRV:64bit: - [2012.01.05 12:58:48 | 000,016,152 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs) DRV:64bit: - [2011.11.02 10:48:26 | 000,021,616 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger) DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2011.03.10 17:36:24 | 000,029,488 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6) DRV:64bit: - [2011.03.04 12:23:28 | 000,011,864 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kl2.sys -- (kl2) DRV:64bit: - [2011.03.04 12:23:24 | 000,460,888 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (KL1) DRV:64bit: - [2010.11.21 04:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub) DRV:64bit: - [2010.11.21 04:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc) DRV:64bit: - [2010.11.21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2010.11.21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.20 14:34:04 | 000,360,832 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcvmm.sys -- (vpcvmm) DRV:64bit: - [2010.11.20 14:34:04 | 000,194,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpchbus.sys -- (vpcbus) DRV:64bit: - [2010.11.20 12:35:34 | 000,095,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpcusb.sys -- (vpcusb) DRV:64bit: - [2010.11.20 12:35:22 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcnfltr.sys -- (vpcnfltr) DRV:64bit: - [2010.04.28 00:57:20 | 000,016,200 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmVirHid.sys -- (WmVirHid) DRV:64bit: - [2010.04.28 00:57:14 | 000,036,936 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmHidLo.sys -- (WmHidLo) DRV:64bit: - [2010.04.28 00:57:12 | 000,026,440 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmBEnum.sys -- (WmBEnum) DRV:64bit: - [2010.04.27 22:03:12 | 000,077,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmXlCore.sys -- (WmXlCore) DRV:64bit: - [2010.04.27 22:02:42 | 000,043,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmFilter.sys -- (WmFilter) DRV:64bit: - [2010.03.19 02:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - [2010.03.04 13:31:22 | 000,030,776 | ---- | M] (Samsung India Software Center) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sam_miniport.sys -- (SODI) DRV:64bit: - [2010.03.04 13:31:18 | 000,023,480 | ---- | M] (Samsung India Software Center) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sam_miniusb.sys -- (miniusb) DRV:64bit: - [2010.02.24 11:20:40 | 000,191,616 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\acedrv11.sys -- (acedrv11) DRV:64bit: - [2009.11.02 19:27:10 | 000,022,544 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt) DRV:64bit: - [2009.10.07 00:45:50 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon) DRV:64bit: - [2009.10.07 00:45:50 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64) DRV:64bit: - [2009.09.16 07:02:42 | 000,031,232 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tap0901t.sys -- (tap0901t) DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.07.14 01:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx) DRV:64bit: - [2009.07.14 01:01:09 | 000,679,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xnacc.sys -- (xnacc) DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009.05.01 00:01:34 | 000,327,576 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:64bit: - [2009.04.30 23:55:56 | 002,755,096 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LV302V64.SYS -- (PID_PEPI) DRV:64bit: - [2009.04.30 23:55:46 | 000,015,896 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lv302a64.sys -- (lvpepf64) DRV:64bit: - [2009.04.08 13:28:46 | 000,068,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21) DRV:64bit: - [2009.03.18 16:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi) DRV:64bit: - [2008.07.26 14:26:34 | 000,050,072 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64) DRV:64bit: - [2007.03.08 18:03:58 | 001,541,120 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbVM305.sys -- (ZSMC0305) DRV:64bit: - [2007.02.02 19:47:18 | 000,300,800 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vvftav.sys -- (vvftav) DRV - [2012.11.16 16:51:26 | 000,011,880 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv) DRV - [2011.06.10 03:19:52 | 000,015,160 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys -- (ACT2PM) DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2003.01.17 03:59:56 | 000,001,984 | ---- | M] () [Unknown (-1) | Unknown (-1) | Stopped] -- C:\Windows\SysWOW64\drivers\papycpu2.sys -- (papycpu2) DRV - [2003.01.17 03:59:56 | 000,001,856 | ---- | M] () [Unknown (-1) | Unknown (-1) | Stopped] -- C:\Windows\SysWOW64\drivers\papyjoy.sys -- (papyjoy) DRV - [1998.09.04 12:32:22 | 000,001,984 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWow64\drivers\papycpu.sys -- (papycpu) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKLM\..\SearchScopes,DefaultScope = {721061fb-eb79-4568-a03c-3ce26d68dae9} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{721061fb-eb79-4568-a03c-3ce26d68dae9}: "URL" = hxxp://de.search.yahoo.com/search/?p={searchTerms}&fr=vc_trans_de_8197 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.search.yahoo.com/web?fr=vc_trans_de_8197 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D7 3C 6D 8E A6 0E CD 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {721061fb-eb79-4568-a03c-3ce26d68dae9} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{721061fb-eb79-4568-a03c-3ce26d68dae9}: "URL" = hxxp://de.search.yahoo.com/search/?p={searchTerms}&fr=vc_trans_de_8197 IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = hxxp://mystart.incredibar.com/mb188/?search={searchTerms}&loc=IB_DS&a=6OyOB8lwcy&i=26 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Search" FF - prefs.js..browser.search.selectedEngine: "Search" FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/" FF - prefs.js..extensions.enabledAddons: adblockpopups%40jessehakanen.net:0.6 FF - prefs.js..extensions.enabledAddons: ich%40maltegoetz.de:1.4.6 FF - prefs.js..extensions.enabledAddons: %7Bd49a148e-817e-4025-bee3-5d541376de3b%7D:2.0 FF - prefs.js..extensions.enabledAddons: langpack-de%40firefox.mozilla.org:19.0 FF - prefs.js..extensions.enabledAddons: dnshelp%40dnshelp.com:1.0.0 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0 FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_168.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: File not found FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: File not found FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll () FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files (x86)\Kaspersky Security Suite CBE 12\FFExt\virtualKeyboard@kaspersky.ru [2012.06.28 17:34:06 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\linkfilter@kaspersky.ru: C:\Program Files (x86)\Kaspersky Security Suite CBE 12\FFExt\linkfilter@kaspersky.ru [2012.06.28 17:34:06 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\KavAntiBanner@Kaspersky.ru: C:\Program Files (x86)\Kaspersky Security Suite CBE 12\FFExt\KavAntiBanner@Kaspersky.ru [2012.06.28 17:34:06 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\dnshelp@dnshelp.com: C:\Users\User\AppData\Roaming\Helper [2013.02.03 16:26:36 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.02.20 15:41:55 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Waterfox 18.0.1\extensions\\Components: C:\Program Files\\Waterfox\components [2013.01.20 14:20:33 | 000,000,000 | ---D | M] [2012.12.31 20:36:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Extensions [2013.02.21 15:50:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\h2syn23t.default\extensions [2013.01.31 16:23:39 | 000,000,000 | ---D | M] (ProxTube - Unblock YouTube) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\h2syn23t.default\extensions\ich@maltegoetz.de [2013.01.31 16:23:39 | 000,130,828 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\adblockpopups@jessehakanen.net.xpi [2013.02.21 15:50:54 | 000,306,394 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\langpack-de@firefox.mozilla.org.xpi [2013.01.31 16:23:38 | 000,348,761 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\proxylist@proxylists.me.xpi [2013.02.14 17:42:10 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013.02.01 22:56:02 | 000,008,883 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\{d49a148e-817e-4025-bee3-5d541376de3b}.xpi [2013.02.03 16:26:36 | 000,002,046 | ---- | M] () -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\searchplugins\360dbd17-2787-4a41-8a5e-a89509e04aca.xml [2013.02.14 15:46:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2013.02.14 15:45:05 | 000,000,000 | ---D | M] (Anti-Banner) -- C:\Program Files (x86)\mozilla firefox\extensions\KavAntiBanner@kaspersky.ru_bak2 [2013.02.14 15:45:05 | 000,000,000 | ---D | M] (Modul zur Link-Untersuchung) -- C:\Program Files (x86)\mozilla firefox\extensions\linkfilter@kaspersky.ru_bak2 [2013.02.03 16:26:36 | 000,000,000 | ---D | M] (Helper) -- C:\USERS\USER\APPDATA\ROAMING\HELPER [2013.02.20 15:41:55 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2013.02.04 14:26:09 | 000,001,400 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2013.02.04 14:26:09 | 000,001,679 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2013.02.04 14:26:09 | 000,000,947 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2013.02.04 14:26:09 | 000,006,818 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2013.02.03 16:26:12 | 000,001,276 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2013.02.04 14:26:09 | 000,000,903 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\x64\ievkbd.dll (Kaspersky Lab ZAO) O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\x64\klwtbbho.dll (Kaspersky Lab ZAO) O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\ievkbd.dll (Kaspersky Lab ZAO) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (DNS Error Helper) - {9B6B03F1-16CF-4491-BBBB-E872802DD717} - C:\ProgramData\DNSErrorHelper\bho.dll () O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\klwtbbho.dll (Kaspersky Lab ZAO) O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Security Suite CBE 12\avp.exe (Kaspersky Lab ZAO) O4 - HKLM..\Run: [BigDog305] C:\Windows\VM305_STI.EXE (Vimicro) O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation) O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKLM..\Run: [RoccatKonePure] C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.EXE (ROCCAT GmbH) O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 221 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1 O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found O8:64bit: - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O9:64bit: - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\x64\ievkbd.dll (Kaspersky Lab ZAO) O9:64bit: - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\x64\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\ievkbd.dll (Kaspersky Lab ZAO) O9 - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\klwtbbho.dll (Kaspersky Lab ZAO) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Reg Error: Value error.) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 10.13.2) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 7.254.254.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B2260ABA-03F9-49A9-8720-710E51E73984}: DhcpNameServer = 7.254.254.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE74617E-9D34-49D5-BFC3-D4D88DE756F1}: DhcpNameServer = 217.0.43.97 217.0.43.113 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FA4F2766-301B-48E0-9012-4BAF43095570}: DhcpNameServer = 192.168.42.129 O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - File not found O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - File not found O20 - HKLM Winlogon: UserInit - (userinit.exe) - File not found O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - File not found O20:64bit: - Winlogon\Notify\klogon: DllName - (%SystemRoot%\System32\klogon.dll) - C:\Windows\SysNative\klogon.dll (Kaspersky Lab ZAO) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O27:64bit: - HKLM IFEO\act2.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\ccleaner64.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\framemanager.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\setup.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\teamviewer.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\unins000.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\uninst.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\act2.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\ccleaner64.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\framemanager.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\setup.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\teamviewer.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\unins000.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\uninst.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O29:64bit: - HKLM SecurityProviders - (credssp.dll) - File not found O29 - HKLM SecurityProviders - (credssp.dll) - File not found O32 - HKLM CDRom: AutoRun - 0 O32 - AutoRun File - [2002.01.18 18:47:38 | 000,868,352 | R--- | M] () - I:\autorun.exe -- [ CDFS ] O32 - AutoRun File - [2002.01.03 14:06:12 | 000,000,050 | R--- | M] () - I:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{68e87b9d-6a26-11e2-92f2-902b3410c704}\Shell - "" = AutoRun O33 - MountPoints2\{68e87b9d-6a26-11e2-92f2-902b3410c704}\Shell\AutoRun\command - "" = I:\autorun.exe -- [2002.01.18 18:47:38 | 000,868,352 | R--- | M] () O33 - MountPoints2\{8afd60aa-6fbe-11e1-97ea-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{8afd60aa-6fbe-11e1-97ea-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Run.exe O33 - MountPoints2\{c2a85673-e6d5-11e1-8653-902b3410c704}\Shell - "" = AutoRun O33 - MountPoints2\{c2a85673-e6d5-11e1-8653-902b3410c704}\Shell\AutoRun\command - "" = I:\autorun.exe -- [2002.01.18 18:47:38 | 000,868,352 | R--- | M] () O33 - MountPoints2\{c2a85684-e6d5-11e1-8653-902b3410c704}\Shell - "" = AutoRun O33 - MountPoints2\{c2a85684-e6d5-11e1-8653-902b3410c704}\Shell\AutoRun\command - "" = J:\autorun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: {EF289A85-8E57-408d-BE47-73B55609861A} - RootsUpdate ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP NetSvcs:64bit: UxTuneUp - C:\Windows\SysNative\uxtuneup.dll (TuneUp Software) NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) MsConfig:64bit - StartUpFolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk - - File not found MsConfig:64bit - StartUpReg: Adobe ARM - hkey= - key= - File not found MsConfig:64bit - StartUpReg: APSDaemon - hkey= - key= - File not found MsConfig:64bit - StartUpReg: DAEMON Tools Net Agent - hkey= - key= - File not found MsConfig:64bit - StartUpReg: Duden Korrektor SysTray - hkey= - key= - C:\Program Files (x86)\Duden\Duden Korrektor\DKTray.exe (Expert System S.p.A.) MsConfig:64bit - StartUpReg: FrameManager - hkey= - key= - C:\Program Files\Samsung\FrameManager\FrameManager.exe (Samsung Electronics Co. Ltd) MsConfig:64bit - StartUpReg: LogitechQuickCamRibbon - hkey= - key= - C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe () MsConfig:64bit - StartUpReg: LogMeIn Hamachi Ui - hkey= - key= - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) MsConfig:64bit - StartUpReg: QuickTime Task - hkey= - key= - File not found MsConfig:64bit - StartUpReg: spdetector3 - hkey= - key= - C:\Program Files (x86)\Spyware Process Detector\spd323.exe (System SoftLab) MsConfig:64bit - StartUpReg: Start WingMan Profiler - hkey= - key= - C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.) MsConfig:64bit - StartUpReg: Steam - hkey= - key= - C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) MsConfig:64bit - StartUpReg: SunJavaUpdateSched - hkey= - key= - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) MsConfig:64bit - StartUpReg: Wondershare Helper Compact.exe - hkey= - key= - C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare) MsConfig:64bit - State: "startup" - Reg Error: Key error. MsConfig:64bit - State: "services" - Reg Error: Key error. CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.02.21 20:45:15 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.02.21 20:44:36 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe [2013.02.21 15:30:19 | 000,035,104 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe [2013.02.21 15:29:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013 [2013.02.21 15:28:49 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\TuneUp Software [2013.02.21 15:27:34 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software [2013.02.21 14:53:40 | 000,000,000 | ---D | C] -- C:\TuneUpPortable [2013.02.18 17:35:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Tunngle [2013.02.18 17:35:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Tunngle [2013.02.18 17:35:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle [2013.02.18 17:35:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tunngle [2013.02.18 17:19:42 | 000,000,000 | ---D | C] -- C:\Program Files\GIGABYTE [2013.02.18 17:15:21 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM [2013.02.18 17:15:21 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.02.18 17:14:55 | 002,603,864 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll [2013.02.18 17:14:52 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll [2013.02.18 17:14:51 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll [2013.02.18 17:14:50 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll [2013.02.18 17:14:49 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll [2013.02.18 17:14:30 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2013.02.18 17:14:29 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2013.02.18 17:14:28 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2013.02.18 17:14:27 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2013.02.18 17:14:27 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2013.02.18 17:14:27 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2013.02.18 17:14:21 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll [2013.02.18 17:14:20 | 000,958,296 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll [2013.02.18 17:14:19 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll [2013.02.18 17:14:14 | 002,528,832 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2013.02.17 17:41:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2013.02.17 17:41:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi [2013.02.16 22:41:52 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\.minecraft [2013.02.16 21:05:15 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\http___mvc.craften.de [2013.02.16 21:04:45 | 002,752,512 | ---- | C] (hxxp://mvc.craften.de) -- C:\Users\User\Desktop\Minecraft Version Changer.exe [2013.02.15 15:20:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2013.02.15 15:15:18 | 000,000,000 | ---D | C] -- C:\AiO-Files [2013.02.15 15:09:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AmIcoSingLun [2013.02.15 15:09:18 | 000,000,000 | ---D | C] -- C:\ProgramData\AmUStor [2013.02.15 14:50:44 | 000,805,088 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys [2013.02.15 13:29:25 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius [2013.02.14 15:45:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2013.02.13 14:42:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE [2013.02.13 14:42:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GIGABYTE [2013.02.13 14:33:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID [2013.02.13 14:33:35 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID [2013.02.11 20:05:52 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\.minecraft [2013.02.10 14:16:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2013.02.07 14:41:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\en-US [2013.02.07 14:41:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\en [2013.02.07 14:41:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\0409 [2013.02.07 14:41:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\en [2013.02.07 14:41:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\0409 [2013.02.06 16:43:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Installer Clean Up [2013.02.04 14:32:26 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\FileZilla [2013.02.04 14:26:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\IO [2013.02.03 16:36:29 | 000,037,216 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll [2013.02.03 16:36:29 | 000,029,536 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll [2013.02.03 16:35:32 | 000,026,400 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll [2013.02.03 16:35:32 | 000,021,792 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll [2013.02.03 16:35:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2013 [2013.02.03 16:34:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.02.03 16:34:39 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files [2013.02.03 16:26:36 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Helper [2013.02.03 16:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\DNSErrorHelper [2013.02.03 16:26:24 | 000,493,056 | ---- | C] ( datenhaus GmbH) -- C:\Windows\SysWow64\dhRichClient3.dll [2013.02.03 16:26:16 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\DesktopIconForAmazon [2013.02.03 16:26:08 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\OCS [2013.02.03 16:19:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2013.02.02 21:53:05 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Sun [2013.02.02 18:38:39 | 000,000,000 | R--D | C] -- C:\Users\User\Documents\Scanned Documents [2013.02.02 18:38:39 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\Fax [2013.02.02 12:27:28 | 000,226,304 | ---- | C] (RAD Game Tools, Inc.) -- C:\Windows\SysNative\binkw32.dll [2013.01.29 16:23:14 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images [2013.01.29 16:21:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite [2013.01.29 16:18:58 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys [2013.01.29 16:18:52 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\DAEMON Tools Lite [2013.01.29 16:18:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite [2013.01.29 16:17:16 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite [2013.01.29 16:04:36 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\DAEMON Tools Net [2013.01.29 16:04:03 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Net [2013.01.28 18:35:40 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MeatWater FO Altitude Callouts v1.0 [2013.01.28 18:35:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MeatWater FO Altitude Callouts v1.0 [2013.01.28 16:16:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Papyrus [2013.01.28 16:12:18 | 000,000,000 | ---D | C] -- C:\Papyrus [2013.01.26 17:18:14 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\.mc3totalconversion [2013.01.25 17:01:27 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\IsolatedStorage [2013.01.25 17:00:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts [2013.01.23 18:16:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2013.01.23 18:16:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ] [1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.02.22 15:57:38 | 000,022,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.02.22 15:57:38 | 000,022,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.02.22 15:50:32 | 000,001,057 | ---- | M] () -- C:\Users\User\Desktop\weoiss1998 - Verknüpfung.lnk [2013.02.22 15:50:32 | 000,001,023 | ---- | M] () -- C:\Users\User\Desktop\simon1 - Verknüpfung.lnk [2013.02.22 15:49:03 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.02.22 15:48:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.02.21 20:46:45 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013.02.21 20:44:41 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe [2013.02.21 20:23:22 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.02.21 16:20:17 | 002,752,512 | ---- | M] (hxxp://mvc.craften.de) -- C:\Users\User\Desktop\Minecraft Version Changer.exe [2013.02.21 16:03:13 | 000,439,128 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013.02.19 18:02:02 | 001,621,244 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.02.19 18:02:02 | 000,702,062 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.02.19 18:02:02 | 000,655,438 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.02.19 18:02:02 | 000,149,618 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.02.19 18:02:02 | 000,122,310 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.02.18 17:35:35 | 000,000,991 | ---- | M] () -- C:\Users\Public\Desktop\Tunngle beta.lnk [2013.02.18 17:12:49 | 000,000,010 | ---- | M] () -- C:\Windows\GSetup.ini [2013.02.17 21:25:44 | 000,000,196 | ---- | M] () -- C:\Windows\SysNative\cc_20130217_212519.reg [2013.02.17 20:10:56 | 000,000,744 | ---- | M] () -- C:\Windows\SysNative\cc_20130217_201049.reg [2013.02.17 13:19:14 | 001,644,462 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013.02.16 13:32:36 | 000,000,258 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_133234.reg [2013.02.16 13:32:21 | 000,009,020 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_133219.reg [2013.02.16 00:45:06 | 000,000,178 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_004504.reg [2013.02.16 00:44:53 | 000,000,242 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_004451.reg [2013.02.16 00:44:19 | 000,010,480 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_004416.reg [2013.02.15 15:34:48 | 000,001,028 | ---- | M] () -- C:\Windows\SysNative\cc_20130215_153446.reg [2013.02.15 15:34:38 | 000,006,030 | ---- | M] () -- C:\Windows\SysNative\cc_20130215_153435.reg [2013.02.12 17:12:41 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\Access.dat [2013.02.12 12:37:20 | 000,000,439 | ---- | M] () -- C:\Windows\SIERRA.INI [2013.02.10 17:38:29 | 000,002,242 | ---- | M] () -- C:\Windows\SysNative\cc_20130210_173828.reg [2013.02.10 04:25:27 | 000,017,738 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb [2013.02.09 15:26:58 | 000,001,262 | ---- | M] () -- C:\Users\User\Desktop\Roaming - Verknüpfung.lnk [2013.02.09 14:25:36 | 003,035,306 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin [2013.02.08 16:27:45 | 000,000,704 | ---- | M] () -- C:\Users\User\AppData\Roaming\server.properties [2013.02.03 16:10:27 | 000,008,038 | ---- | M] () -- C:\Windows\SysNative\cc_20130203_161025.reg [2013.01.30 15:42:22 | 000,011,946 | ---- | M] () -- C:\Windows\SysNative\cc_20130130_154220.reg [2013.01.29 16:18:58 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys [2013.01.28 14:19:32 | 000,035,104 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe [2013.01.28 14:19:28 | 000,026,400 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll [2013.01.28 14:19:28 | 000,021,792 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll [2013.01.26 18:35:08 | 000,003,694 | ---- | M] () -- C:\Users\User\Desktop\weoiss1998.png [2013.01.24 19:13:07 | 000,000,994 | ---- | M] () -- C:\Users\User\Desktop\start.bat - Verknüpfung.lnk [2013.01.23 17:57:32 | 064,185,135 | ---- | M] () -- C:\Users\User\AppData\Roaming\.minecraft.zip [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ] [1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.02.22 15:50:32 | 000,001,057 | ---- | C] () -- C:\Users\User\Desktop\weoiss1998 - Verknüpfung.lnk [2013.02.22 15:50:32 | 000,001,023 | ---- | C] () -- C:\Users\User\Desktop\simon1 - Verknüpfung.lnk [2013.02.21 16:03:04 | 000,439,128 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013.02.21 15:29:23 | 000,002,201 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk [2013.02.18 17:35:35 | 000,000,991 | ---- | C] () -- C:\Users\Public\Desktop\Tunngle beta.lnk [2013.02.18 17:19:42 | 000,031,272 | ---- | C] () -- C:\Windows\SysNative\AppleChargerSrv.exe [2013.02.18 17:19:42 | 000,021,616 | ---- | C] () -- C:\Windows\SysNative\drivers\AppleCharger.sys [2013.02.18 17:14:27 | 000,215,644 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT [2013.02.17 21:25:32 | 000,000,196 | ---- | C] () -- C:\Windows\SysNative\cc_20130217_212519.reg [2013.02.17 20:10:51 | 000,000,744 | ---- | C] () -- C:\Windows\SysNative\cc_20130217_201049.reg [2013.02.16 13:32:35 | 000,000,258 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_133234.reg [2013.02.16 13:32:20 | 000,009,020 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_133219.reg [2013.02.16 00:45:05 | 000,000,178 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_004504.reg [2013.02.16 00:44:52 | 000,000,242 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_004451.reg [2013.02.16 00:44:18 | 000,010,480 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_004416.reg [2013.02.15 15:34:47 | 000,001,028 | ---- | C] () -- C:\Windows\SysNative\cc_20130215_153446.reg [2013.02.15 15:34:37 | 000,006,030 | ---- | C] () -- C:\Windows\SysNative\cc_20130215_153435.reg [2013.02.15 13:19:11 | 000,178,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2013.02.10 17:38:29 | 000,002,242 | ---- | C] () -- C:\Windows\SysNative\cc_20130210_173828.reg [2013.02.09 15:26:58 | 000,001,262 | ---- | C] () -- C:\Users\User\Desktop\Roaming - Verknüpfung.lnk [2013.02.08 16:27:45 | 000,000,704 | ---- | C] () -- C:\Users\User\AppData\Roaming\server.properties [2013.02.06 16:43:51 | 000,002,849 | ---- | C] () -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Install Clean Up.lnk [2013.02.03 16:26:24 | 000,338,432 | ---- | C] () -- C:\Windows\SysWow64\sqlite36_engine.dll [2013.02.03 16:10:26 | 000,008,038 | ---- | C] () -- C:\Windows\SysNative\cc_20130203_161025.reg [2013.01.30 15:42:22 | 000,011,946 | ---- | C] () -- C:\Windows\SysNative\cc_20130130_154220.reg [2013.01.29 16:05:01 | 000,001,899 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk [2013.01.26 18:35:07 | 000,003,694 | ---- | C] () -- C:\Users\User\Desktop\weoiss1998.png [2013.01.24 19:13:07 | 000,000,994 | ---- | C] () -- C:\Users\User\Desktop\start.bat - Verknüpfung.lnk [2013.01.23 17:57:03 | 064,185,135 | ---- | C] () -- C:\Users\User\AppData\Roaming\.minecraft.zip [2013.01.13 00:48:27 | 001,644,462 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013.01.10 15:51:48 | 000,001,073 | ---- | C] () -- C:\Users\User\Videos - Verknüpfung.lnk [2013.01.09 16:37:36 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\Access.dat [2012.12.19 18:50:16 | 000,003,584 | ---- | C] () -- C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012.11.18 19:31:33 | 000,110,080 | ---- | C] () -- C:\Windows\SysWow64\advd.dll [2012.11.18 19:31:33 | 000,023,040 | ---- | C] () -- C:\Windows\SysWow64\auth.dll [2012.11.18 19:31:32 | 000,511,488 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll [2012.11.14 11:45:13 | 000,000,576 | ---- | C] () -- C:\Users\User\AppData\Roaming\All CPU MeterV3_Settings.ini [2012.09.12 14:37:23 | 000,032,256 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll [2012.09.02 10:20:59 | 000,000,037 | ---- | C] () -- C:\Windows\wininit.ini [2012.08.23 19:03:45 | 000,000,017 | ---- | C] () -- C:\Users\User\AppData\Local\resmon.resmoncfg [2012.08.18 12:59:01 | 000,122,880 | ---- | C] () -- C:\Windows\rm305.exe [2012.08.18 12:59:01 | 000,000,900 | ---- | C] () -- C:\Windows\rm305.ini [2012.08.11 21:11:11 | 000,000,530 | ---- | C] () -- C:\Users\User\AppData\Roaming\All CPU MeterV2_Settings.ini [2012.08.11 21:10:44 | 000,000,294 | ---- | C] () -- C:\Users\User\AppData\Roaming\GPU MeterV2_Settings.ini [2012.08.11 19:46:41 | 000,017,408 | ---- | C] () -- C:\Users\User\AppData\Local\WebpageIcons.db [2012.07.15 15:25:34 | 000,000,295 | ---- | C] () -- C:\Users\User\.openev [2012.07.15 12:15:02 | 000,000,646 | ---- | C] () -- C:\Windows\FSX_KML.INI [2012.07.09 18:26:33 | 000,000,241 | ---- | C] () -- C:\Users\User\AppData\Roaming\GPU Meter_Settings.ini [2012.07.08 10:30:29 | 000,000,173 | ---- | C] () -- C:\Users\User\AppData\Local\msmathematics.qat.User [2012.07.07 17:50:55 | 000,000,412 | ---- | C] () -- C:\Users\User\AppData\Roaming\All CPU Meter_Settings.ini [2012.06.22 12:51:28 | 000,260,688 | ---- | C] () -- C:\Windows\SUPDRun.exe [2012.04.21 13:55:25 | 000,356,352 | ---- | C] () -- C:\Windows\SysWow64\GPLPatchDLL.dll [2012.04.20 17:50:25 | 000,001,984 | ---- | C] () -- C:\Windows\SysWow64\drivers\papycpu2.sys [2012.04.20 17:47:04 | 000,001,984 | ---- | C] () -- C:\Windows\SysWow64\drivers\papycpu.sys [2012.04.20 17:47:04 | 000,001,856 | ---- | C] () -- C:\Windows\SysWow64\drivers\papyjoy.sys [2012.04.20 17:45:45 | 000,000,439 | ---- | C] () -- C:\Windows\SIERRA.INI [2012.03.29 15:26:48 | 000,000,680 | RHS- | C] () -- C:\Users\User\ntuser.pol [2012.03.17 00:26:57 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini [2011.12.08 16:14:58 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll [2011.09.19 08:07:46 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll [2011.09.19 08:07:32 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll ========== ZeroAccess Check ========== [2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2013.01.26 17:18:14 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\.mc3totalconversion [2013.02.22 15:56:42 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\.minecraft [2012.08.26 16:43:43 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\BANDISOFT [2012.07.27 16:11:57 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Canneverbe Limited [2012.12.31 18:14:40 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\com.dansl.QRreader [2012.11.18 19:32:05 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\concept design [2013.01.30 15:42:00 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\DAEMON Tools Lite [2013.01.29 16:04:36 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\DAEMON Tools Net [2013.02.16 00:34:14 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\DesktopIconForAmazon [2013.02.17 14:00:49 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Dropbox [2012.04.17 18:15:21 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Duden [2013.01.10 16:26:29 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Electronic Arts [2013.02.09 18:00:52 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\FileZilla [2012.09.17 16:53:07 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Foxit Reader [2012.07.14 17:50:05 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Foxit Software [2012.11.27 20:33:47 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\JOSM [2012.03.30 11:58:28 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Leadertech [2012.12.01 10:42:23 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\lennox [2012.11.23 16:04:32 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\logs [2013.01.22 11:59:55 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Minecraft Version Changer [2012.12.13 17:17:48 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\MTE [2012.10.06 21:29:11 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Need for Speed World [2013.02.17 21:25:07 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Notepad++ [2013.02.03 16:26:08 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\OCS [2012.12.02 19:58:29 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Origin [2012.09.21 19:56:28 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\pdfforge [2012.07.20 22:09:59 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\ProtectDISC [2012.04.02 18:30:59 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Sierra [2012.12.16 14:04:23 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\TeamViewer [2013.02.07 19:13:34 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\The Creative Assembly [2013.02.21 20:47:38 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\TS3Client [2012.06.30 12:59:36 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\ts3overlay [2013.02.21 15:28:49 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\TuneUp Software [2013.02.18 17:35:39 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Tunngle [2012.07.16 20:59:59 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Unity [2012.06.30 16:24:11 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\wargaming.net [2012.06.18 15:33:03 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\WatchGuard [2013.01.20 14:17:10 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Waterfox Limited [2012.09.12 14:48:42 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Wondershare Video Converter Platinum [2012.09.12 15:00:40 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\XMedia Recode [2013.01.29 15:33:56 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\xVideoServiceThief [2012.09.12 14:49:02 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A} ========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*. > [2012.08.24 23:00:25 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin [2012.09.12 17:30:47 | 000,000,000 | ---D | M] -- C:\4560a6c572b499d39611800522cb [2012.12.19 14:34:24 | 000,000,000 | ---D | M] -- C:\97c0481b3aa9dcb24eb08efcf1e1606c [2013.02.15 15:19:19 | 000,000,000 | ---D | M] -- C:\AiO-Files [2013.02.21 20:46:48 | 000,000,000 | ---D | M] -- C:\Config.Msi [2012.06.22 12:46:49 | 000,000,000 | ---D | M] -- C:\CP1520_Series_Full_Solution [2009.07.14 06:08:56 | 000,000,000 | -HSD | M] -- C:\Documents and Settings [2012.03.17 00:25:26 | 000,000,000 | -HSD | M] -- C:\Dokumente und Einstellungen [2012.10.26 21:07:38 | 000,000,000 | ---D | M] -- C:\F1 2010 Textures Editor [2013.01.07 17:46:17 | 000,000,000 | ---D | M] -- C:\Flight Simulator X [2013.02.21 15:44:11 | 000,000,000 | -HSD | M] -- C:\found.000 [2012.09.05 14:29:20 | 000,000,000 | ---D | M] -- C:\Fraps [2012.07.15 11:53:07 | 000,000,000 | ---D | M] -- C:\fsxkm110 [2012.10.19 10:50:42 | 000,000,000 | ---D | M] -- C:\Games [2013.01.13 17:55:12 | 000,000,000 | ---D | M] -- C:\GPL [2012.06.05 18:06:09 | 000,000,000 | ---D | M] -- C:\gpl sicher [2012.12.12 21:18:02 | 000,000,000 | ---D | M] -- C:\GPLSecrets [2012.08.12 19:51:49 | 000,000,000 | ---D | M] -- C:\lj631ge [2012.04.21 15:32:27 | 000,000,000 | ---D | M] -- C:\Mods [2012.03.19 21:35:50 | 000,000,000 | RH-D | M] -- C:\MSOCache [2012.07.07 18:56:19 | 000,000,000 | ---D | M] -- C:\musik konvertiert [2012.04.21 20:55:03 | 000,000,000 | ---D | M] -- C:\Papa [2013.02.12 12:37:04 | 000,000,000 | ---D | M] -- C:\Papyrus [2013.02.20 15:25:01 | 000,000,000 | ---D | M] -- C:\PerfLogs [2013.02.21 20:45:15 | 000,000,000 | R--D | M] -- C:\Program Files [2013.02.18 17:35:34 | 000,000,000 | R--D | M] -- C:\Program Files (x86) [2013.02.21 15:27:34 | 000,000,000 | -H-D | M] -- C:\ProgramData [2012.03.17 00:25:29 | 000,000,000 | -HSD | M] -- C:\Recovery [2012.05.01 11:24:59 | 000,000,000 | ---D | M] -- C:\sicher fifa [2012.12.12 20:49:20 | 000,000,000 | ---D | M] -- C:\Sierra [2013.01.07 13:03:29 | 000,000,000 | ---D | M] -- C:\steam_sicher [2013.02.22 15:59:01 | 000,000,000 | -HSD | M] -- C:\System Volume Information [2012.09.21 16:29:35 | 000,000,000 | ---D | M] -- C:\temp [2013.02.21 15:08:39 | 000,000,000 | ---D | M] -- C:\TuneUpPortable [2012.03.30 19:15:12 | 000,000,000 | ---D | M] -- C:\Ubisoft [2012.11.03 15:54:43 | 000,000,000 | ---D | M] -- C:\USB [2012.07.12 18:59:30 | 000,000,000 | R--D | M] -- C:\Users [2012.06.05 16:16:43 | 000,000,000 | ---D | M] -- C:\win7_spezial [2013.02.21 16:03:22 | 000,000,000 | ---D | M] -- C:\Windows [2012.06.05 16:51:12 | 000,000,000 | ---D | M] -- C:\Windows 7 Logon Background Changer < %PROGRAMFILES%\*.exe > < %LOCALAPPDATA%\*.exe > < %systemroot%\*. /mp /s > < C:\Windows\system32\*.tsp > [2009.07.14 02:14:11 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\hidphone.tsp [2009.07.14 02:14:11 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\kmddsp.tsp [2009.07.14 02:14:11 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ndptsp.tsp [2009.07.14 02:14:11 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\remotesp.tsp [2010.11.21 04:23:55 | 000,281,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\unimdm.tsp [2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT [2009.07.14 06:08:49 | 000,032,632 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2012.07.10 21:37:03 | 000,001,102 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [2012.07.10 21:37:03 | 000,001,106 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [2012.07.14 17:33:05 | 000,000,884 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job < MD5 for: AGP440.SYS > [2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys [2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys [2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys < MD5 for: ATAPI.SYS > [2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys [2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys [2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys < MD5 for: CNGAUDIT.DLL > [2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll [2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll [2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll [2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll < MD5 for: EXPLORER.EXE > [2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe [2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe [2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe [2011.02.26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe [2010.11.21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe [2010.11.21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe < MD5 for: IASTORV.SYS > [2010.11.21 04:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys [2010.11.21 04:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys [2011.03.11 07:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys [2011.03.11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys [2011.03.11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys [2011.03.11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys < MD5 for: NETLOGON.DLL > [2010.11.21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll [2010.11.21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll [2010.11.21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll [2010.11.21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll < MD5 for: NVSTOR.SYS > [2011.03.11 07:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys [2011.03.11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys [2011.03.11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys [2011.03.11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys [2010.11.21 04:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys [2010.11.21 04:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys < MD5 for: SCECLI.DLL > [2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll [2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll [2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll [2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll < MD5 for: USER32.DLL > [2010.11.21 04:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\SysWOW64\user32.dll [2010.11.21 04:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll [2010.11.21 04:24:09 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\SysNative\user32.dll [2010.11.21 04:24:09 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll < MD5 for: USERINIT.EXE > [2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe [2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe [2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe [2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe < MD5 for: WINLOGON.EXE > [2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe [2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe < MD5 for: WS2IFSL.SYS > [2009.07.14 01:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\SysNative\drivers\ws2ifsl.sys [2009.07.14 01:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\winsxs\amd64_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.1.7600.16385_none_ab7b927be17eace8\ws2ifsl.sys < %systemroot%\system32\drivers\*.sys /lockedfiles > < %systemroot%\System32\config\*.sav > < %systemroot%\system32\*.dll /lockedfiles > < %USERPROFILE%\*.* > [2012.07.15 15:25:34 | 000,000,295 | ---- | M] () -- C:\Users\User\.openev [2013.02.15 15:31:36 | 000,000,000 | ---- | M] () -- C:\Users\User\agent.log [2013.02.22 15:58:50 | 003,932,160 | -HS- | M] () -- C:\Users\User\NTUSER.DAT [2013.02.22 15:58:50 | 000,262,144 | -HS- | M] () -- C:\Users\User\ntuser.dat.LOG1 [2012.03.17 00:25:37 | 000,000,000 | -HS- | M] () -- C:\Users\User\ntuser.dat.LOG2 [2012.03.17 18:40:51 | 000,065,536 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf [2012.03.17 18:40:51 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms [2012.03.17 18:40:51 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms [2012.04.28 19:08:44 | 000,065,536 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{1abe991d-914f-11e1-b958-902b3410c704}.TM.blf [2012.04.28 19:08:43 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{1abe991d-914f-11e1-b958-902b3410c704}.TMContainer00000000000000000001.regtrans-ms [2012.04.28 19:08:44 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{1abe991d-914f-11e1-b958-902b3410c704}.TMContainer00000000000000000002.regtrans-ms [2013.02.08 20:36:02 | 000,065,536 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{90466440-71f3-11e2-9a39-902b3410c704}.TM.blf [2013.02.08 20:36:02 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{90466440-71f3-11e2-9a39-902b3410c704}.TMContainer00000000000000000001.regtrans-ms [2013.02.08 20:36:02 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{90466440-71f3-11e2-9a39-902b3410c704}.TMContainer00000000000000000002.regtrans-ms [2012.03.17 00:25:37 | 000,000,020 | -HS- | M] () -- C:\Users\User\ntuser.ini [2012.10.22 09:50:11 | 000,000,680 | RHS- | M] () -- C:\Users\User\ntuser.pol [2013.01.10 15:51:48 | 000,001,073 | ---- | M] () -- C:\Users\User\Videos - Verknüpfung.lnk < %USERPROFILE%\Local Settings\Temp\*.exe > < %USERPROFILE%\Local Settings\Temp\*.dll > < %USERPROFILE%\Application Data\*.exe > < HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs > HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\\Required: DebugWindows [binary data] HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\\Windows: %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 < > ========== Alternate Data Streams ========== @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:05EE1EEF < End of report > |
|
22.02.2013, 16:22
| #4 |
| /// Malware-holic | Windows 7 Anwenderprogramme öffnen nur sehr langsam otl fix Fixen mit OTL
Code:
ATTFilter :OTL
O8:64bit: - Extra context menu item: An OneNote senden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8:64bit: - Extra context menu item: Nach Microsoft Excel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Nach Microsoft Exel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: An OneNote senden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Nach Microsoft Excel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Nach Microsoft Exel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
:files
:Commands
[emptytemp]
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
22.02.2013, 16:56
| #5 |
| | Windows 7 Anwenderprogramme öffnen nur sehr langsam Das müsste das sein: All processes killed ========== OTL ========== 64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\An OneNote senden\ not found. 64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Nach Microsoft Excel exportieren\ not found. 64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Nach Microsoft Exel exportieren\ not found. Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\An OneNote senden\ not found. Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Nach Microsoft Excel exportieren\ not found. Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Nach Microsoft Exel exportieren\ not found. ========== FILES ========== ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Gast ->Temp folder emptied: 122650 bytes ->Temporary Internet Files folder emptied: 154965 bytes ->FireFox cache emptied: 52557767 bytes ->Flash cache emptied: 934 bytes User: Public User: UpdatusUser ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: User ->Temp folder emptied: 46012671 bytes ->Temporary Internet Files folder emptied: 709932 bytes ->Java cache emptied: 3270460 bytes ->FireFox cache emptied: 75680263 bytes ->Flash cache emptied: 2755 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 200704 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 301707 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67832 bytes %systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 558 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 171,00 mb OTL by OldTimer - Version 3.2.69.0 log created on 02222013_164303 Files\Folders moved on Reboot... C:\Users\User\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. File move failed. C:\Windows\temp\logishrd\LVPrcInj01.dll scheduled to be moved on reboot. File move failed. C:\Windows\temp\logishrd\LVPrcInj02.dll scheduled to be moved on reboot. PendingFileRenameOperations files... Registry entries deleted on Reboot... |
|
22.02.2013, 17:09
| #6 |
| /// Malware-holic | Windows 7 Anwenderprogramme öffnen nur sehr langsam Yes sir. Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ --> Windows 7 Anwenderprogramme öffnen nur sehr langsam |
|
22.02.2013, 19:57
| #7 |
| | Windows 7 Anwenderprogramme öffnen nur sehr langsam Er hat nix gefunden. Gruß weoiss |
|
22.02.2013, 20:12
| #8 |
| /// Malware-holic | Windows 7 Anwenderprogramme öffnen nur sehr langsam und wo ist das log?
