| |
| |||||||
Antiviren-, Firewall- und andere Schutzprogramme: Fehlalarm durch andere Virenscanner?Windows 7 Sämtliche Fragen zur Bedienung von Firewalls, Anti-Viren Programmen, Anti Malware und Anti Trojaner Software sind hier richtig. Dies ist ein Diskussionsforum für Sicherheitslösungen für Windows Rechner. Benötigst du Hilfe beim Trojaner entfernen oder weil du dir einen Virus eingefangen hast, erstelle ein Thema in den oberen Bereinigungsforen. |
 |
26.02.2013, 16:52
| #1 |
| |  Fehlalarm durch andere Virenscanner? Guten Tag, ich habe gerade einen Virenprüfung mit Avast durchgeführt und als Ergebnis 9 Funde erhalten, welche alle keine Dateien sondern Prozesse waren. Den Fundbericht habe ich als Bild angehängt. Nun, unter den Funden waren mbam.exe (Malewarebytes Anti-Maleware) und superantispyware.exe (Superantispyware). Ich verwende diese Programme nicht als Hintergrundscanner, sondern nur manchmal zum scannen. Allerdings hatte ich sie wohl nebenbei gestartet, aber keine Virenprüfung laufen. Mir ist schon bewusst, dass man nicht mehrere Virenscanner parallel laufen lassen soll, aber bisher hatte ich nie Probleme oder Funde mit den Programmen. Kann ich die Funde einfach ignorieren und als Fehlalarm deuten? MfG. ShadowEagle |
|
27.02.2013, 12:08
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Fehlalarm durch andere Virenscanner? Hallo und
__________________ Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
Note: Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards. Erstmal eine Kontrolle mit OTL bitte:
__________________ |
|
27.02.2013, 14:44
| #3 |
| | Fehlalarm durch andere Virenscanner? OTL.txt
__________________Code:
ATTFilter OTL logfile created on: 27.02.2013 14:31:54 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = D:\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 15,95 Gb Total Physical Memory | 13,29 Gb Available Physical Memory | 83,31% Memory free 31,89 Gb Paging File | 29,12 Gb Available in Paging File | 91,30% Paging File free Paging file location(s): d:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 111,69 Gb Total Space | 66,57 Gb Free Space | 59,60% Space Free | Partition Type: NTFS Drive D: | 1863,01 Gb Total Space | 1705,43 Gb Free Space | 91,54% Space Free | Partition Type: NTFS Computer Name: COUGAR | User Name: David | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - D:\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Programme\AVAST Software\AvastUI.exe (AVAST Software) PRC - C:\Programme\AVAST Software\AvastSvc.exe (AVAST Software) PRC - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe () PRC - C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe (ASUSTeK Computer Inc.) PRC - C:\Windows\SysWOW64\PnkBstrA.exe () PRC - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AsDLNAServerReal.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\ASUS\GPU Tweak\GPUTweak.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) PRC - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe (ASUSTeK Computer Inc.) PRC - C:\Windows\SysWOW64\ASGT.exe () PRC - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) PRC - C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (ASUSTek Computer Inc.) PRC - C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe (ASUSTeK Computer Inc.) PRC - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel Corporation) PRC - D:\Programme\GnuPG\dirmngr.exe () PRC - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE () ========== Modules (No Company Name) ========== MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\7ffdaee3a54ffd1a5e3b008a5bde5ecf\IAStorUtil.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\389a1832a3da11e1b409cd6ae60cb9fa\IAStorCommon.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\Network iControl.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\WiFiGO.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\AudioProjection.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\IsSupported.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\PhoneCtrlAPI.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiMoveHelp.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll () MOD - C:\Program Files (x86)\ASUS\GPU Tweak\Exeio.dll () MOD - C:\Program Files (x86)\ASUS\GPU Tweak\Vender.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\DLCapPP.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\pngio.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\USB BIOS Flashback\PEInfo.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi Engine\IsSupported.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFiGO_HookKey.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\awiscale.DLL () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\CoreAudioCap.dll () MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\USB BIOS Flashback\AsIdxParser.dll () MOD - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\USB BIOS Flashback\Aszip.dll () MOD - C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll () MOD - C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_de_b77a5c561934e089\System.Runtime.Remoting.resources.dll () ========== Services (SafeList) ========== SRV:64bit: - (Intel(R) -- C:\Windows\SysNative\IPROSetMonitor.exe (Intel Corporation) SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (Hamachi2Svc) -- D:\Programme\Hamachi\hamachi-2.exe (LogMeIn Inc.) SRV - (avast! Antivirus) -- C:\Programme\AVAST Software\AvastSvc.exe (AVAST Software) SRV - (asComSvc) -- C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe () SRV - (AsusFanControlService) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe (ASUSTeK Computer Inc.) SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe () SRV - (!SASCORE) -- C:\Programme\SUPERAntiSpyware\SASCore64.exe (SUPERAntiSpyware.com) SRV - (AsSysCtrlService) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe (ASUSTeK Computer Inc.) SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) SRV - (Intel(R) -- C:\Programme\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation) SRV - (asHmComSvc) -- C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe (ASUSTeK Computer Inc.) SRV - (DTSAudioSvc) -- C:\Programme\Realtek\Audio\HDA\DTSU2PAuSrv64.exe (DTS, Inc) SRV - (ASGT) -- C:\Windows\SysWOW64\ASGT.exe () SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) SRV - (ICCS) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel Corporation) SRV - (DirMngr) -- D:\Programme\GnuPG\dirmngr.exe () SRV - (IJPLMSVC) -- C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE () SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (wlidsvc) -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (dtsoftbus01) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys (DT Soft Ltd) DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation) DRV:64bit: - (aswTdi) -- C:\Windows\SysNative\drivers\aswTdi.sys (AVAST Software) DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software) DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software) DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software) DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\drivers\aswFsBlk.sys (AVAST Software) DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software) DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation) DRV:64bit: - (ndisrd) -- C:\Windows\SysNative\drivers\ndisrd.sys (NT Kernel Resources) DRV:64bit: - (ICCWDT) -- C:\Windows\SysNative\drivers\ICCWDT.sys (Intel Corporation) DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (mcaudrv_simple) -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys (ManyCam LLC) DRV:64bit: - (ManyCam) -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys (ManyCam LLC) DRV:64bit: - (asahci64) -- C:\Windows\SysNative\drivers\asahci64.sys (Asmedia Technology) DRV:64bit: - (iusb3xhc) -- C:\Windows\SysNative\drivers\iusb3xhc.sys (Intel Corporation) DRV:64bit