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
22.02.2013, 20:17
| #9 |
| | Windows 7 Anwenderprogramme öffnen nur sehr langsam Sorry hab ich vergessen. hier der Log: 19:56:43.0446 3124 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 19:56:43.0446 3124 UEFI system 19:56:43.0626 3124 ============================================================ 19:56:43.0626 3124 Current date / time: 2013/02/22 19:56:43.0626 19:56:43.0626 3124 SystemInfo: 19:56:43.0626 3124 19:56:43.0626 3124 OS Version: 6.1.7601 ServicePack: 1.0 19:56:43.0626 3124 Product type: Workstation 19:56:43.0626 3124 ComputerName: SIMONHIGHENDPC 19:56:43.0626 3124 UserName: User 19:56:43.0626 3124 Windows directory: C:\Windows 19:56:43.0626 3124 System windows directory: C:\Windows 19:56:43.0626 3124 Running under WOW64 19:56:43.0626 3124 Processor architecture: Intel x64 19:56:43.0626 3124 Number of processors: 8 19:56:43.0626 3124 Page size: 0x1000 19:56:43.0626 3124 Boot type: Normal boot 19:56:43.0626 3124 ============================================================ 19:56:47.0622 3124 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:56:47.0638 3124 ============================================================ 19:56:47.0638 3124 \Device\Harddisk0\DR0: 19:56:47.0638 3124 GPT partitions: 19:56:47.0638 3124 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {74D11EE9-D9FE-4274-8884-CA16F47B940D}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000 19:56:47.0638 3124 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {6AE313AC-A08A-4C78-9F26-286D8297AFE1}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x40000 19:56:47.0638 3124 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {7329315E-CEE6-49FF-87E5-D522D0AB9FBD}, Name: Basic data partition, StartLBA 0x72800, BlocksNum 0xE8D96000 19:56:47.0638 3124 MBR partitions: 19:56:47.0638 3124 ============================================================ 19:56:47.0700 3124 C: <-> \Device\Harddisk0\DR0\Partition3 19:56:47.0700 3124 ============================================================ 19:56:47.0700 3124 Initialize success 19:56:47.0700 3124 ============================================================ 19:56:51.0600 5112 ============================================================ 19:56:51.0600 5112 Scan started 19:56:51.0600 5112 Mode: Manual; 19:56:51.0600 5112 ============================================================ 19:56:52.0614 5112 ================ Scan system memory ======================== 19:56:52.0614 5112 System memory - ok 19:56:52.0614 5112 ================ Scan services ============================= 19:56:56.0171 5112 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 19:56:56.0171 5112 1394ohci - ok 19:56:56.0280 5112 [ A3769020F7E8A70FD3E824C050F33306 ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys 19:56:56.0280 5112 acedrv11 - ok 19:56:56.0296 5112 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 19:56:56.0312 5112 ACPI - ok 19:56:56.0312 5112 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 19:56:56.0312 5112 AcpiPmi - ok 19:56:56.0421 5112 [ 2D766591E87FFFF237C0C9C16CDDECAB ] ACT2PM C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys 19:56:56.0421 5112 ACT2PM - ok 19:56:56.0452 5112 [ C47D15FC2CA269DD2EC5946953C5BF03 ] ACT2_Service C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe 19:56:56.0483 5112 ACT2_Service - ok 19:56:56.0592 5112 AddonsHelper - ok 19:56:56.0702 5112 [ C004F38974F4D321B4C20A240E1175C0 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe 19:56:56.0717 5112 AdobeActiveFileMonitor9.0 - ok 19:56:56.0826 5112 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 19:56:56.0842 5112 AdobeFlashPlayerUpdateSvc - ok 19:56:56.0873 5112 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 19:56:56.0889 5112 adp94xx - ok 19:56:56.0920 5112 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 19:56:56.0920 5112 adpahci - ok 19:56:56.0936 5112 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 19:56:56.0936 5112 adpu320 - ok 19:56:56.0951 5112 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 19:56:56.0951 5112 AeLookupSvc - ok 19:56:57.0014 5112 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 19:56:57.0014 5112 AFD - ok 19:56:57.0029 5112 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 19:56:57.0045 5112 agp440 - ok 19:56:57.0045 5112 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 19:56:57.0060 5112 ALG - ok 19:56:57.0076 5112 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 19:56:57.0076 5112 aliide - ok 19:56:57.0092 5112 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 19:56:57.0092 5112 amdide - ok 19:56:57.0123 5112 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 19:56:57.0123 5112 AmdK8 - ok 19:56:57.0123 5112 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 19:56:57.0138 5112 AmdPPM - ok 19:56:57.0170 5112 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 19:56:57.0185 5112 amdsata - ok 19:56:57.0201 5112 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 19:56:57.0201 5112 amdsbs - ok 19:56:57.0216 5112 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 19:56:57.0216 5112 amdxata - ok 19:56:57.0248 5112 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 19:56:57.0248 5112 AppID - ok 19:56:57.0263 5112 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 19:56:57.0263 5112 AppIDSvc - ok 19:56:57.0279 5112 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 19:56:57.0279 5112 Appinfo - ok 19:56:57.0310 5112 [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys 19:56:57.0310 5112 AppleCharger - ok 19:56:57.0341 5112 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe 19:56:57.0341 5112 AppleChargerSrv - ok 19:56:57.0404 5112 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 19:56:57.0404 5112 AppMgmt - ok 19:56:57.0419 5112 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 19:56:57.0419 5112 arc - ok 19:56:57.0450 5112 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 19:56:57.0450 5112 arcsas - ok 19:56:58.0199 5112 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 19:56:58.0246 5112 aspnet_state - ok 19:56:58.0308 5112 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 19:56:58.0324 5112 AsyncMac - ok 19:56:58.0324 5112 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 19:56:58.0324 5112 atapi - ok 19:56:58.0355 5112 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 19:56:58.0371 5112 AudioEndpointBuilder - ok 19:56:58.0371 5112 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 19:56:58.0371 5112 AudioSrv - ok 19:56:58.0901 5112 [ 38AE54966E8C0004F20965BBC00F74FB ] AVP C:\Program Files (x86)\Kaspersky Security Suite CBE 12\avp.exe 19:56:58.0901 5112 AVP - ok 19:56:58.0932 5112 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 19:56:58.0932 5112 AxInstSV - ok 19:56:58.0964 5112 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 19:56:58.0964 5112 b06bdrv - ok 19:56:59.0010 5112 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 19:56:59.0010 5112 b57nd60a - ok 19:56:59.0042 5112 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 19:56:59.0042 5112 BDESVC - ok 19:56:59.0042 5112 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 19:56:59.0042 5112 Beep - ok 19:56:59.0104 5112 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 19:56:59.0104 5112 BFE - ok 19:56:59.0135 5112 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 19:56:59.0135 5112 BITS - ok 19:56:59.0151 5112 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 19:56:59.0166 5112 blbdrive - ok 19:56:59.0213 5112 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 19:56:59.0229 5112 bowser - ok 19:56:59.0229 5112 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 19:56:59.0229 5112 BrFiltLo - ok 19:56:59.0229 5112 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 19:56:59.0229 5112 BrFiltUp - ok 19:56:59.0322 5112 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 19:56:59.0322 5112 Browser - ok 19:56:59.0338 5112 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 19:56:59.0338 5112 Brserid - ok 19:56:59.0338 5112 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 19:56:59.0338 5112 BrSerWdm - ok 19:56:59.0338 5112 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 19:56:59.0338 5112 BrUsbMdm - ok 19:56:59.0338 5112 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 19:56:59.0338 5112 BrUsbSer - ok 19:56:59.0354 5112 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 19:56:59.0354 5112 BTHMODEM - ok 19:56:59.0369 5112 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 19:56:59.0369 5112 bthserv - ok 19:56:59.0385 5112 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 19:56:59.0385 5112 cdfs - ok 19:56:59.0400 5112 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 19:56:59.0400 5112 cdrom - ok 19:56:59.0463 5112 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 19:56:59.0478 5112 CertPropSvc - ok 19:56:59.0478 5112 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 19:56:59.0478 5112 circlass - ok 19:56:59.0510 5112 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 19:56:59.0510 5112 CLFS - ok 19:56:59.0541 5112 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 19:56:59.0556 5112 clr_optimization_v2.0.50727_32 - ok 19:56:59.0728 5112 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 19:56:59.0744 5112 clr_optimization_v2.0.50727_64 - ok 19:56:59.0790 5112 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 19:56:59.0915 5112 clr_optimization_v4.0.30319_32 - ok 19:56:59.0946 5112 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 19:56:59.0978 5112 clr_optimization_v4.0.30319_64 - ok 19:57:00.0024 5112 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys 19:57:00.0024 5112 CmBatt - ok 19:57:00.0040 5112 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 19:57:00.0040 5112 cmdide - ok 19:57:00.0087 5112 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys 19:57:00.0102 5112 CNG - ok 19:57:00.0102 5112 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 19:57:00.0118 5112 Compbatt - ok 19:57:00.0134 5112 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 19:57:00.0134 5112 CompositeBus - ok 19:57:00.0134 5112 COMSysApp - ok 19:57:00.0149 5112 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 19:57:00.0149 5112 crcdisk - ok 19:57:00.0196 5112 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 19:57:00.0196 5112 CryptSvc - ok 19:57:00.0243 5112 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys 19:57:00.0258 5112 CSC - ok 19:57:00.0274 5112 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll 19:57:00.0290 5112 CscService - ok 19:57:00.0321 5112 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 19:57:00.0321 5112 DcomLaunch - ok 19:57:00.0368 5112 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 19:57:00.0368 5112 defragsvc - ok 19:57:00.0383 5112 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 19:57:00.0383 5112 DfsC - ok 19:57:00.0414 5112 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 19:57:00.0414 5112 Dhcp - ok 19:57:00.0414 5112 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 19:57:00.0414 5112 discache - ok 19:57:00.0430 5112 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 19:57:00.0430 5112 Disk - ok 19:57:00.0461 5112 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys 19:57:00.0461 5112 dmvsc - ok 19:57:00.0492 5112 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 19:57:00.0492 5112 Dnscache - ok 19:57:00.0508 5112 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 19:57:00.0508 5112 dot3svc - ok 19:57:00.0524 5112 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 19:57:00.0524 5112 DPS - ok 19:57:00.0555 5112 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 19:57:00.0555 5112 drmkaud - ok 19:57:00.0648 5112 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys 19:57:00.0648 5112 dtsoftbus01 - ok 19:57:00.0664 5112 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 19:57:00.0680 5112 DXGKrnl - ok 19:57:00.0695 5112 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 19:57:00.0695 5112 EapHost - ok 19:57:00.0742 5112 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 19:57:00.0820 5112 ebdrv - ok 19:57:00.0851 5112 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 19:57:00.0851 5112 EFS - ok 19:57:01.0023 5112 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 19:57:01.0023 5112 ehRecvr - ok 19:57:01.0038 5112 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 19:57:01.0054 5112 ehSched - ok 19:57:01.0085 5112 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 19:57:01.0085 5112 elxstor - ok 19:57:01.0101 5112 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 19:57:01.0101 5112 ErrDev - ok 19:57:01.0132 5112 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 19:57:01.0132 5112 EventSystem - ok 19:57:01.0148 5112 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 19:57:01.0163 5112 exfat - ok 19:57:01.0179 5112 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 19:57:01.0179 5112 fastfat - ok 19:57:01.0210 5112 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 19:57:01.0226 5112 Fax - ok 19:57:01.0226 5112 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 19:57:01.0226 5112 fdc - ok 19:57:01.0226 5112 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 19:57:01.0226 5112 fdPHost - ok 19:57:01.0241 5112 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 19:57:01.0241 5112 FDResPub - ok 19:57:01.0257 5112 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 19:57:01.0257 5112 FileInfo - ok 19:57:01.0272 5112 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 19:57:01.0272 5112 Filetrace - ok 19:57:01.0272 5112 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 19:57:01.0272 5112 flpydisk - ok 19:57:01.0288 5112 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 19:57:01.0288 5112 FltMgr - ok 19:57:01.0335 5112 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 19:57:01.0350 5112 FontCache - ok 19:57:01.0413 5112 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 19:57:01.0413 5112 FontCache3.0.0.0 - ok 19:57:01.0553 5112 [ 341306735FFE1541E0A0232F85EFD172 ] FrameManager Service C:\Program Files\Samsung\FrameManager\sam_service.exe 19:57:01.0569 5112 FrameManager Service - ok 19:57:01.0584 5112 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 19:57:01.0584 5112 FsDepends - ok 19:57:01.0616 5112 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 19:57:01.0616 5112 Fs_Rec - ok 19:57:01.0631 5112 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 19:57:01.0631 5112 fvevol - ok 19:57:01.0631 5112 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 19:57:01.0631 5112 gagp30kx - ok 19:57:01.0647 5112 gdrv - ok 19:57:01.0662 5112 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 19:57:01.0678 5112 gpsvc - ok 19:57:01.0772 5112 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 19:57:01.0772 5112 gupdate - ok 19:57:01.0787 5112 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 19:57:01.0787 5112 gupdatem - ok 19:57:01.0865 5112 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys 19:57:01.0865 5112 hamachi - ok 19:57:02.0411 5112 [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe 19:57:02.0427 5112 Hamachi2Svc - ok 19:57:02.0458 5112 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 19:57:02.0458 5112 hcw85cir - ok 19:57:02.0489 5112 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 19:57:02.0489 5112 HdAudAddService - ok 19:57:02.0505 5112 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 19:57:02.0505 5112 HDAudBus - ok 19:57:02.0520 5112 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 19:57:02.0520 5112 HidBatt - ok 19:57:02.0536 5112 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 19:57:02.0536 5112 HidBth - ok 19:57:02.0552 5112 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 19:57:02.0552 5112 HidIr - ok 19:57:02.0567 5112 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 19:57:02.0567 5112 hidserv - ok 19:57:02.0567 5112 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 19:57:02.0567 5112 HidUsb - ok 19:57:02.0614 5112 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 19:57:02.0614 5112 hkmsvc - ok 19:57:02.0630 5112 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 19:57:02.0645 5112 HomeGroupListener - ok 19:57:02.0676 5112 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 19:57:02.0676 5112 HomeGroupProvider - ok 19:57:02.0692 5112 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 19:57:02.0692 5112 HpSAMD - ok 19:57:02.0723 5112 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 19:57:02.0739 5112 HTTP - ok 19:57:02.0770 5112 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 19:57:02.0770 5112 hwpolicy - ok 19:57:02.0786 5112 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 19:57:02.0786 5112 i8042prt - ok 19:57:02.0817 5112 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 19:57:02.0832 5112 iaStorV - ok 19:57:02.0895 5112 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe 19:57:02.0895 5112 IDriverT - ok 19:57:02.0957 5112 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 19:57:02.0957 5112 idsvc - ok 19:57:02.0973 5112 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 19:57:02.0973 5112 iirsp - ok 19:57:03.0004 5112 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 19:57:03.0004 5112 IKEEXT - ok 19:57:03.0269 5112 [ ACACD1B925D448558C1C9D0258749451 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 19:57:03.0285 5112 IntcAzAudAddService - ok 19:57:03.0316 5112 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 19:57:03.0316 5112 intelide - ok 19:57:03.0332 5112 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 19:57:03.0332 5112 intelppm - ok 19:57:03.0347 5112 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 19:57:03.0363 5112 IPBusEnum - ok 19:57:03.0378 5112 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 19:57:03.0378 5112 IpFilterDriver - ok 19:57:03.0425 5112 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 19:57:03.0425 5112 iphlpsvc - ok 19:57:03.0425 5112 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 19:57:03.0441 5112 IPMIDRV - ok 19:57:03.0441 5112 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 19:57:03.0441 5112 IPNAT - ok 19:57:03.0456 5112 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 19:57:03.0456 5112 IRENUM - ok 19:57:03.0472 5112 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 19:57:03.0472 5112 isapnp - ok 19:57:03.0488 5112 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 19:57:03.0488 5112 iScsiPrt - ok 19:57:03.0519 5112 [ 8E4577C6E0D3114170509159DE658907 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys 19:57:03.0519 5112 iusb3hcs - ok 19:57:03.0597 5112 [ FE76346E9B57DA575BD1B3BD0CCAD7FF ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys 19:57:03.0597 5112 iusb3hub - ok 19:57:03.0659 5112 [ 1008CD90DA2198FFD250298DEB9DF160 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys 19:57:03.0675 5112 iusb3xhc - ok 19:57:03.0675 5112 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 19:57:03.0690 5112 kbdclass - ok 19:57:03.0706 5112 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 19:57:03.0706 5112 kbdhid - ok 19:57:03.0722 5112 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 19:57:03.0722 5112 KeyIso - ok 19:57:03.0800 5112 [ E656FE10D6D27794AFA08136685A69E8 ] KL1 C:\Windows\system32\DRIVERS\kl1.sys 19:57:03.0815 5112 KL1 - ok 19:57:03.0831 5112 [ D865DD8B0448E3F963D68C04C532858F ] kl2 C:\Windows\system32\DRIVERS\kl2.sys 19:57:03.0831 5112 kl2 - ok 19:57:03.0924 5112 [ C7D4F357C482DD37E2B05F34093B7B0C ] KLIF C:\Windows\system32\DRIVERS\klif.sys 19:57:03.0940 5112 KLIF - ok 19:57:03.0956 5112 [ 89FB5A33D7171B6D84F5EB721D5055E1 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys 19:57:03.0956 5112 KLIM6 - ok 19:57:03.0956 5112 [ 9468D07E91BA136D82415F5DFC1FE168 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys 19:57:03.0956 5112 klmouflt - ok 19:57:03.0987 5112 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 19:57:04.0002 5112 KSecDD - ok 19:57:04.0034 5112 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 19:57:04.0034 5112 KSecPkg - ok 19:57:04.0034 5112 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 19:57:04.0034 5112 ksthunk - ok 19:57:04.0049 5112 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 19:57:04.0065 5112 KtmRm - ok 19:57:04.0081 5112 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 19:57:04.0096 5112 LanmanServer - ok 19:57:04.0127 5112 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 19:57:04.0127 5112 LanmanWorkstation - ok 19:57:04.0159 5112 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 19:57:04.0159 5112 lltdio - ok 19:57:04.0174 5112 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 19:57:04.0174 5112 lltdsvc - ok 19:57:04.0205 5112 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 19:57:04.0205 5112 lmhosts - ok 19:57:04.0377 5112 [ 05D708ED589BF5EE6402AEC873214061 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 19:57:04.0377 5112 LMS - ok 19:57:04.0424 5112 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 19:57:04.0424 5112 LSI_FC - ok 19:57:04.0439 5112 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 19:57:04.0439 5112 LSI_SAS - ok 19:57:04.0471 5112 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 19:57:04.0471 5112 LSI_SAS2 - ok 19:57:04.0502 5112 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 19:57:04.0502 5112 LSI_SCSI - ok 19:57:04.0502 5112 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 19:57:04.0517 5112 luafv - ok 19:57:04.0580 5112 [ 4A503882318BB2F59218D401614E6AF6 ] lvpepf64 C:\Windows\system32\DRIVERS\lv302a64.sys 19:57:04.0595 5112 lvpepf64 - ok 19:57:04.0611 5112 [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys 19:57:04.0611 5112 LVPr2M64 - ok 19:57:04.0627 5112 [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys 19:57:04.0627 5112 LVPr2Mon - ok 19:57:04.0673 5112 [ A35679E56E78091E1042A2D7ADBF2958 ] LVPrcS64 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe 19:57:04.0673 5112 LVPrcS64 - ok 19:57:04.0720 5112 [ 125AE13C293889001B8456CF3EB04A40 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys 19:57:04.0720 5112 LVRS64 - ok 19:57:04.0736 5112 [ 5C3FF68267A5D242EE79EE01B993D6CE ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys 19:57:04.0736 5112 LVUSBS64 - ok 19:57:04.0767 5112 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 19:57:04.0783 5112 Mcx2Svc - ok 19:57:04.0798 5112 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 19:57:04.0798 5112 megasas - ok 19:57:04.0814 5112 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 19:57:04.0814 5112 MegaSR - ok 19:57:04.0845 5112 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 19:57:04.0845 5112 MEIx64 - ok 19:57:04.0892 5112 [ 05DCE0370CCA1501B67D6EEC18F33B8F ] miniusb C:\Windows\system32\DRIVERS\sam_miniusb.sys 19:57:04.0892 5112 miniusb - ok 19:57:04.0907 5112 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 19:57:04.0907 5112 MMCSS - ok 19:57:04.0923 5112 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 19:57:04.0923 5112 Modem - ok 19:57:04.0954 5112 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 19:57:04.0954 5112 monitor - ok 19:57:04.0954 5112 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 19:57:04.0954 5112 mouclass - ok 19:57:04.0970 5112 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 19:57:04.0970 5112 mouhid - ok 19:57:05.0001 5112 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 19:57:05.0001 5112 mountmgr - ok 19:57:05.0095 5112 [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 19:57:05.0095 5112 MozillaMaintenance - ok 19:57:05.0110 5112 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 19:57:05.0126 5112 mpio - ok 19:57:05.0126 5112 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 19:57:05.0126 5112 mpsdrv - ok 19:57:05.0141 5112 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 19:57:05.0157 5112 MpsSvc - ok 19:57:05.0173 5112 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 19:57:05.0173 5112 MRxDAV - ok 19:57:05.0188 5112 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 19:57:05.0188 5112 mrxsmb - ok 19:57:05.0204 5112 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 19:57:05.0219 5112 mrxsmb10 - ok 19:57:05.0219 5112 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 19:57:05.0219 5112 mrxsmb20 - ok 19:57:05.0235 5112 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 19:57:05.0235 5112 msahci - ok 19:57:05.0251 5112 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 19:57:05.0251 5112 msdsm - ok 19:57:05.0266 5112 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 19:57:05.0266 5112 MSDTC - ok 19:57:05.0282 5112 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 19:57:05.0282 5112 Msfs - ok 19:57:05.0282 5112 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 19:57:05.0297 5112 mshidkmdf - ok 19:57:05.0297 5112 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 19:57:05.0297 5112 msisadrv - ok 19:57:05.0313 5112 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 19:57:05.0329 5112 MSiSCSI - ok 19:57:05.0329 5112 msiserver - ok 19:57:05.0344 5112 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 19:57:05.0344 5112 MSKSSRV - ok 19:57:05.0360 5112 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 19:57:05.0360 5112 MSPCLOCK - ok 19:57:05.0375 5112 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 19:57:05.0375 5112 MSPQM - ok 19:57:05.0391 5112 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 19:57:05.0391 5112 MsRPC - ok 19:57:05.0407 5112 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 19:57:05.0407 5112 mssmbios - ok 19:57:05.0422 5112 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 19:57:05.0422 5112 MSTEE - ok 19:57:05.0422 5112 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 19:57:05.0438 5112 MTConfig - ok 19:57:05.0438 5112 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 19:57:05.0438 5112 Mup - ok 19:57:05.0453 5112 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 19:57:05.0453 5112 napagent - ok 19:57:05.0485 5112 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 19:57:05.0485 5112 NativeWifiP - ok 19:57:05.0531 5112 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 19:57:05.0547 5112 NDIS - ok 19:57:05.0563 5112 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 19:57:05.0563 5112 NdisCap - ok 19:57:05.0578 5112 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 19:57:05.0594 5112 NdisTapi - ok 19:57:05.0594 5112 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 19:57:05.0594 5112 Ndisuio - ok 19:57:05.0609 5112 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 19:57:05.0625 5112 NdisWan - ok 19:57:05.0625 5112 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 19:57:05.0625 5112 NDProxy - ok 19:57:05.0672 5112 [ D4F51E88C71BF8F06EA1BE320B0BB75B ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll 19:57:05.0687 5112 Net Driver HPZ12 - ok 19:57:05.0687 5112 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 19:57:05.0687 5112 NetBIOS - ok 19:57:05.0703 5112 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 19:57:05.0703 5112 NetBT - ok 19:57:05.0719 5112 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 19:57:05.0719 5112 Netlogon - ok 19:57:05.0750 5112 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 19:57:05.0765 5112 Netman - ok 19:57:05.0828 5112 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:57:05.0843 5112 NetMsmqActivator - ok 19:57:05.0906 5112 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:57:05.0906 5112 NetPipeActivator - ok 19:57:05.0906 5112 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 19:57:05.0921 5112 netprofm - ok 19:57:05.0921 5112 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:57:05.0921 5112 NetTcpActivator - ok 19:57:05.0921 5112 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:57:05.0921 5112 NetTcpPortSharing - ok 19:57:05.0953 5112 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 19:57:05.0968 5112 nfrd960 - ok 19:57:06.0046 5112 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 19:57:06.0062 5112 NlaSvc - ok 19:57:06.0077 5112 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 19:57:06.0077 5112 Npfs - ok 19:57:06.0093 5112 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 19:57:06.0093 5112 nsi - ok 19:57:06.0109 5112 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 19:57:06.0109 5112 nsiproxy - ok 19:57:06.0171 5112 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 19:57:06.0187 5112 Ntfs - ok 19:57:06.0202 5112 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 19:57:06.0202 5112 Null - ok 19:57:06.0265 5112 [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 19:57:06.0265 5112 NVHDA - ok 19:57:06.0764 5112 [ 0A2F27B5BCC45B64E152DD6AE0815198 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 19:57:06.0795 5112 nvlddmkm - ok 19:57:06.0826 5112 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 19:57:06.0842 5112 nvraid - ok 19:57:06.0889 5112 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 19:57:06.0889 5112 nvstor - ok 19:57:06.0951 5112 [ 574087EA9105F23FB522A4FDDD5292D9 ] nvsvc C:\Windows\system32\nvvsvc.exe 19:57:06.0951 5112 nvsvc - ok 19:57:07.0029 5112 [ ABA5A88740635D37A2B6CEB27DBC738A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 19:57:07.0045 5112 nvUpdatusService - ok 19:57:07.0060 5112 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 19:57:07.0076 5112 nv_agp - ok 19:57:07.0076 5112 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 19:57:07.0091 5112 ohci1394 - ok 19:57:07.0138 5112 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 19:57:07.0138 5112 ose - ok 19:57:07.0294 5112 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 19:57:07.0357 5112 osppsvc - ok 19:57:07.0403 5112 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 19:57:07.0403 5112 p2pimsvc - ok 19:57:07.0435 5112 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 19:57:07.0450 5112 p2psvc - ok 19:57:07.0497 5112 papycpu - ok 19:57:07.0528 5112 papycpu2 - ok 19:57:07.0544 5112 papyjoy - ok 19:57:07.0575 5112 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys 19:57:07.0575 5112 Parport - ok 19:57:07.0622 5112 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 19:57:07.0622 5112 partmgr - ok 19:57:07.0622 5112 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 19:57:07.0622 5112 PcaSvc - ok 19:57:07.0637 5112 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 19:57:07.0637 5112 pci - ok 19:57:07.0637 5112 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 19:57:07.0637 5112 pciide - ok 19:57:07.0653 5112 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 19:57:07.0653 5112 pcmcia - ok 19:57:07.0653 5112 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 19:57:07.0653 5112 pcw - ok 19:57:07.0669 5112 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 19:57:07.0684 5112 PEAUTH - ok 19:57:07.0715 5112 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 19:57:07.0731 5112 PeerDistSvc - ok 19:57:07.0825 5112 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 19:57:07.0825 5112 PerfHost - ok 19:57:08.0059 5112 [ AE0B94363DA0F60D42B9D05B352F61ED ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS 19:57:08.0137 5112 PID_PEPI - ok 19:57:08.0168 5112 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 19:57:08.0199 5112 pla - ok 19:57:08.0277 5112 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 19:57:08.0293 5112 PlugPlay - ok 19:57:08.0308 5112 [ 9A80707D8B6C1806531BFD7399B3CC76 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll 19:57:08.0308 5112 Pml Driver HPZ12 - ok 19:57:08.0324 5112 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 19:57:08.0324 5112 PNRPAutoReg - ok 19:57:08.0339 5112 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 19:57:08.0339 5112 PNRPsvc - ok 19:57:08.0355 5112 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 19:57:08.0355 5112 PolicyAgent - ok 19:57:08.0386 5112 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 19:57:08.0386 5112 Power - ok 19:57:08.0417 5112 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 19:57:08.0417 5112 PptpMiniport - ok 19:57:08.0433 5112 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 19:57:08.0433 5112 Processor - ok 19:57:08.0464 5112 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 19:57:08.0464 5112 ProfSvc - ok 19:57:08.0480 5112 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 19:57:08.0480 5112 ProtectedStorage - ok 19:57:08.0495 5112 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 19:57:08.0495 5112 Psched - ok 19:57:08.0542 5112 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 19:57:08.0542 5112 PxHlpa64 - ok 19:57:08.0573 5112 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 19:57:08.0589 5112 ql2300 - ok 19:57:08.0605 5112 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 19:57:08.0605 5112 ql40xx - ok 19:57:08.0636 5112 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 19:57:08.0636 5112 QWAVE - ok 19:57:08.0651 5112 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 19:57:08.0651 5112 QWAVEdrv - ok 19:57:08.0667 5112 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 19:57:08.0667 5112 RasAcd - ok 19:57:08.0683 5112 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 19:57:08.0683 5112 RasAgileVpn - ok 19:57:08.0698 5112 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 19:57:08.0698 5112 RasAuto - ok 19:57:08.0714 5112 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 19:57:08.0714 5112 Rasl2tp - ok 19:57:08.0729 5112 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 19:57:08.0729 5112 RasMan - ok 19:57:08.0745 5112 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 19:57:08.0745 5112 RasPppoe - ok 19:57:08.0745 5112 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 19:57:08.0745 5112 RasSstp - ok 19:57:08.0761 5112 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 19:57:08.0761 5112 rdbss - ok 19:57:08.0761 5112 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 19:57:08.0776 5112 rdpbus - ok 19:57:08.0792 5112 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 19:57:08.0792 5112 RDPCDD - ok 19:57:08.0807 5112 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 19:57:08.0807 5112 RDPDR - ok 19:57:08.0823 5112 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 19:57:08.0823 5112 RDPENCDD - ok 19:57:08.0839 5112 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 19:57:08.0839 5112 RDPREFMP - ok 19:57:08.0870 5112 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 19:57:08.0901 5112 RdpVideoMiniport - ok 19:57:08.0932 5112 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 19:57:08.0932 5112 RDPWD - ok 19:57:08.0948 5112 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 19:57:08.0963 5112 rdyboost - ok 19:57:08.0979 5112 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 19:57:08.0979 5112 RemoteAccess - ok 19:57:08.0979 5112 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 19:57:08.0995 5112 RemoteRegistry - ok 19:57:08.0995 5112 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 19:57:08.0995 5112 RpcEptMapper - ok 19:57:09.0010 5112 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 19:57:09.0026 5112 RpcLocator - ok 19:57:09.0026 5112 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 19:57:09.0026 5112 RpcSs - ok 19:57:09.0057 5112 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 19:57:09.0057 5112 rspndr - ok 19:57:09.0104 5112 [ 61A04C0C084D560BBEF1D09604608262 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 19:57:09.0119 5112 RTL8167 - ok 19:57:09.0151 5112 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys 19:57:09.0166 5112 s3cap - ok 19:57:09.0166 5112 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 19:57:09.0166 5112 SamSs - ok 19:57:09.0260 5112 [ 2C31378A5695526E99ADAB928157B992 ] Samsung UPD Service2 C:\Windows\System32\SUPDSvc2.exe 19:57:09.0275 5112 Samsung UPD Service2 - ok 19:57:09.0291 5112 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 19:57:09.0291 5112 sbp2port - ok 19:57:09.0291 5112 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 19:57:09.0307 5112 SCardSvr - ok 19:57:09.0307 5112 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 19:57:09.0307 5112 scfilter - ok 19:57:09.0338 5112 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 19:57:09.0353 5112 Schedule - ok 19:57:09.0369 5112 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 19:57:09.0369 5112 SCPolicySvc - ok 19:57:09.0385 5112 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 19:57:09.0385 5112 SDRSVC - ok 19:57:09.0400 5112 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 19:57:09.0400 5112 secdrv - ok 19:57:09.0416 5112 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 19:57:09.0416 5112 seclogon - ok 19:57:09.0431 5112 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 19:57:09.0431 5112 SENS - ok 19:57:09.0447 5112 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 19:57:09.0447 5112 SensrSvc - ok 19:57:09.0478 5112 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 19:57:09.0478 5112 Serenum - ok 19:57:09.0494 5112 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys 19:57:09.0494 5112 Serial - ok 19:57:09.0494 5112 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 19:57:09.0509 5112 sermouse - ok 19:57:09.0509 5112 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 19:57:09.0509 5112 SessionEnv - ok 19:57:09.0509 5112 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 19:57:09.0509 5112 sffdisk - ok 19:57:09.0525 5112 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 19:57:09.0525 5112 sffp_mmc - ok 19:57:09.0525 5112 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 19:57:09.0525 5112 sffp_sd - ok 19:57:09.0525 5112 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 19:57:09.0525 5112 sfloppy - ok 19:57:09.0556 5112 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 19:57:09.0556 5112 SharedAccess - ok 19:57:09.0572 5112 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 19:57:09.0572 5112 ShellHWDetection - ok 19:57:09.0587 5112 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 19:57:09.0587 5112 SiSRaid2 - ok 19:57:09.0603 5112 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 19:57:09.0603 5112 SiSRaid4 - ok 19:57:09.0665 5112 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 19:57:09.0681 5112 SkypeUpdate - ok 19:57:09.0681 5112 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 19:57:09.0681 5112 Smb - ok 19:57:09.0712 5112 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 19:57:09.0712 5112 SNMPTRAP - ok 19:57:09.0743 5112 [ 867DB0D7380DD1DA484B74A75E3E9023 ] SODI C:\Windows\system32\DRIVERS\sam_miniport.sys 19:57:09.0743 5112 SODI - ok 19:57:09.0759 5112 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 19:57:09.0759 5112 spldr - ok 19:57:09.0837 5112 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 19:57:09.0837 5112 Spooler - ok 19:57:10.0102 5112 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 19:57:10.0149 5112 sppsvc - ok 19:57:10.0165 5112 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 19:57:10.0165 5112 sppuinotify - ok 19:57:10.0258 5112 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 19:57:10.0352 5112 srv - ok 19:57:10.0367 5112 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 19:57:10.0414 5112 srv2 - ok 19:57:10.0430 5112 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 19:57:10.0430 5112 srvnet - ok 19:57:10.0445 5112 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 19:57:10.0445 5112 SSDPSRV - ok 19:57:10.0445 5112 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 19:57:10.0461 5112 SstpSvc - ok 19:57:10.0601 5112 Steam Client Service - ok 19:57:10.0726 5112 [ 78216A10BF8B200890A88D8820F33F14 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 19:57:10.0742 5112 Stereo Service - ok 19:57:10.0757 5112 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 19:57:10.0757 5112 stexstor - ok 19:57:10.0789 5112 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 19:57:10.0804 5112 stisvc - ok 19:57:10.0835 5112 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 19:57:10.0835 5112 storflt - ok 19:57:10.0867 5112 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys 19:57:10.0867 5112 storvsc - ok 19:57:10.0882 5112 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 19:57:10.0882 5112 swenum - ok 19:57:10.0898 5112 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 19:57:10.0913 5112 swprv - ok 19:57:10.0929 5112 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys 19:57:10.0929 5112 Synth3dVsc - ok 19:57:10.0960 5112 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 19:57:10.0976 5112 SysMain - ok 19:57:11.0023 5112 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 19:57:11.0023 5112 TabletInputService - ok 19:57:11.0054 5112 [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys 19:57:11.0054 5112 tap0901t - ok 19:57:11.0085 5112 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 19:57:11.0085 5112 TapiSrv - ok 19:57:11.0101 5112 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 19:57:11.0101 5112 TBS - ok 19:57:11.0413 5112 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 19:57:11.0444 5112 Tcpip - ok 19:57:11.0756 5112 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 19:57:11.0756 5112 TCPIP6 - ok 19:57:11.0818 5112 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 19:57:11.0818 5112 tcpipreg - ok 19:57:11.0896 5112 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 19:57:11.0912 5112 TDPIPE - ok 19:57:11.0943 5112 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 19:57:11.0959 5112 TDTCP - ok 19:57:12.0005 5112 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 19:57:12.0005 5112 tdx - ok 19:57:12.0333 5112 [ 9F3E7CABE86BBDECA009DE291DB6D9E2 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe 19:57:12.0380 5112 TeamViewer8 - ok 19:57:12.0395 5112 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 19:57:12.0395 5112 TermDD - ok 19:57:12.0427 5112 [ EF4469AB69EB15E5D3754E6AEAFBCD3D ] terminpt C:\Windows\system32\drivers\terminpt.sys 19:57:12.0442 5112 terminpt - ok 19:57:12.0505 5112 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 19:57:12.0520 5112 TermService - ok 19:57:12.0520 5112 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 19:57:12.0536 5112 Themes - ok 19:57:12.0536 5112 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 19:57:12.0536 5112 THREADORDER - ok 19:57:12.0567 5112 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 19:57:12.0567 5112 TrkWks - ok 19:57:12.0692 5112 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 19:57:12.0692 5112 TrustedInstaller - ok 19:57:12.0707 5112 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 19:57:12.0723 5112 tssecsrv - ok 19:57:12.0770 5112 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 19:57:12.0785 5112 TsUsbFlt - ok 19:57:12.0801 5112 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 19:57:12.0801 5112 TsUsbGD - ok 19:57:12.0832 5112 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys 19:57:12.0832 5112 tsusbhub - ok 19:57:13.0300 5112 [ 50D8102EECC446F160C8C31AF927242D ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe 19:57:13.0316 5112 TuneUp.UtilitiesSvc - ok 19:57:13.0394 5112 [ 7BC3381C0713F613B31ACDE38B71CB53 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys 19:57:13.0394 5112 TuneUpUtilitiesDrv - ok 19:57:13.0441 5112 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 19:57:13.0441 5112 tunnel - ok 19:57:13.0534 5112 [ 2FD0FE0A0C721C8E47C5A3AE16E519B1 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe 19:57:13.0534 5112 TunngleService - ok 19:57:13.0565 5112 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 19:57:13.0565 5112 uagp35 - ok 19:57:13.0581 5112 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 19:57:13.0581 5112 udfs - ok 19:57:13.0612 5112 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 19:57:13.0612 5112 UI0Detect - ok 19:57:13.0612 5112 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 19:57:13.0612 5112 uliagpkx - ok 19:57:13.0628 5112 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 19:57:13.0628 5112 umbus - ok 19:57:13.0643 5112 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 19:57:13.0643 5112 UmPass - ok 19:57:13.0690 5112 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll 19:57:13.0706 5112 UmRdpService - ok 19:57:13.0706 5112 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 19:57:13.0706 5112 upnphost - ok 19:57:13.0768 5112 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 19:57:13.0768 5112 usbaudio - ok 19:57:13.0815 5112 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 19:57:13.0815 5112 usbccgp - ok 19:57:13.0831 5112 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 19:57:13.0831 5112 usbcir - ok 19:57:13.0846 5112 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys 19:57:13.0846 5112 usbehci - ok 19:57:13.0877 5112 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 19:57:13.0877 5112 usbhub - ok 19:57:13.0909 5112 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 19:57:13.0909 5112 usbohci - ok 19:57:13.0924 5112 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys 19:57:13.0924 5112 usbprint - ok 19:57:13.0940 5112 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 19:57:13.0940 5112 USBSTOR - ok 19:57:13.0955 5112 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 19:57:13.0971 5112 usbuhci - ok 19:57:14.0018 5112 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys 19:57:14.0049 5112 usb_rndisx - ok 19:57:14.0065 5112 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 19:57:14.0065 5112 UxSms - ok 19:57:14.0143 5112 [ 3DEC48B5C70562DEE960117553134E3E ] UxTuneUp C:\Windows\System32\uxtuneup.dll 19:57:14.0158 5112 UxTuneUp - ok 19:57:14.0174 5112 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 19:57:14.0189 5112 VaultSvc - ok 19:57:14.0205 5112 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 19:57:14.0205 5112 vdrvroot - ok 19:57:14.0205 5112 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 19:57:14.0221 5112 vds - ok 19:57:14.0252 5112 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 19:57:14.0252 5112 vga - ok 19:57:14.0252 5112 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 19:57:14.0267 5112 VgaSave - ok 19:57:14.0267 5112 VGPU - ok 19:57:14.0267 5112 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 19:57:14.0267 5112 vhdmp - ok 19:57:14.0283 5112 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 19:57:14.0283 5112 viaide - ok 19:57:14.0314 5112 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys 19:57:14.0314 5112 vmbus - ok 19:57:14.0330 5112 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 19:57:14.0330 5112 VMBusHID - ok 19:57:14.0330 5112 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 19:57:14.0330 5112 volmgr - ok 19:57:14.0345 5112 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 19:57:14.0345 5112 volmgrx - ok 19:57:14.0361 5112 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 19:57:14.0377 5112 volsnap - ok 19:57:14.0408 5112 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys 19:57:14.0408 5112 vpcbus - ok 19:57:14.0423 5112 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys 19:57:14.0455 5112 vpcnfltr - ok 19:57:14.0455 5112 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys 19:57:14.0455 5112 vpcusb - ok 19:57:14.0501 5112 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys 19:57:14.0501 5112 vpcvmm - ok 19:57:14.0517 5112 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 19:57:14.0533 5112 vsmraid - ok 19:57:14.0548 5112 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 19:57:14.0564 5112 VSS - ok 19:57:14.0626 5112 [ E6CB71665C410D6CC3D44E796835CE32 ] vvftav C:\Windows\system32\drivers\vvftav.sys 19:57:14.0626 5112 vvftav - ok 19:57:14.0642 5112 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys 19:57:14.0657 5112 vwifibus - ok 19:57:14.0673 5112 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 19:57:14.0673 5112 W32Time - ok 19:57:14.0673 5112 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 19:57:14.0673 5112 WacomPen - ok 19:57:14.0689 5112 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 19:57:14.0689 5112 WANARP - ok 19:57:14.0704 5112 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 19:57:14.0704 5112 Wanarpv6 - ok 19:57:14.0751 5112 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 19:57:14.0767 5112 WatAdminSvc - ok 19:57:14.0798 5112 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 19:57:14.0829 5112 wbengine - ok 19:57:14.0829 5112 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 19:57:14.0829 5112 WbioSrvc - ok 19:57:14.0860 5112 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 19:57:14.0860 5112 wcncsvc - ok 19:57:14.0876 5112 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 19:57:14.0876 5112 WcsPlugInService - ok 19:57:14.0891 5112 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 19:57:14.0891 5112 Wd - ok 19:57:15.0063 5112 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 19:57:15.0094 5112 Wdf01000 - ok 19:57:15.0110 5112 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 19:57:15.0110 5112 WdiServiceHost - ok 19:57:15.0110 5112 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 19:57:15.0110 5112 WdiSystemHost - ok 19:57:15.0125 5112 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 19:57:15.0125 5112 WebClient - ok 19:57:15.0125 5112 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 19:57:15.0141 5112 Wecsvc - ok 19:57:15.0141 5112 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 19:57:15.0157 5112 wercplsupport - ok 19:57:15.0172 5112 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 19:57:15.0172 5112 WerSvc - ok 19:57:15.0203 5112 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 19:57:15.0203 5112 WfpLwf - ok 19:57:15.0219 5112 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 19:57:15.0219 5112 WIMMount - ok 19:57:15.0235 5112 WinDefend - ok 19:57:15.0235 5112 WinHttpAutoProxySvc - ok 19:57:15.0281 5112 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 19:57:15.0281 5112 Winmgmt - ok 19:57:15.0406 5112 WinRing0_1_2_0 - ok 19:57:15.0612 5112 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 19:57:15.0652 5112 WinRM - ok 19:57:15.0702 5112 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 19:57:15.0722 5112 WinUsb - ok 19:57:15.0742 5112 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 19:57:15.0752 5112 Wlansvc - ok 19:57:15.0792 5112 [ 680A7846370000D20D7E74917D5B7936 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys 19:57:15.0802 5112 WmBEnum - ok 19:57:15.0832 5112 [ 14C35BA8189C6F65D839163AA285E954 ] WmFilter C:\Windows\system32\drivers\WmFilter.sys 19:57:15.0832 5112 WmFilter - ok 19:57:15.0862 5112 [ AC4331AF118A720F13C9C5CABBFE27BD ] WmHidLo C:\Windows\system32\drivers\WmHidLo.sys 19:57:15.0862 5112 WmHidLo - ok 19:57:15.0882 5112 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 19:57:15.0882 5112 WmiAcpi - ok 19:57:15.0902 5112 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 19:57:15.0912 5112 wmiApSrv - ok 19:57:15.0932 5112 WMPNetworkSvc - ok 19:57:15.0932 5112 [ 8488DD91A3EE54A8E29F02AD7BB8201E ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys 19:57:15.0942 5112 WmVirHid - ok 19:57:15.0942 5112 [ 14802B3A30AA849C97CB968CCC813BF3 ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys 19:57:15.0952 5112 WmXlCore - ok 19:57:15.0962 5112 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 19:57:15.0962 5112 WPCSvc - ok 19:57:15.0972 5112 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 19:57:15.0972 5112 WPDBusEnum - ok 19:57:15.0992 5112 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 19:57:15.0992 5112 ws2ifsl - ok 19:57:16.0062 5112 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 19:57:16.0062 5112 wscsvc - ok 19:57:16.0062 5112 WSearch - ok 19:57:16.0132 5112 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 19:57:16.0162 5112 wuauserv - ok 19:57:16.0192 5112 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 19:57:16.0192 5112 WudfPf - ok 19:57:16.0222 5112 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 19:57:16.0222 5112 WUDFRd - ok 19:57:16.0242 5112 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 19:57:16.0262 5112 wudfsvc - ok 19:57:16.0272 5112 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 19:57:16.0282 5112 WwanSvc - ok 19:57:16.0332 5112 [ 4A5CE13408945E525503B5F73D29B9C5 ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys 19:57:16.0342 5112 xnacc - ok 19:57:16.0382 5112 XSpaceWg - ok 19:57:16.0412 5112 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys 19:57:16.0422 5112 xusb21 - ok 19:57:16.0472 5112 [ C48A0F1DF0DBA60010748DEC8CC886B4 ] ZSMC0305 C:\Windows\system32\Drivers\usbVM305.sys 19:57:16.0502 5112 ZSMC0305 - ok 19:57:16.0502 5112 ================ Scan global =============================== 19:57:16.0522 5112 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 19:57:16.0552 5112 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 19:57:16.0562 5112 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 19:57:16.0582 5112 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 19:57:16.0602 5112 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 19:57:16.0602 5112 [Global] - ok 19:57:16.0602 5112 ================ Scan MBR ================================== 19:57:16.0612 5112 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 19:57:16.0612 5112 \Device\Harddisk0\DR0 - ok 19:57:16.0612 5112 ================ Scan VBR ================================== 19:57:16.0622 5112 [ 311110DA24392C968935A78177825000 ] \Device\Harddisk0\DR0\Partition1 19:57:16.0622 5112 \Device\Harddisk0\DR0\Partition1 - ok 19:57:16.0632 5112 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition2 19:57:16.0632 5112 \Device\Harddisk0\DR0\Partition2 - ok 19:57:16.0642 5112 [ F10242DB253F8FBE824011290232BBA5 ] \Device\Harddisk0\DR0\Partition3 19:57:16.0642 5112 \Device\Harddisk0\DR0\Partition3 - ok 19:57:16.0642 5112 ============================================================ 19:57:16.0642 5112 Scan finished 19:57:16.0642 5112 ============================================================ 19:57:16.0652 3716 Detected object count: 0 19:57:16.0652 3716 Actual detected object count: 0 19:57:29.0089 3724 Deinitialize success |
|
23.02.2013, 21:22
| #10 |
| | Windows 7 Anwenderprogramme öffnen nur sehr langsam Kann es auch an falschen Treibern liegen? Gibt es da irgendeine Überprüfungs-Software? |
|
25.02.2013, 16:45
| #11 |
| /// Malware-holic | Windows 7 Anwenderprogramme öffnen nur sehr langsam hi tdss killer war nicht richtig konfiguriert, bilder ansehen und noch mal bitte
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
26.02.2013, 18:28
| #12 |
| | Windows 7 Anwenderprogramme öffnen nur sehr langsam : Code:
ATTFilter 18:26:17.0029 2168 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:26:17.0029 2168 UEFI system
18:26:17.0337 2168 ============================================================
18:26:17.0337 2168 Current date / time: 2013/02/26 18:26:17.0337
18:26:17.0337 2168 SystemInfo:
18:26:17.0337 2168
18:26:17.0337 2168 OS Version: 6.1.7601 ServicePack: 1.0
18:26:17.0337 2168 Product type: Workstation
18:26:17.0337 2168 ComputerName: SIMONHIGHENDPC
18:26:17.0337 2168 UserName: User
18:26:17.0337 2168 Windows directory: C:\Windows
18:26:17.0337 2168 System windows directory: C:\Windows
18:26:17.0337 2168 Running under WOW64
18:26:17.0337 2168 Processor architecture: Intel x64
18:26:17.0337 2168 Number of processors: 8
18:26:17.0337 2168 Page size: 0x1000
18:26:17.0337 2168 Boot type: Normal boot
18:26:17.0337 2168 ============================================================
18:26:18.0249 2168 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:26:18.0272 2168 ============================================================
18:26:18.0272 2168 \Device\Harddisk0\DR0:
18:26:18.0279 2168 GPT partitions:
18:26:18.0280 2168 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {74D11EE9-D9FE-4274-8884-CA16F47B940D}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
18:26:18.0280 2168 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {6AE313AC-A08A-4C78-9F26-286D8297AFE1}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x40000
18:26:18.0280 2168 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {7329315E-CEE6-49FF-87E5-D522D0AB9FBD}, Name: Basic data partition, StartLBA 0x72800, BlocksNum 0xE8D96000
18:26:18.0280 2168 MBR partitions:
18:26:18.0280 2168 ============================================================
18:26:18.0366 2168 C: <-> \Device\Harddisk0\DR0\Partition3
18:26:18.0366 2168 ============================================================
18:26:18.0366 2168 Initialize success
18:26:18.0366 2168 ============================================================
18:26:41.0873 1184 ============================================================
18:26:41.0873 1184 Scan started
18:26:41.0873 1184 Mode: Manual; SigCheck; TDLFS;
18:26:41.0873 1184 ============================================================
18:26:42.0171 1184 ================ Scan system memory ========================
18:26:42.0171 1184 System memory - ok
18:26:42.0171 1184 ================ Scan services =============================
18:26:44.0082 1184 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:26:44.0203 1184 1394ohci - ok
18:26:44.0283 1184 [ A3769020F7E8A70FD3E824C050F33306 ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys
18:26:44.0294 1184 acedrv11 - ok
18:26:44.0314 1184 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:26:44.0324 1184 ACPI - ok
18:26:44.0336 1184 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:26:44.0374 1184 AcpiPmi - ok
18:26:44.0504 1184 [ 2D766591E87FFFF237C0C9C16CDDECAB ] ACT2PM C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys
18:26:44.0511 1184 ACT2PM - ok
18:26:44.0541 1184 [ C47D15FC2CA269DD2EC5946953C5BF03 ] ACT2_Service C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe
18:26:44.0560 1184 ACT2_Service - ok
18:26:44.0650 1184 [ C004F38974F4D321B4C20A240E1175C0 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
18:26:44.0657 1184 AdobeActiveFileMonitor9.0 - ok
18:26:44.0802 1184 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:26:44.0810 1184 AdobeFlashPlayerUpdateSvc - ok
18:26:44.0874 1184 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:26:44.0885 1184 adp94xx - ok
18:26:44.0942 1184 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:26:44.0951 1184 adpahci - ok
18:26:44.0974 1184 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:26:44.0982 1184 adpu320 - ok
18:26:45.0022 1184 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:26:45.0071 1184 AeLookupSvc - ok
18:26:45.0130 1184 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:26:45.0197 1184 AFD - ok
18:26:45.0238 1184 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:26:45.0246 1184 agp440 - ok
18:26:45.0316 1184 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:26:45.0392 1184 ALG - ok
18:26:45.0430 1184 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:26:45.0437 1184 aliide - ok
18:26:45.0453 1184 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:26:45.0460 1184 amdide - ok
18:26:45.0505 1184 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:26:45.0542 1184 AmdK8 - ok
18:26:45.0574 1184 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
18:26:45.0611 1184 AmdPPM - ok
18:26:45.0643 1184 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:26:45.0650 1184 amdsata - ok
18:26:45.0688 1184 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
18:26:45.0698 1184 amdsbs - ok
18:26:45.0747 1184 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:26:45.0754 1184 amdxata - ok
18:26:45.0822 1184 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:26:45.0885 1184 AppID - ok
18:26:45.0908 1184 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:26:45.0932 1184 AppIDSvc - ok
18:26:45.0948 1184 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:26:46.0003 1184 Appinfo - ok
18:26:46.0048 1184 [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
18:26:46.0054 1184 AppleCharger - ok
18:26:46.0099 1184 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
18:26:46.0105 1184 AppleChargerSrv - ok
18:26:46.0173 1184 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
18:26:46.0233 1184 AppMgmt - ok
18:26:46.0273 1184 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
18:26:46.0280 1184 arc - ok
18:26:46.0303 1184 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:26:46.0310 1184 arcsas - ok
18:26:46.0811 1184 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:26:46.0818 1184 aspnet_state - ok
18:26:46.0884 1184 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:26:46.0939 1184 AsyncMac - ok
18:26:46.0958 1184 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:26:46.0965 1184 atapi - ok
18:26:47.0060 1184 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:26:47.0111 1184 AudioEndpointBuilder - ok
18:26:47.0130 1184 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:26:47.0156 1184 AudioSrv - ok
18:26:47.0214 1184 [ 38AE54966E8C0004F20965BBC00F74FB ] AVP C:\Program Files (x86)\Kaspersky Security Suite CBE 12\avp.exe
18:26:47.0223 1184 AVP - ok
18:26:47.0262 1184 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:26:47.0354 1184 AxInstSV - ok
18:26:47.0423 1184 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
18:26:47.0478 1184 b06bdrv - ok
18:26:47.0510 1184 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:26:47.0546 1184 b57nd60a - ok
18:26:47.0584 1184 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:26:47.0624 1184 BDESVC - ok
18:26:47.0645 1184 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:26:47.0687 1184 Beep - ok
18:26:47.0755 1184 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:26:47.0799 1184 BFE - ok
18:26:47.0850 1184 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:26:47.0905 1184 BITS - ok
18:26:47.0938 1184 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:26:47.0973 1184 blbdrive - ok
18:26:48.0077 1184 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:26:48.0156 1184 bowser - ok
18:26:48.0196 1184 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
18:26:48.0232 1184 BrFiltLo - ok
18:26:48.0241 1184 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
18:26:48.0251 1184 BrFiltUp - ok
18:26:48.0292 1184 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:26:48.0305 1184 Browser - ok
18:26:48.0332 1184 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:26:48.0397 1184 Brserid - ok
18:26:48.0415 1184 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:26:48.0448 1184 BrSerWdm - ok
18:26:48.0462 1184 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:26:48.0498 1184 BrUsbMdm - ok
18:26:48.0521 1184 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:26:48.0555 1184 BrUsbSer - ok
18:26:48.0579 1184 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:26:48.0609 1184 BTHMODEM - ok
18:26:48.0654 1184 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:26:48.0695 1184 bthserv - ok
18:26:48.0723 1184 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:26:48.0773 1184 cdfs - ok
18:26:48.0847 1184 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:26:48.0875 1184 cdrom - ok
18:26:48.0977 1184 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:26:49.0073 1184 CertPropSvc - ok
18:26:49.0093 1184 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
18:26:49.0116 1184 circlass - ok
18:26:49.0135 1184 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:26:49.0145 1184 CLFS - ok
18:26:49.0187 1184 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:26:49.0194 1184 clr_optimization_v2.0.50727_32 - ok
18:26:49.0460 1184 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:26:49.0467 1184 clr_optimization_v2.0.50727_64 - ok
18:26:49.0564 1184 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:26:49.0571 1184 clr_optimization_v4.0.30319_32 - ok
18:26:49.0608 1184 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:26:49.0615 1184 clr_optimization_v4.0.30319_64 - ok
18:26:49.0662 1184 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
18:26:49.0692 1184 CmBatt - ok
18:26:49.0732 1184 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:26:49.0739 1184 cmdide - ok
18:26:49.0885 1184 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
18:26:49.0901 1184 CNG - ok
18:26:49.0930 1184 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
18:26:49.0937 1184 Compbatt - ok
18:26:49.0990 1184 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
18:26:50.0041 1184 CompositeBus - ok
18:26:50.0065 1184 COMSysApp - ok
18:26:50.0112 1184 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:26:50.0120 1184 crcdisk - ok
18:26:50.0201 1184 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:26:50.0246 1184 CryptSvc - ok
18:26:50.0323 1184 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
18:26:50.0371 1184 CSC - ok
18:26:50.0415 1184 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
18:26:50.0454 1184 CscService - ok
18:26:50.0520 1184 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:26:50.0567 1184 DcomLaunch - ok
18:26:50.0612 1184 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:26:50.0638 1184 defragsvc - ok
18:26:50.0662 1184 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:26:50.0705 1184 DfsC - ok
18:26:50.0733 1184 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:26:50.0760 1184 Dhcp - ok
18:26:50.0775 1184 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:26:50.0822 1184 discache - ok
18:26:50.0838 1184 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
18:26:50.0845 1184 Disk - ok
18:26:50.0882 1184 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
18:26:50.0982 1184 dmvsc - ok
18:26:51.0015 1184 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:26:51.0054 1184 Dnscache - ok
18:26:51.0080 1184 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:26:51.0133 1184 dot3svc - ok
18:26:51.0147 1184 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:26:51.0188 1184 DPS - ok
18:26:51.0219 1184 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:26:51.0253 1184 drmkaud - ok
18:26:51.0374 1184 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:26:51.0383 1184 dtsoftbus01 - ok
18:26:51.0451 1184 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:26:51.0466 1184 DXGKrnl - ok
18:26:51.0470 1184 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:26:51.0517 1184 EapHost - ok
18:26:51.0730 1184 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
18:26:51.0782 1184 ebdrv - ok
18:26:51.0852 1184 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:26:51.0895 1184 EFS - ok
18:26:52.0062 1184 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:26:52.0104 1184 ehRecvr - ok
18:26:52.0135 1184 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:26:52.0161 1184 ehSched - ok
18:26:52.0306 1184 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:26:52.0317 1184 elxstor - ok
18:26:52.0332 1184 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:26:52.0341 1184 ErrDev - ok
18:26:52.0401 1184 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:26:52.0461 1184 EventSystem - ok
18:26:52.0489 1184 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:26:52.0513 1184 exfat - ok
18:26:52.0527 1184 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:26:52.0588 1184 fastfat - ok
18:26:52.0654 1184 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:26:52.0671 1184 Fax - ok
18:26:52.0683 1184 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
18:26:52.0717 1184 fdc - ok
18:26:52.0768 1184 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:26:52.0798 1184 fdPHost - ok
18:26:52.0816 1184 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:26:52.0863 1184 FDResPub - ok
18:26:52.0878 1184 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:26:52.0885 1184 FileInfo - ok
18:26:52.0903 1184 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:26:52.0944 1184 Filetrace - ok
18:26:52.0951 1184 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
18:26:52.0960 1184 flpydisk - ok
18:26:52.0965 1184 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:26:52.0975 1184 FltMgr - ok
18:26:53.0019 1184 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:26:53.0055 1184 FontCache - ok
18:26:53.0143 1184 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:26:53.0149 1184 FontCache3.0.0.0 - ok
18:26:53.0290 1184 [ 341306735FFE1541E0A0232F85EFD172 ] FrameManager Service C:\Program Files\Samsung\FrameManager\sam_service.exe
18:26:53.0322 1184 FrameManager Service ( UnsignedFile.Multi.Generic ) - warning
18:26:53.0322 1184 FrameManager Service - detected UnsignedFile.Multi.Generic (1)
18:26:53.0358 1184 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:26:53.0365 1184 FsDepends - ok
18:26:53.0400 1184 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:26:53.0407 1184 Fs_Rec - ok
18:26:53.0435 1184 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:26:53.0446 1184 fvevol - ok
18:26:53.0456 1184 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:26:53.0463 1184 gagp30kx - ok
18:26:53.0484 1184 gdrv - ok
18:26:53.0500 1184 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:26:53.0527 1184 gpsvc - ok
18:26:53.0597 1184 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:26:53.0604 1184 gupdate - ok
18:26:53.0626 1184 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:26:53.0633 1184 gupdatem - ok
18:26:53.0746 1184 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:26:53.0752 1184 hamachi - ok
18:26:53.0894 1184 [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
18:26:53.0923 1184 Hamachi2Svc - ok
18:26:53.0957 1184 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:26:54.0035 1184 hcw85cir - ok
18:26:54.0095 1184 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:26:54.0140 1184 HdAudAddService - ok
18:26:54.0216 1184 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:26:54.0251 1184 HDAudBus - ok
18:26:54.0282 1184 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
18:26:54.0304 1184 HidBatt - ok
18:26:54.0308 1184 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:26:54.0340 1184 HidBth - ok
18:26:54.0380 1184 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
18:26:54.0390 1184 HidIr - ok
18:26:54.0415 1184 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:26:54.0438 1184 hidserv - ok
18:26:54.0472 1184 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:26:54.0481 1184 HidUsb - ok
18:26:54.0550 1184 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:26:54.0604 1184 hkmsvc - ok
18:26:54.0659 1184 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:26:54.0677 1184 HomeGroupListener - ok
18:26:54.0714 1184 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:26:54.0754 1184 HomeGroupProvider - ok
18:26:54.0798 1184 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:26:54.0805 1184 HpSAMD - ok
18:26:54.0881 1184 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:26:54.0943 1184 HTTP - ok
18:26:55.0005 1184 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:26:55.0012 1184 hwpolicy - ok
18:26:55.0048 1184 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:26:55.0056 1184 i8042prt - ok
18:26:55.0114 1184 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:26:55.0125 1184 iaStorV - ok
18:26:55.0241 1184 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:26:55.0276 1184 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:26:55.0276 1184 IDriverT - detected UnsignedFile.Multi.Generic (1)
18:26:55.0346 1184 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:26:55.0359 1184 idsvc - ok
18:26:55.0382 1184 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:26:55.0389 1184 iirsp - ok
18:26:55.0417 1184 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:26:55.0461 1184 IKEEXT - ok
18:26:55.0545 1184 [ ACACD1B925D448558C1C9D0258749451 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:26:55.0594 1184 IntcAzAudAddService - ok
18:26:55.0635 1184 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:26:55.0642 1184 intelide - ok
18:26:55.0651 1184 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:26:55.0681 1184 intelppm - ok
18:26:55.0709 1184 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:26:55.0750 1184 IPBusEnum - ok
18:26:55.0777 1184 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:26:55.0799 1184 IpFilterDriver - ok
18:26:55.0861 1184 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:26:55.0895 1184 iphlpsvc - ok
18:26:55.0898 1184 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:26:55.0908 1184 IPMIDRV - ok
18:26:55.0911 1184 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:26:55.0943 1184 IPNAT - ok
18:26:55.0977 1184 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:26:56.0008 1184 IRENUM - ok
18:26:56.0040 1184 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:26:56.0047 1184 isapnp - ok
18:26:56.0082 1184 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:26:56.0092 1184 iScsiPrt - ok
18:26:56.0136 1184 [ 8E4577C6E0D3114170509159DE658907 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
18:26:56.0142 1184 iusb3hcs - ok
18:26:56.0198 1184 [ FE76346E9B57DA575BD1B3BD0CCAD7FF ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
18:26:56.0207 1184 iusb3hub - ok
18:26:56.0230 1184 [ 1008CD90DA2198FFD250298DEB9DF160 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
18:26:56.0243 1184 iusb3xhc - ok
18:26:56.0280 1184 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:26:56.0287 1184 kbdclass - ok
18:26:56.0308 1184 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:26:56.0335 1184 kbdhid - ok
18:26:56.0376 1184 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:26:56.0385 1184 KeyIso - ok
18:26:56.0471 1184 [ E656FE10D6D27794AFA08136685A69E8 ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
18:26:56.0481 1184 KL1 - ok
18:26:56.0585 1184 [ D865DD8B0448E3F963D68C04C532858F ] kl2 C:\Windows\system32\DRIVERS\kl2.sys
18:26:56.0591 1184 kl2 - ok
18:26:56.0679 1184 [ C7D4F357C482DD37E2B05F34093B7B0C ] KLIF C:\Windows\system32\DRIVERS\klif.sys
18:26:56.0692 1184 KLIF - ok
18:26:56.0753 1184 [ 89FB5A33D7171B6D84F5EB721D5055E1 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
18:26:56.0760 1184 KLIM6 - ok
18:26:56.0800 1184 [ 9468D07E91BA136D82415F5DFC1FE168 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
18:26:56.0806 1184 klmouflt - ok
18:26:56.0853 1184 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:26:56.0862 1184 KSecDD - ok
18:26:56.0901 1184 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:26:56.0909 1184 KSecPkg - ok
18:26:56.0938 1184 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:26:56.0977 1184 ksthunk - ok
18:26:57.0026 1184 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:26:57.0067 1184 KtmRm - ok
18:26:57.0120 1184 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:26:57.0180 1184 LanmanServer - ok
18:26:57.0241 1184 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:26:57.0286 1184 LanmanWorkstation - ok
18:26:57.0319 1184 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:26:57.0367 1184 lltdio - ok
18:26:57.0402 1184 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:26:57.0450 1184 lltdsvc - ok
18:26:57.0467 1184 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:26:57.0515 1184 lmhosts - ok
18:26:57.0597 1184 [ 05D708ED589BF5EE6402AEC873214061 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:26:57.0606 1184 LMS - ok
18:26:57.0631 1184 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:26:57.0639 1184 LSI_FC - ok
18:26:57.0686 1184 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:26:57.0694 1184 LSI_SAS - ok
18:26:57.0751 1184 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
18:26:57.0758 1184 LSI_SAS2 - ok
18:26:57.0798 1184 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:26:57.0806 1184 LSI_SCSI - ok
18:26:57.0840 1184 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:26:57.0879 1184 luafv - ok
18:26:57.0939 1184 [ 4A503882318BB2F59218D401614E6AF6 ] lvpepf64 C:\Windows\system32\DRIVERS\lv302a64.sys
18:26:57.0945 1184 lvpepf64 - ok
18:26:57.0970 1184 [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:26:57.0976 1184 LVPr2M64 - ok
18:26:57.0984 1184 [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:26:57.0990 1184 LVPr2Mon - ok
18:26:58.0041 1184 [ A35679E56E78091E1042A2D7ADBF2958 ] LVPrcS64 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
18:26:58.0049 1184 LVPrcS64 - ok
18:26:58.0108 1184 [ 125AE13C293889001B8456CF3EB04A40 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
18:26:58.0116 1184 LVRS64 - ok
18:26:58.0135 1184 [ 5C3FF68267A5D242EE79EE01B993D6CE ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
18:26:58.0142 1184 LVUSBS64 - ok
18:26:58.0158 1184 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:26:58.0187 1184 Mcx2Svc - ok
18:26:58.0221 1184 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
18:26:58.0228 1184 megasas - ok
18:26:58.0289 1184 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
18:26:58.0298 1184 MegaSR - ok
18:26:58.0336 1184 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:26:58.0343 1184 MEIx64 - ok
18:26:58.0432 1184 [ 05DCE0370CCA1501B67D6EEC18F33B8F ] miniusb C:\Windows\system32\DRIVERS\sam_miniusb.sys
18:26:58.0439 1184 miniusb - ok
18:26:58.0473 1184 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:26:58.0523 1184 MMCSS - ok
18:26:58.0537 1184 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:26:58.0595 1184 Modem - ok
18:26:58.0614 1184 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:26:58.0656 1184 monitor - ok
18:26:58.0714 1184 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:26:58.0721 1184 mouclass - ok
18:26:58.0742 1184 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:26:58.0783 1184 mouhid - ok
18:26:58.0820 1184 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:26:58.0828 1184 mountmgr - ok
18:26:58.0926 1184 [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:26:58.0933 1184 MozillaMaintenance - ok
18:26:58.0956 1184 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:26:58.0964 1184 mpio - ok
18:26:58.0987 1184 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:26:59.0011 1184 mpsdrv - ok
18:26:59.0039 1184 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:26:59.0066 1184 MpsSvc - ok
18:26:59.0091 1184 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:26:59.0132 1184 MRxDAV - ok
18:26:59.0169 1184 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:26:59.0223 1184 mrxsmb - ok
18:26:59.0240 1184 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:26:59.0250 1184 mrxsmb10 - ok
18:26:59.0271 1184 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:26:59.0280 1184 mrxsmb20 - ok
18:26:59.0303 1184 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:26:59.0310 1184 msahci - ok
18:26:59.0331 1184 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:26:59.0340 1184 msdsm - ok
18:26:59.0370 1184 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:26:59.0401 1184 MSDTC - ok
18:26:59.0437 1184 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:26:59.0459 1184 Msfs - ok
18:26:59.0482 1184 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:26:59.0520 1184 mshidkmdf - ok
18:26:59.0522 1184 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:26:59.0529 1184 msisadrv - ok
18:26:59.0579 1184 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:26:59.0636 1184 MSiSCSI - ok
18:26:59.0637 1184 msiserver - ok
18:26:59.0668 1184 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:26:59.0709 1184 MSKSSRV - ok
18:26:59.0729 1184 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:26:59.0772 1184 MSPCLOCK - ok
18:26:59.0793 1184 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:26:59.0846 1184 MSPQM - ok
18:26:59.0867 1184 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:26:59.0878 1184 MsRPC - ok
18:26:59.0912 1184 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:26:59.0919 1184 mssmbios - ok
18:26:59.0937 1184 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:26:59.0983 1184 MSTEE - ok
18:27:00.0007 1184 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
18:27:00.0015 1184 MTConfig - ok
18:27:00.0032 1184 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:27:00.0039 1184 Mup - ok
18:27:00.0095 1184 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:27:00.0120 1184 napagent - ok
18:27:00.0149 1184 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:27:00.0171 1184 NativeWifiP - ok
18:27:00.0227 1184 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:27:00.0242 1184 NDIS - ok
18:27:00.0264 1184 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:27:00.0296 1184 NdisCap - ok
18:27:00.0344 1184 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:27:00.0366 1184 NdisTapi - ok
18:27:00.0386 1184 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:27:00.0415 1184 Ndisuio - ok
18:27:00.0419 1184 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:27:00.0465 1184 NdisWan - ok
18:27:00.0507 1184 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:27:00.0545 1184 NDProxy - ok
18:27:00.0577 1184 [ D4F51E88C71BF8F06EA1BE320B0BB75B ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
18:27:00.0598 1184 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:27:00.0598 1184 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:27:00.0626 1184 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:27:00.0686 1184 NetBIOS - ok
18:27:00.0705 1184 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:27:00.0728 1184 NetBT - ok
18:27:00.0750 1184 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:27:00.0758 1184 Netlogon - ok
18:27:00.0807 1184 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:27:00.0857 1184 Netman - ok
18:27:00.0933 1184 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:27:00.0940 1184 NetMsmqActivator - ok
18:27:00.0999 1184 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:27:01.0007 1184 NetPipeActivator - ok
18:27:01.0023 1184 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:27:01.0068 1184 netprofm - ok
18:27:01.0083 1184 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:27:01.0090 1184 NetTcpActivator - ok
18:27:01.0101 1184 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:27:01.0108 1184 NetTcpPortSharing - ok
18:27:01.0174 1184 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:27:01.0181 1184 nfrd960 - ok
18:27:01.0227 1184 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:27:01.0266 1184 NlaSvc - ok
18:27:01.0333 1184 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:27:01.0356 1184 Npfs - ok
18:27:01.0381 1184 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:27:01.0405 1184 nsi - ok
18:27:01.0436 1184 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:27:01.0494 1184 nsiproxy - ok
18:27:01.0582 1184 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:27:01.0605 1184 Ntfs - ok
18:27:01.0633 1184 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:27:01.0688 1184 Null - ok
18:27:01.0743 1184 [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
18:27:01.0751 1184 NVHDA - ok
18:27:02.0040 1184 [ 0A2F27B5BCC45B64E152DD6AE0815198 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:27:02.0150 1184 nvlddmkm - ok
18:27:02.0183 1184 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:27:02.0192 1184 nvraid - ok
18:27:02.0215 1184 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:27:02.0223 1184 nvstor - ok
18:27:02.0257 1184 [ 574087EA9105F23FB522A4FDDD5292D9 ] nvsvc C:\Windows\system32\nvvsvc.exe
18:27:02.0272 1184 nvsvc - ok
18:27:02.0345 1184 [ ABA5A88740635D37A2B6CEB27DBC738A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:27:02.0364 1184 nvUpdatusService - ok
18:27:02.0398 1184 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:27:02.0406 1184 nv_agp - ok
18:27:02.0420 1184 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:27:02.0452 1184 ohci1394 - ok
18:27:02.0516 1184 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:27:02.0523 1184 ose - ok
18:27:02.0955 1184 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:27:03.0007 1184 osppsvc - ok
18:27:03.0063 1184 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:27:03.0106 1184 p2pimsvc - ok
18:27:03.0164 1184 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:27:03.0175 1184 p2psvc - ok
18:27:03.0256 1184 papycpu - ok
18:27:03.0347 1184 papycpu2 - ok
18:27:03.0423 1184 papyjoy - ok
18:27:03.0453 1184 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:27:03.0490 1184 Parport - ok
18:27:03.0546 1184 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:27:03.0554 1184 partmgr - ok
18:27:03.0580 1184 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:27:03.0619 1184 PcaSvc - ok
18:27:03.0653 1184 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:27:03.0662 1184 pci - ok
18:27:03.0665 1184 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:27:03.0671 1184 pciide - ok
18:27:03.0696 1184 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
18:27:03.0705 1184 pcmcia - ok
18:27:03.0719 1184 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:27:03.0726 1184 pcw - ok
18:27:03.0759 1184 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:27:03.0808 1184 PEAUTH - ok
18:27:03.0889 1184 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:27:03.0936 1184 PeerDistSvc - ok
18:27:04.0156 1184 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:27:04.0190 1184 PerfHost - ok
18:27:04.0397 1184 [ AE0B94363DA0F60D42B9D05B352F61ED ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS
18:27:04.0427 1184 PID_PEPI - ok
18:27:04.0489 1184 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:27:04.0521 1184 pla - ok
18:27:04.0612 1184 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:27:04.0647 1184 PlugPlay - ok
18:27:04.0677 1184 [ 9A80707D8B6C1806531BFD7399B3CC76 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
18:27:04.0700 1184 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:27:04.0700 1184 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:27:04.0732 1184 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:27:04.0759 1184 PNRPAutoReg - ok
18:27:04.0790 1184 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:27:04.0801 1184 PNRPsvc - ok
18:27:04.0833 1184 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:27:04.0891 1184 PolicyAgent - ok
18:27:04.0917 1184 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:27:04.0959 1184 Power - ok
18:27:04.0982 1184 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:27:05.0036 1184 PptpMiniport - ok
18:27:05.0043 1184 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
18:27:05.0071 1184 Processor - ok
18:27:05.0120 1184 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:27:05.0152 1184 ProfSvc - ok
18:27:05.0173 1184 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:27:05.0182 1184 ProtectedStorage - ok
18:27:05.0220 1184 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:27:05.0270 1184 Psched - ok
18:27:05.0316 1184 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
18:27:05.0322 1184 PxHlpa64 - ok
18:27:05.0380 1184 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:27:05.0401 1184 ql2300 - ok
18:27:05.0456 1184 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:27:05.0464 1184 ql40xx - ok
18:27:05.0512 1184 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:27:05.0525 1184 QWAVE - ok
18:27:05.0537 1184 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:27:05.0574 1184 QWAVEdrv - ok
18:27:05.0591 1184 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:27:05.0622 1184 RasAcd - ok
18:27:05.0675 1184 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:27:05.0698 1184 RasAgileVpn - ok
18:27:05.0731 1184 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:27:05.0781 1184 RasAuto - ok
18:27:05.0817 1184 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:27:05.0865 1184 Rasl2tp - ok
18:27:05.0919 1184 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:27:05.0968 1184 RasMan - ok
18:27:05.0981 1184 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:27:06.0020 1184 RasPppoe - ok
18:27:06.0041 1184 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:27:06.0065 1184 RasSstp - ok
18:27:06.0077 1184 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:27:06.0105 1184 rdbss - ok
18:27:06.0108 1184 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:27:06.0146 1184 rdpbus - ok
18:27:06.0190 1184 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:27:06.0212 1184 RDPCDD - ok
18:27:06.0234 1184 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:27:06.0261 1184 RDPDR - ok
18:27:06.0280 1184 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:27:06.0322 1184 RDPENCDD - ok
18:27:06.0339 1184 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:27:06.0384 1184 RDPREFMP - ok
18:27:06.0424 1184 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:27:06.0458 1184 RdpVideoMiniport - ok
18:27:06.0515 1184 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:27:06.0559 1184 RDPWD - ok
18:27:06.0601 1184 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:27:06.0610 1184 rdyboost - ok
18:27:06.0654 1184 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:27:06.0680 1184 RemoteAccess - ok
18:27:06.0692 1184 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:27:06.0715 1184 RemoteRegistry - ok
18:27:06.0722 1184 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:27:06.0744 1184 RpcEptMapper - ok
18:27:06.0754 1184 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:27:06.0765 1184 RpcLocator - ok
18:27:06.0817 1184 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:27:06.0842 1184 RpcSs - ok
18:27:06.0891 1184 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:27:06.0914 1184 rspndr - ok
18:27:07.0039 1184 [ 61A04C0C084D560BBEF1D09604608262 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:27:07.0052 1184 RTL8167 - ok
18:27:07.0068 1184 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:27:07.0094 1184 s3cap - ok
18:27:07.0112 1184 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:27:07.0121 1184 SamSs - ok
18:27:07.0169 1184 [ 2C31378A5695526E99ADAB928157B992 ] Samsung UPD Service2 C:\Windows\System32\SUPDSvc2.exe
18:27:07.0177 1184 Samsung UPD Service2 - ok
18:27:07.0264 1184 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:27:07.0272 1184 sbp2port - ok
18:27:07.0297 1184 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:27:07.0322 1184 SCardSvr - ok
18:27:07.0347 1184 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:27:07.0389 1184 scfilter - ok
18:27:07.0473 1184 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:27:07.0504 1184 Schedule - ok
18:27:07.0530 1184 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:27:07.0553 1184 SCPolicySvc - ok
18:27:07.0563 1184 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:27:07.0603 1184 SDRSVC - ok
18:27:07.0668 1184 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:27:07.0718 1184 secdrv - ok
18:27:07.0735 1184 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:27:07.0758 1184 seclogon - ok
18:27:07.0777 1184 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:27:07.0806 1184 SENS - ok
18:27:07.0816 1184 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:27:07.0870 1184 SensrSvc - ok
18:27:07.0895 1184 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:27:07.0930 1184 Serenum - ok
18:27:07.0978 1184 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:27:08.0006 1184 Serial - ok
18:27:08.0047 1184 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:27:08.0081 1184 sermouse - ok
18:27:08.0108 1184 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:27:08.0156 1184 SessionEnv - ok
18:27:08.0160 1184 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:27:08.0171 1184 sffdisk - ok
18:27:08.0173 1184 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:27:08.0203 1184 sffp_mmc - ok
18:27:08.0218 1184 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:27:08.0258 1184 sffp_sd - ok
18:27:08.0281 1184 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:27:08.0291 1184 sfloppy - ok
18:27:08.0332 1184 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:27:08.0385 1184 SharedAccess - ok
18:27:08.0434 1184 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:27:08.0480 1184 ShellHWDetection - ok
18:27:08.0504 1184 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
18:27:08.0511 1184 SiSRaid2 - ok
18:27:08.0520 1184 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:27:08.0527 1184 SiSRaid4 - ok
18:27:08.0672 1184 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:27:08.0680 1184 SkypeUpdate - ok
18:27:08.0698 1184 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:27:08.0739 1184 Smb - ok
18:27:08.0792 1184 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:27:08.0802 1184 SNMPTRAP - ok
18:27:08.0856 1184 [ 867DB0D7380DD1DA484B74A75E3E9023 ] SODI C:\Windows\system32\DRIVERS\sam_miniport.sys
18:27:08.0862 1184 SODI - ok
18:27:08.0872 1184 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:27:08.0880 1184 spldr - ok
18:27:08.0918 1184 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:27:08.0931 1184 Spooler - ok
18:27:09.0016 1184 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:27:09.0086 1184 sppsvc - ok
18:27:09.0114 1184 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:27:09.0137 1184 sppuinotify - ok
18:27:09.0208 1184 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:27:09.0274 1184 srv - ok
18:27:09.0305 1184 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:27:09.0344 1184 srv2 - ok
18:27:09.0393 1184 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:27:09.0402 1184 srvnet - ok
18:27:09.0433 1184 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:27:09.0458 1184 SSDPSRV - ok
18:27:09.0472 1184 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:27:09.0497 1184 SstpSvc - ok
18:27:09.0543 1184 Steam Client Service - ok
18:27:09.0716 1184 [ 78216A10BF8B200890A88D8820F33F14 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:27:09.0726 1184 Stereo Service - ok
18:27:09.0755 1184 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
18:27:09.0763 1184 stexstor - ok
18:27:09.0844 1184 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:27:09.0882 1184 stisvc - ok
18:27:09.0903 1184 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:27:09.0910 1184 storflt - ok
18:27:09.0968 1184 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:27:09.0975 1184 storvsc - ok
18:27:10.0002 1184 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:27:10.0009 1184 swenum - ok
18:27:10.0059 1184 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:27:10.0086 1184 swprv - ok
18:27:10.0105 1184 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
18:27:10.0112 1184 Synth3dVsc - ok
18:27:10.0257 1184 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:27:10.0302 1184 SysMain - ok
18:27:10.0335 1184 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:27:10.0367 1184 TabletInputService - ok
18:27:10.0424 1184 [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
18:27:10.0462 1184 tap0901t - ok
18:27:10.0509 1184 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:27:10.0560 1184 TapiSrv - ok
18:27:10.0579 1184 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:27:10.0602 1184 TBS - ok
18:27:10.0824 1184 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:27:10.0850 1184 Tcpip - ok
18:27:11.0037 1184 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:27:11.0061 1184 TCPIP6 - ok
18:27:11.0092 1184 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:27:11.0100 1184 tcpipreg - ok
18:27:11.0124 1184 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:27:11.0182 1184 TDPIPE - ok
18:27:11.0222 1184 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:27:11.0258 1184 TDTCP - ok
18:27:11.0301 1184 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:27:11.0356 1184 tdx - ok
18:27:12.0003 1184 [ 9F3E7CABE86BBDECA009DE291DB6D9E2 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
18:27:12.0042 1184 TeamViewer8 - ok
18:27:12.0091 1184 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:27:12.0098 1184 TermDD - ok
18:27:12.0138 1184 [ EF4469AB69EB15E5D3754E6AEAFBCD3D ] terminpt C:\Windows\system32\drivers\terminpt.sys
18:27:12.0164 1184 terminpt - ok
18:27:12.0277 1184 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:27:12.0305 1184 TermService - ok
18:27:12.0400 1184 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:27:12.0412 1184 Themes - ok
18:27:12.0442 1184 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:27:12.0464 1184 THREADORDER - ok
18:27:12.0540 1184 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:27:12.0592 1184 TrkWks - ok
18:27:12.0650 1184 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:27:12.0673 1184 TrustedInstaller - ok
18:27:12.0688 1184 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:27:12.0741 1184 tssecsrv - ok
18:27:12.0847 1184 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:27:12.0890 1184 TsUsbFlt - ok
18:27:12.0925 1184 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
18:27:12.0988 1184 TsUsbGD - ok
18:27:13.0010 1184 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
18:27:13.0094 1184 tsusbhub - ok
18:27:13.0384 1184 [ 50D8102EECC446F160C8C31AF927242D ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
18:27:13.0413 1184 TuneUp.UtilitiesSvc - ok
18:27:13.0485 1184 [ 7BC3381C0713F613B31ACDE38B71CB53 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys
18:27:13.0490 1184 TuneUpUtilitiesDrv - ok
18:27:13.0561 1184 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:27:13.0611 1184 tunnel - ok
18:27:13.0676 1184 [ 2FD0FE0A0C721C8E47C5A3AE16E519B1 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
18:27:13.0688 1184 TunngleService - ok
18:27:13.0706 1184 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:27:13.0713 1184 uagp35 - ok
18:27:13.0746 1184 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:27:13.0799 1184 udfs - ok
18:27:13.0815 1184 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:27:13.0856 1184 UI0Detect - ok
18:27:13.0883 1184 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:27:13.0891 1184 uliagpkx - ok
18:27:13.0914 1184 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:27:13.0944 1184 umbus - ok
18:27:13.0963 1184 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
18:27:13.0997 1184 UmPass - ok
18:27:14.0030 1184 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
18:27:14.0063 1184 UmRdpService - ok
18:27:14.0094 1184 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:27:14.0138 1184 upnphost - ok
18:27:14.0216 1184 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:27:14.0251 1184 usbaudio - ok
18:27:14.0300 1184 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:27:14.0328 1184 usbccgp - ok
18:27:14.0351 1184 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:27:14.0362 1184 usbcir - ok
18:27:14.0421 1184 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:27:14.0429 1184 usbehci - ok
18:27:14.0498 1184 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:27:14.0536 1184 usbhub - ok
18:27:14.0567 1184 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:27:14.0603 1184 usbohci - ok
18:27:14.0627 1184 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
18:27:14.0663 1184 usbprint - ok
18:27:14.0707 1184 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:27:14.0741 1184 USBSTOR - ok
18:27:14.0778 1184 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:27:14.0811 1184 usbuhci - ok
18:27:14.0920 1184 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
18:27:14.0968 1184 usb_rndisx - ok
18:27:15.0008 1184 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:27:15.0053 1184 UxSms - ok
18:27:15.0159 1184 [ 3DEC48B5C70562DEE960117553134E3E ] UxTuneUp C:\Windows\System32\uxtuneup.dll
18:27:15.0165 1184 UxTuneUp - ok
18:27:15.0192 1184 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:27:15.0200 1184 VaultSvc - ok
18:27:15.0250 1184 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:27:15.0257 1184 vdrvroot - ok
18:27:15.0293 1184 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:27:15.0348 1184 vds - ok
18:27:15.0407 1184 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:27:15.0441 1184 vga - ok
18:27:15.0459 1184 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:27:15.0493 1184 VgaSave - ok
18:27:15.0495 1184 VGPU - ok
18:27:15.0524 1184 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:27:15.0532 1184 vhdmp - ok
18:27:15.0549 1184 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:27:15.0556 1184 viaide - ok
18:27:15.0594 1184 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:27:15.0603 1184 vmbus - ok
18:27:15.0611 1184 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:27:15.0637 1184 VMBusHID - ok
18:27:15.0678 1184 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:27:15.0686 1184 volmgr - ok
18:27:15.0699 1184 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:27:15.0709 1184 volmgrx - ok
18:27:15.0723 1184 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:27:15.0733 1184 volsnap - ok
18:27:15.0765 1184 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
18:27:15.0774 1184 vpcbus - ok
18:27:15.0814 1184 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys
18:27:15.0823 1184 vpcnfltr - ok
18:27:15.0827 1184 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
18:27:15.0836 1184 vpcusb - ok
18:27:15.0841 1184 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys
18:27:15.0851 1184 vpcvmm - ok
18:27:15.0887 1184 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:27:15.0895 1184 vsmraid - ok
18:27:15.0928 1184 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:27:15.0976 1184 VSS - ok
18:27:16.0023 1184 [ E6CB71665C410D6CC3D44E796835CE32 ] vvftav C:\Windows\system32\drivers\vvftav.sys
18:27:16.0032 1184 vvftav - ok
18:27:16.0053 1184 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:27:16.0091 1184 vwifibus - ok
18:27:16.0149 1184 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:27:16.0177 1184 W32Time - ok
18:27:16.0204 1184 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:27:16.0233 1184 WacomPen - ok
18:27:16.0259 1184 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:27:16.0304 1184 WANARP - ok
18:27:16.0333 1184 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:27:16.0355 1184 Wanarpv6 - ok
18:27:16.0493 1184 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:27:16.0512 1184 WatAdminSvc - ok
18:27:16.0548 1184 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:27:16.0609 1184 wbengine - ok
18:27:16.0640 1184 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:27:16.0652 1184 WbioSrvc - ok
18:27:16.0672 1184 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:27:16.0705 1184 wcncsvc - ok
18:27:16.0742 1184 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:27:16.0769 1184 WcsPlugInService - ok
18:27:16.0796 1184 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
18:27:16.0803 1184 Wd - ok
18:27:16.0910 1184 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:27:16.0924 1184 Wdf01000 - ok
18:27:16.0945 1184 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:27:17.0233 1184 WdiServiceHost - ok
18:27:17.0235 1184 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:27:17.0248 1184 WdiSystemHost - ok
18:27:17.0297 1184 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:27:17.0332 1184 WebClient - ok
18:27:17.0362 1184 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:27:17.0406 1184 Wecsvc - ok
18:27:17.0432 1184 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:27:17.0456 1184 wercplsupport - ok
18:27:17.0512 1184 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:27:17.0536 1184 WerSvc - ok
18:27:17.0591 1184 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:27:17.0613 1184 WfpLwf - ok
18:27:17.0656 1184 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:27:17.0663 1184 WIMMount - ok
18:27:17.0690 1184 WinDefend - ok
18:27:17.0693 1184 WinHttpAutoProxySvc - ok
18:27:17.0798 1184 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:27:17.0822 1184 Winmgmt - ok
18:27:18.0049 1184 WinRing0_1_2_0 - ok
18:27:18.0204 1184 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:27:18.0240 1184 WinRM - ok
18:27:18.0324 1184 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:27:18.0368 1184 WinUsb - ok
18:27:18.0457 1184 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:27:18.0496 1184 Wlansvc - ok
18:27:18.0559 1184 [ 680A7846370000D20D7E74917D5B7936 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
18:27:18.0565 1184 WmBEnum - ok
18:27:18.0627 1184 [ 14C35BA8189C6F65D839163AA285E954 ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
18:27:18.0633 1184 WmFilter - ok
18:27:18.0687 1184 [ AC4331AF118A720F13C9C5CABBFE27BD ] WmHidLo C:\Windows\system32\drivers\WmHidLo.sys
18:27:18.0693 1184 WmHidLo - ok
18:27:18.0707 1184 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:27:18.0732 1184 WmiAcpi - ok
18:27:18.0785 1184 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:27:18.0817 1184 wmiApSrv - ok
18:27:18.0870 1184 WMPNetworkSvc - ok
18:27:18.0873 1184 [ 8488DD91A3EE54A8E29F02AD7BB8201E ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
18:27:18.0879 1184 WmVirHid - ok
18:27:18.0884 1184 [ 14802B3A30AA849C97CB968CCC813BF3 ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
18:27:18.0891 1184 WmXlCore - ok
18:27:18.0906 1184 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:27:18.0914 1184 WPCSvc - ok
18:27:18.0925 1184 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:27:18.0937 1184 WPDBusEnum - ok
18:27:18.0972 1184 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:27:18.0994 1184 ws2ifsl - ok
18:27:19.0127 1184 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
18:27:19.0167 1184 wscsvc - ok
18:27:19.0169 1184 WSearch - ok
18:27:19.0411 1184 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:27:19.0442 1184 wuauserv - ok
18:27:19.0482 1184 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:27:19.0522 1184 WudfPf - ok
18:27:19.0573 1184 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:27:19.0612 1184 WUDFRd - ok
18:27:19.0658 1184 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:27:19.0693 1184 wudfsvc - ok
18:27:19.0737 1184 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:27:19.0751 1184 WwanSvc - ok
18:27:19.0879 1184 [ 4A5CE13408945E525503B5F73D29B9C5 ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys
18:27:19.0922 1184 xnacc - ok
18:27:19.0971 1184 XSpaceWg - ok
18:27:20.0041 1184 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
18:27:20.0048 1184 xusb21 - ok
18:27:20.0273 1184 [ C48A0F1DF0DBA60010748DEC8CC886B4 ] ZSMC0305 C:\Windows\system32\Drivers\usbVM305.sys
18:27:20.0314 1184 ZSMC0305 - ok
18:27:20.0373 1184 ================ Scan global ===============================
18:27:20.0408 1184 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:27:20.0469 1184 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:27:20.0488 1184 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:27:20.0563 1184 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:27:20.0578 1184 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:27:20.0580 1184 [Global] - ok
18:27:20.0581 1184 ================ Scan MBR ==================================
18:27:20.0595 1184 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:27:21.0180 1184 \Device\Harddisk0\DR0 - ok
18:27:21.0181 1184 ================ Scan VBR ==================================
18:27:21.0197 1184 [ 311110DA24392C968935A78177825000 ] \Device\Harddisk0\DR0\Partition1
18:27:21.0208 1184 \Device\Harddisk0\DR0\Partition1 - ok
18:27:21.0229 1184 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition2
18:27:21.0238 1184 \Device\Harddisk0\DR0\Partition2 - ok
18:27:21.0244 1184 [ F10242DB253F8FBE824011290232BBA5 ] \Device\Harddisk0\DR0\Partition3
18:27:21.0253 1184 \Device\Harddisk0\DR0\Partition3 - ok
18:27:21.0254 1184 ============================================================
18:27:21.0254 1184 Scan finished
18:27:21.0254 1184 ============================================================
18:27:21.0255 1412 Detected object count: 4
18:27:21.0255 1412 Actual detected object count: 4
18:27:37.0870 1412 FrameManager Service ( UnsignedFile.Multi.Generic ) - skipped by user
18:27:37.0870 1412 FrameManager Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:27:37.0870 1412 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
18:27:37.0870 1412 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:27:37.0871 1412 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:27:37.0871 1412 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:27:37.0871 1412 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:27:37.0871 1412 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
Geändert von weoiss (26.02.2013 um 18:30 Uhr) Grund: Einfacher zu lesen |
|
26.02.2013, 18:33
| #13 |
| /// Malware-holic | Windows 7 Anwenderprogramme öffnen nur sehr langsam Hi, Scan mit Combofix
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
27.02.2013, 15:49
| #14 |
| | Windows 7 Anwenderprogramme öffnen nur sehr langsam Vorher hat ich eine Spyware übersehen, aber jetzt Combofix Logfile: Code:
ATTFilter ComboFix 13-02-26.01 - User 27.02.2013 15:38:07.2.8 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.49.1031.18.16330.14309 [GMT 1:00]
ausgeführt von:: c:\users\User\Desktop\ComboFix.exe
AV: Kaspersky Security Suite CBE *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
FW: Kaspersky Security Suite CBE *Disabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
SP: Kaspersky Security Suite CBE *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Vorheriger Suchlauf -------
.
c:\windows\IsUn0407.exe
c:\windows\TEMP\logishrd\LVPrcInj02.dll
c:\windows\VM305Cap.exe
c:\windows\wininit.ini
c:\windows\TEMP\logishrd\LVPrcInj01.dll . . . . Nicht in der Lage zu löschen
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-01-27 bis 2013-02-27 ))))))))))))))))))))))))))))))
.
.
2013-02-27 14:45 . 2013-02-27 14:45 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-02-27 14:45 . 2013-02-27 14:45 -------- d-----w- c:\users\Gast\AppData\Local\temp
2013-02-27 14:45 . 2013-02-27 14:45 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-02-26 16:17 . 2013-02-08 00:28 9162192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9C1FE73B-8CF6-467A-A844-6DAF31D91CCA}\mpengine.dll
2013-02-24 11:00 . 2013-02-24 11:00 -------- d-----w- c:\users\User\AppData\Roaming\Malwarebytes
2013-02-24 11:00 . 2013-02-24 11:00 -------- d-----w- c:\programdata\Malwarebytes
2013-02-24 10:26 . 2013-02-24 10:25 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-23 17:30 . 2013-02-23 17:30 3762 ----a-w- c:\windows\system32\cc_20130223_183040.reg
2013-02-22 15:43 . 2013-02-22 15:43 -------- d-----w- C:\_OTL
2013-02-21 19:46 . 2013-02-21 19:45 310688 ----a-w- c:\windows\system32\javaws.exe
2013-02-21 19:45 . 2013-02-21 19:45 188832 ----a-w- c:\windows\system32\javaw.exe
2013-02-21 19:45 . 2013-02-21 19:45 188320 ----a-w- c:\windows\system32\java.exe
2013-02-21 19:45 . 2013-02-21 19:45 108448 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2013-02-21 19:45 . 2013-02-21 19:45 -------- d-----w- c:\program files\Java
2013-02-21 14:30 . 2013-01-28 13:19 35104 ----a-w- c:\windows\system32\TURegOpt.exe
2013-02-21 14:28 . 2013-02-21 14:28 -------- d-----w- c:\users\User\AppData\Roaming\TuneUp Software
2013-02-21 14:27 . 2013-02-21 14:28 -------- d-----w- c:\programdata\TuneUp Software
2013-02-21 13:53 . 2013-02-21 14:08 -------- d-----w- C:\TuneUpPortable
2013-02-18 16:35 . 2013-02-25 20:09 -------- d-----w- c:\programdata\Tunngle
2013-02-18 16:35 . 2013-02-18 16:35 -------- d-----w- c:\program files (x86)\Tunngle
2013-02-18 16:19 . 2013-02-18 16:19 -------- d-----w- c:\program files\GIGABYTE
2013-02-18 16:19 . 2011-11-02 09:48 21616 ----a-w- c:\windows\system32\drivers\AppleCharger.sys
2013-02-18 16:19 . 2010-04-06 15:30 31272 ----a-w- c:\windows\system32\AppleChargerSrv.exe
2013-02-18 16:15 . 2012-01-05 11:58 355096 ----a-w- c:\windows\system32\drivers\iusb3hub.sys
2013-02-18 16:15 . 2013-02-18 16:15 -------- d-----w- c:\windows\SysWow64\RTCOM
2013-02-18 16:15 . 2013-02-18 16:15 -------- d-----w- c:\program files\Realtek
2013-02-18 16:15 . 2012-01-05 11:58 786200 ----a-w- c:\windows\system32\drivers\iusb3xhc.sys
2013-02-17 20:25 . 2013-02-17 20:25 196 ----a-w- c:\windows\system32\cc_20130217_212519.reg
2013-02-17 19:10 . 2013-02-17 19:10 744 ----a-w- c:\windows\system32\cc_20130217_201049.reg
2013-02-17 16:41 . 2013-02-17 16:41 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2013-02-16 20:05 . 2013-02-16 20:05 -------- d-----w- c:\users\User\AppData\Local\http___mvc.craften.de
2013-02-16 12:32 . 2013-02-16 12:32 258 ----a-w- c:\windows\system32\cc_20130216_133234.reg
2013-02-16 12:32 . 2013-02-16 12:32 9020 ----a-w- c:\windows\system32\cc_20130216_133219.reg
2013-02-15 23:45 . 2013-02-15 23:45 178 ----a-w- c:\windows\system32\cc_20130216_004504.reg
2013-02-15 23:44 . 2013-02-15 23:44 242 ----a-w- c:\windows\system32\cc_20130216_004451.reg
2013-02-15 23:44 . 2013-02-15 23:44 10480 ----a-w- c:\windows\system32\cc_20130216_004416.reg
2013-02-15 14:34 . 2013-02-15 14:34 1028 ----a-w- c:\windows\system32\cc_20130215_153446.reg
2013-02-15 14:34 . 2013-02-15 14:34 6030 ----a-w- c:\windows\system32\cc_20130215_153435.reg
2013-02-15 14:20 . 2013-02-15 14:20 -------- d-----w- c:\programdata\Package Cache
2013-02-15 14:15 . 2013-02-15 14:19 -------- d-----w- C:\AiO-Files
2013-02-15 14:09 . 2013-02-15 14:09 -------- d-----w- c:\program files (x86)\AmIcoSingLun
2013-02-15 14:09 . 2013-02-15 14:09 -------- d-----w- c:\programdata\AmUStor
2013-02-15 13:50 . 2012-12-27 00:26 805088 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2013-02-15 13:50 . 2012-12-27 00:26 74344 ----a-w- c:\windows\system32\RtNicProp64.dll
2013-02-15 13:42 . 2005-11-13 22:19 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2013-02-15 13:16 . 2006-02-07 14:45 757760 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
2013-02-15 13:16 . 2006-02-07 14:40 204800 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
2013-02-15 13:16 . 2006-02-07 14:40 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
2013-02-15 13:16 . 2006-02-07 14:40 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
2013-02-15 13:16 . 2013-02-15 13:16 331908 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2013-02-15 13:16 . 2013-02-15 13:16 200836 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2013-02-15 12:29 . 2013-02-21 14:44 -------- d-----w- c:\programdata\DriverGenius
2013-02-15 12:19 . 2012-06-09 18:21 178688 ----a-w- c:\windows\SysWow64\unrar.dll
2013-02-13 13:42 . 2013-02-18 16:19 -------- d-----w- c:\program files (x86)\GIGABYTE
2013-02-13 13:33 . 2013-02-13 13:33 -------- d-----w- c:\program files\CPUID
2013-02-13 13:33 . 2013-01-09 01:10 996352 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-13 13:33 . 2013-01-08 22:01 768000 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-13 13:18 . 2013-01-04 05:46 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-02-13 13:18 . 2013-01-04 04:51 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-02-13 13:18 . 2013-01-04 02:47 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-02-13 13:18 . 2013-01-04 02:47 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-02-13 13:18 . 2013-01-04 02:47 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-02-13 13:18 . 2013-01-04 02:47 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-02-13 13:18 . 2013-01-05 05:53 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-02-13 13:18 . 2013-01-05 05:00 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-02-13 13:18 . 2013-01-03 06:00 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-02-13 13:18 . 2013-01-03 06:00 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-02-13 13:18 . 2013-01-05 05:00 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-02-13 13:17 . 2013-01-04 03:26 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-02-11 19:05 . 2013-02-27 13:38 -------- d-----w- c:\users\User\AppData\Roaming\.minecraft
2013-02-10 16:38 . 2013-02-10 16:38 2242 ----a-w- c:\windows\system32\cc_20130210_173828.reg
2013-02-10 13:16 . 2013-02-10 13:16 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-02-09 23:12 . 2012-08-23 15:09 3072 ----a-w- c:\windows\system32\drivers\en-US\tsusbflt.sys.mui
2013-02-09 17:43 . 2013-02-09 17:43 555808 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2013-02-07 13:59 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2013-02-07 13:41 . 2013-02-07 13:41 -------- d-----w- c:\windows\SysWow64\en
2013-02-07 13:41 . 2013-02-07 13:41 -------- d-----w- c:\windows\SysWow64\drivers\UMDF\en-US
2013-02-07 13:41 . 2013-02-07 13:41 -------- d-----w- c:\windows\SysWow64\0409
2013-02-07 13:41 . 2013-02-07 13:41 -------- d-----w- c:\windows\system32\en
2013-02-07 13:41 . 2013-02-07 13:41 -------- d-----w- c:\windows\system32\drivers\UMDF\en-US
2013-02-07 13:41 . 2013-02-07 13:41 -------- d-----w- c:\windows\system32\0409
2013-02-07 13:36 . 2010-11-20 04:11 6144 ----a-w- c:\windows\system32\drivers\en-US\IPMIDrv.sys.mui
2013-02-07 13:36 . 2010-11-20 04:10 4608 ----a-w- c:\windows\system32\drivers\en-US\kbdclass.sys.mui
2013-02-07 13:36 . 2009-07-13 16:24 2560 ----a-w- c:\windows\system32\drivers\en-US\kbdhid.sys.mui
2013-02-07 13:36 . 2010-11-20 04:13 6144 ----a-w- c:\windows\system32\drivers\en-US\rdvgkmd.sys.mui
2013-02-07 13:36 . 2010-11-20 04:01 2560 ----a-w- c:\windows\system32\drivers\en-US\rdpwd.sys.mui
2013-02-07 13:36 . 2010-11-20 04:11 4096 ----a-w- c:\windows\system32\drivers\en-US\tsusbhub.sys.mui
2013-02-07 13:36 . 2009-07-13 16:27 7168 ----a-w- c:\windows\system32\drivers\en-US\battc.sys.mui
2013-02-07 13:36 . 2009-07-13 16:26 24576 ----a-w- c:\windows\system32\drivers\en-US\usbport.sys.mui
2013-02-07 13:36 . 2009-07-13 16:24 7680 ----a-w- c:\windows\system32\drivers\en-US\tunnel.sys.mui
2013-02-06 15:43 . 2013-02-06 15:43 3584 ----a-r- c:\users\User\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
2013-02-06 15:43 . 2013-02-06 15:43 -------- d-----w- c:\program files (x86)\Windows Installer Clean Up
2013-02-05 14:06 . 2013-02-24 11:17 893552 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2013-02-05 14:06 . 2013-02-24 11:17 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2013-02-05 14:06 . 2013-02-27 14:22 1236816 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2013-02-04 13:32 . 2013-02-09 17:00 -------- d-----w- c:\users\User\AppData\Roaming\FileZilla
2013-02-04 13:26 . 2013-02-04 13:26 -------- d-----w- c:\windows\system32\IO
2013-02-03 15:36 . 2012-09-19 10:10 37216 ----a-w- c:\windows\system32\uxtuneup.dll
2013-02-03 15:36 . 2012-09-19 10:10 29536 ----a-w- c:\windows\SysWow64\uxtuneup.dll
2013-02-03 15:35 . 2013-01-28 13:19 26400 ----a-w- c:\windows\system32\authuitu.dll
2013-02-03 15:35 . 2013-01-28 13:19 21792 ----a-w- c:\windows\SysWow64\authuitu.dll
2013-02-03 15:35 . 2013-02-21 14:29 -------- d-----w- c:\program files (x86)\TuneUp Utilities 2013
2013-02-03 15:34 . 2013-02-21 14:44 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-02-03 15:34 . 2013-02-03 15:34 -------- d--h--w- c:\programdata\Common Files
2013-02-03 15:26 . 2013-02-03 15:26 -------- d-----w- c:\users\User\AppData\Roaming\Helper
2013-02-03 15:26 . 2013-02-03 15:26 -------- d-----w- c:\programdata\DNSErrorHelper
2013-02-03 15:26 . 2011-05-13 13:16 493056 ----a-w- c:\windows\SysWow64\dhRichClient3.dll
2013-02-03 15:26 . 2011-03-25 21:42 338432 ----a-w- c:\windows\SysWow64\sqlite36_engine.dll
2013-02-03 15:26 . 2013-02-15 23:34 -------- d-----w- c:\users\User\AppData\Roaming\DesktopIconForAmazon
2013-02-03 15:26 . 2013-02-03 15:26 -------- d-----w- c:\users\User\AppData\Roaming\OCS
2013-02-03 15:19 . 2013-02-24 10:25 -------- d-----w- c:\program files (x86)\Java
2013-02-03 15:10 . 2013-02-03 15:10 8038 ----a-w- c:\windows\system32\cc_20130203_161025.reg
2013-02-02 11:27 . 2012-03-26 15:38 226304 ----a-w- c:\windows\system32\binkw32.dll
2013-01-30 14:42 . 2013-01-30 14:42 11946 ----a-w- c:\windows\system32\cc_20130130_154220.reg
2013-01-29 15:18 . 2013-01-29 15:18 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-01-29 15:18 . 2013-01-30 14:42 -------- d-----w- c:\users\User\AppData\Roaming\DAEMON Tools Lite
2013-01-29 15:18 . 2013-01-29 15:18 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2013-01-29 15:17 . 2013-01-29 15:30 -------- d-----w- c:\programdata\DAEMON Tools Lite
2013-01-29 15:04 . 2013-01-29 15:04 -------- d-----w- c:\users\User\AppData\Roaming\DAEMON Tools Net
2013-01-29 15:04 . 2013-01-29 15:04 -------- d-----w- c:\programdata\DAEMON Tools Net
2013-01-28 17:37 . 2013-01-28 17:37 74977 ----a-w- c:\program files (x86)\Microsoft Games\Microsoft Flight Simulator X\SimObjects\Airplanes\A380-841Lufthansa\panel\Uninstal.exe
2013-01-28 17:35 . 2013-01-28 17:35 74977 ----a-w- c:\program files (x86)\Microsoft Games\Microsoft Flight Simulator X\SimObjects\Airplanes\Uninstal.exe
2013-01-28 16:44 . 2001-11-08 14:07 13312 ----a-w- c:\program files (x86)\Microsoft Games\Microsoft Flight Simulator X\Modules\FSSound.dll
2013-01-28 15:12 . 2013-02-12 11:37 -------- d-----w- C:\Papyrus
2013-01-28 15:11 . 1997-08-26 11:06 315904 ----a-w- c:\windows\IsUninst.exe
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-27 14:23 . 2013-01-12 11:06 893552 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2013-02-27 14:22 . 2013-01-12 11:06 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2013-02-27 13:47 . 2012-03-30 19:02 71024 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-27 13:47 . 2012-03-30 19:02 691568 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-24 10:25 . 2012-04-30 12:04 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-02-24 10:25 . 2012-03-28 13:37 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-02-21 19:45 . 2012-03-28 13:36 1085344 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-02-21 19:45 . 2012-03-28 13:36 963488 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-21 14:18 . 2013-01-12 11:06 1236816 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2013-02-13 13:37 . 2012-03-30 20:40 70004024 ----a-w- c:\windows\system32\MRT.exe
2013-02-10 03:25 . 2012-10-10 19:22 15038296 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-02-10 03:25 . 2012-03-30 19:27 1114144 ----a-w- c:\windows\system32\nvumdshimx.dll
2013-02-10 03:25 . 2012-03-19 18:37 2854344 ----a-w- c:\windows\system32\nvapi64.dll
2013-02-10 03:25 . 2012-03-19 18:37 15275744 ----a-w- c:\windows\system32\nvwgf2umx.dll
2013-02-10 01:04 . 2012-03-19 18:38 6393120 ----a-w- c:\windows\system32\nvcpl.dll
2013-02-10 01:04 . 2012-03-19 18:38 3472672 ----a-w- c:\windows\system32\nvsvc64.dll
2013-02-10 01:04 . 2012-03-19 18:38 877856 ----a-w- c:\windows\system32\nvvsvc.exe
2013-02-10 01:04 . 2012-03-19 18:38 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-02-10 01:04 . 2012-03-19 18:38 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-02-10 01:04 . 2012-03-19 18:38 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-02-09 13:25 . 2012-03-30 19:28 3035306 ----a-w- c:\windows\system32\nvcoproc.bin
2013-01-18 17:59 . 2013-01-18 17:59 1744 ----a-w- c:\windows\system32\cc_20130118_185935.reg
2013-01-18 17:59 . 2013-01-18 17:59 14954 ----a-w- c:\windows\system32\cc_20130118_185924.reg
2013-01-17 00:28 . 2010-11-21 03:27 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-10 15:37 . 2013-01-10 15:37 440 ----a-w- c:\windows\system32\cc_20130110_163739.reg
2013-01-10 15:27 . 2013-01-10 15:27 4628 ----a-w- c:\windows\system32\cc_20130110_162712.reg
2013-01-10 15:15 . 2013-01-10 15:15 7746 ----a-w- c:\windows\system32\cc_20130110_161548.reg
2013-01-09 10:37 . 2013-01-09 10:37 4954 ----a-w- c:\windows\system32\cc_20130109_113712.reg
2013-01-08 22:19 . 2013-01-08 22:19 190 ----a-w- c:\windows\system32\cc_20130108_231923.reg
2013-01-08 22:19 . 2013-01-08 22:19 270 ----a-w- c:\windows\system32\cc_20130108_231912.reg
2013-01-08 22:19 . 2013-01-08 22:19 16164 ----a-w- c:\windows\system32\cc_20130108_231859.reg
2013-01-04 04:43 . 2013-02-13 13:18 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-01-01 00:52 . 2013-01-01 00:52 3618 ----a-w- c:\windows\system32\cc_20130101_015249.reg
2012-12-30 16:44 . 2012-12-30 16:44 460 ----a-w- c:\windows\system32\cc_20121230_174453.reg
2012-12-30 16:44 . 2012-12-30 16:44 82 ----a-w- c:\windows\system32\cc_20121230_174445.reg
2012-12-29 10:34 . 2012-09-21 15:28 1504696 ----a-w- c:\windows\system32\nvdispgenco64.dll
2012-12-29 10:34 . 2012-03-30 19:27 1813432 ----a-w- c:\windows\system32\nvdispco64.dll
2012-12-29 00:05 . 2012-12-29 00:05 2348 ----a-w- c:\windows\system32\cc_20121229_010548.reg
2012-12-27 00:26 . 2012-03-16 23:29 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2012-12-18 22:49 . 2012-03-16 23:28 2079968 ----a-w- c:\windows\RtlExUpd.dll
2012-12-18 08:31 . 2012-03-30 19:27 1510328 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
2012-12-16 17:11 . 2012-12-21 11:18 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2012-12-21 11:18 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2012-12-21 11:18 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2012-12-21 11:18 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-14 15:28 . 2012-12-14 15:28 179685 ----a-w- c:\users\User\AppData\Roaming\Microsoft\Windows\Templates\proxtube_online.exe
2012-12-12 19:09 . 2012-12-12 19:09 446 ----a-w- c:\windows\system32\cc_20121212_200903.reg
2012-12-12 19:08 . 2012-12-12 19:08 63962 ----a-w- c:\windows\system32\cc_20121212_200847.reg
2012-12-12 13:16 . 2012-12-12 13:16 1220 ----a-w- c:\windows\system32\cc_20121212_141642.reg
2012-12-07 13:20 . 2013-01-09 19:46 441856 ----a-w- c:\windows\system32\Wpc.dll
2012-12-07 13:15 . 2013-01-09 19:46 2746368 ----a-w- c:\windows\system32\gameux.dll
2012-12-07 12:26 . 2013-01-09 19:46 308736 ----a-w- c:\windows\SysWow64\Wpc.dll
2012-12-07 12:20 . 2013-01-09 19:46 2576384 ----a-w- c:\windows\SysWow64\gameux.dll
2012-12-07 11:20 . 2013-01-09 19:46 30720 ----a-w- c:\windows\system32\usk.rs
2012-12-07 11:20 . 2013-01-09 19:46 43520 ----a-w- c:\windows\system32\csrr.rs
2012-12-07 11:20 . 2013-01-09 19:46 23552 ----a-w- c:\windows\system32\oflc.rs
2012-12-07 11:20 . 2013-01-09 19:46 45568 ----a-w- c:\windows\system32\oflc-nz.rs
2012-12-07 11:20 . 2013-01-09 19:46 44544 ----a-w- c:\windows\system32\pegibbfc.rs
2012-12-07 11:20 . 2013-01-09 19:46 20480 ----a-w- c:\windows\system32\pegi-fi.rs
2012-12-07 11:20 . 2013-01-09 19:46 20480 ----a-w- c:\windows\system32\pegi-pt.rs
2012-12-07 11:19 . 2013-01-09 19:46 20480 ----a-w- c:\windows\system32\pegi.rs
2012-12-07 11:19 . 2013-01-09 19:46 46592 ----a-w- c:\windows\system32\fpb.rs
2012-12-07 11:19 . 2013-01-09 19:46 40960 ----a-w- c:\windows\system32\cob-au.rs
2012-12-07 11:19 . 2013-01-09 19:46 21504 ----a-w- c:\windows\system32\grb.rs
2012-12-07 11:19 . 2013-01-09 19:46 15360 ----a-w- c:\windows\system32\djctq.rs
2012-12-07 11:19 . 2013-01-09 19:46 55296 ----a-w- c:\windows\system32\cero.rs
2012-12-07 11:19 . 2013-01-09 19:46 51712 ----a-w- c:\windows\system32\esrb.rs
2012-12-07 10:46 . 2013-01-09 19:46 43520 ----a-w- c:\windows\SysWow64\csrr.rs
2012-12-07 10:46 . 2013-01-09 19:46 30720 ----a-w- c:\windows\SysWow64\usk.rs
2012-12-07 10:46 . 2013-01-09 19:46 45568 ----a-w- c:\windows\SysWow64\oflc-nz.rs
2012-12-07 10:46 . 2013-01-09 19:46 44544 ----a-w- c:\windows\SysWow64\pegibbfc.rs
2012-12-07 10:46 . 2013-01-09 19:46 20480 ----a-w- c:\windows\SysWow64\pegi-pt.rs
2012-12-07 10:46 . 2013-01-09 19:46 23552 ----a-w- c:\windows\SysWow64\oflc.rs
2012-12-07 10:46 . 2013-01-09 19:46 20480 ----a-w- c:\windows\SysWow64\pegi-fi.rs
2012-12-07 10:46 . 2013-01-09 19:46 46592 ----a-w- c:\windows\SysWow64\fpb.rs
2012-12-07 10:46 . 2013-01-09 19:46 20480 ----a-w- c:\windows\SysWow64\pegi.rs
2012-12-07 10:46 . 2013-01-09 19:46 21504 ----a-w- c:\windows\SysWow64\grb.rs
2012-12-07 10:46 . 2013-01-09 19:46 40960 ----a-w- c:\windows\SysWow64\cob-au.rs
2012-12-07 10:46 . 2013-01-09 19:46 15360 ----a-w- c:\windows\SysWow64\djctq.rs
2012-12-07 10:46 . 2013-01-09 19:46 55296 ----a-w- c:\windows\SysWow64\cero.rs
2012-12-07 10:46 . 2013-01-09 19:46 51712 ----a-w- c:\windows\SysWow64\esrb.rs
2012-12-01 09:36 . 2012-12-01 09:36 460 ----a-w- c:\windows\system32\cc_20121201_103608.reg
2012-11-30 05:45 . 2013-01-09 19:47 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-11-30 05:45 . 2013-01-09 19:47 243200 ----a-w- c:\windows\system32\wow64.dll
2012-11-30 05:45 . 2013-01-09 19:47 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-11-30 05:43 . 2013-01-09 19:47 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-11-30 05:41 . 2013-01-09 19:47 424448 ----a-w- c:\windows\system32\KernelBase.dll
2012-11-30 05:41 . 2013-01-09 19:47 1161216 ----a-w- c:\windows\system32\kernel32.dll
2012-11-30 05:38 . 2013-01-09 19:47 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{9B6B03F1-16CF-4491-BBBB-E872802DD717}]
2013-02-03 15:26 111616 ----a-w- c:\programdata\DNSErrorHelper\bho.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-01-08 18705664]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2011-12-16 133400]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-01-05 291608]
"AVP"="c:\program files (x86)\Kaspersky Security Suite CBE 12\avp.exe" [2012-04-10 202296]
"BigDog305"="c:\windows\VM305_STI.EXE" [2007-01-05 61440]
"RoccatKonePure"="c:\program files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.EXE" [2012-11-30 569040]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R1 XSpaceWg;XSpaceWg;c:\windows\system32\drivers\XSpaceWg.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 LVPrcS64;Process Monitor;c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-06 191000]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2013-01-28 2402080]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 lvpepf64;Volume Adapter;c:\windows\system32\DRIVERS\lv302a64.sys [2009-04-30 15896]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2009-04-30 327576]
R3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
R3 miniusb;FrameManager Display Adapter;c:\windows\system32\DRIVERS\sam_miniusb.sys [2010-03-04 23480]
R3 papycpu;papycpu; [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 Samsung UPD Service2;Samsung UPD Service2;c:\windows\System32\SUPDSvc2.exe [2011-12-02 165456]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2012-08-23 29696]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
R3 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe [2012-11-26 745368]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 vvftav;vvftav;c:\windows\system32\drivers\vvftav.sys [2007-02-02 300800]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [2012-12-16 1255736]
R3 ZSMC0305;USB PC Camera VC305;c:\windows\system32\Drivers\usbVM305.sys [2007-03-08 1541120]
R4 ACT2_Service;Ashampoo Core Tuner 2 Service;c:\program files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe [2011-08-22 1421216]
R4 FrameManager Service;FrameManager Service;c:\program files\Samsung\FrameManager\sam_service.exe [2010-03-03 182784]
R4 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-14 3467768]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-01-05 16152]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 21616]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-29 283200]
S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys [2011-03-04 11864]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2011-03-10 29488]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [2010-02-24 191616]
S2 ACT2PM;Ashampoo CoreTuner 2 ProcessMonitor Driver;c:\program files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys [2011-06-10 15160]
S2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-06 169408]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-12-10 2465712]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-02-09 383264]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys [2012-01-05 355096]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys [2012-01-05 786200]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-11-02 22544]
S3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [2009-10-06 30232]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-12-27 805088]
S3 SODI;SODI;c:\windows\system32\DRIVERS\sam_miniport.sys [2010-03-04 30776]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2012-11-16 11880]
S3 WinRing0_1_2_0;WinRing0_1_2_0;c:\users\User\AppData\Local\Temp\tmp2BE0.tmp [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WINRING0_1_2_0
.
Inhalt des "geplante Tasks" Ordners
.
2013-02-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 13:48]
.
2013-02-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 20:37]
.
2013-02-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 20:37]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-07-28 497648]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-01-16 12445288]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://de.search.yahoo.com/web?fr=vc_trans_de_8197
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - ExtSQL: 2012-12-31 20:51; langpack-de@firefox.mozilla.org; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\langpack-de@firefox.mozilla.org.xpi
FF - ExtSQL: 2013-01-05 15:51; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-01-05 15:51; adblockpopups@jessehakanen.net; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\adblockpopups@jessehakanen.net.xpi
FF - ExtSQL: 2013-01-18 16:25; {d49a148e-817e-4025-bee3-5d541376de3b}; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\{d49a148e-817e-4025-bee3-5d541376de3b}.xpi
FF - ExtSQL: 2013-01-31 16:23; proxylist@proxylists.me; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\proxylist@proxylists.me.xpi
FF - ExtSQL: 2013-01-31 16:23; ich@maltegoetz.de; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\ich@maltegoetz.de
FF - ExtSQL: 2013-02-03 16:26; dnshelp@dnshelp.com; c:\users\User\AppData\Roaming\Helper
FF - user.js: network.http.max-connections-per-server - 6
FF - user.js: network.http.max-persistent-connections-per-server - 3
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinRing0_1_2_0]
"ImagePath"="\??\c:\users\User\AppData\Local\Temp\tmp2BE0.tmp"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_171_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_171_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_171_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_171_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-02-27 15:47:50
ComboFix-quarantined-files.txt 2013-02-27 14:47
.
Vor Suchlauf: 38 Verzeichnis(se), 1.577.880.576.000 Bytes frei
Nach Suchlauf: 39 Verzeichnis(se), 1.577.472.151.552 Bytes frei
.
- - End Of File - - F37F7D795A8402A31931E1078937F1BF
|
|
27.02.2013, 15:56
| #15 |
| /// Malware-holic | Windows 7 Anwenderprogramme öffnen nur sehr langsam lösche nie wieder mit dem CCleaner oder sonstigen programmen in der reg rumm, bitte. denn sowas kann probleme verursachen lade den CCleaner standard: CCleaner - Download - Filepony falls der CCleaner bereits instaliert, überspringen. öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen. hinter, jedes von dir benötigte programm, schreibe notwendig. hinter, jedes, von dir nicht benötigte, unnötig. hinter, dir unbekannte, unbekannt. liste posten.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu Windows 7 Anwenderprogramme öffnen nur sehr langsam |
| anwendungsprogramme, arten, einiger, langsam, problem, sehr langsam, starte, starten, windows, windows 7, öffnen |
WARNUNG an die MITLESER: 
Linear-Darstellung
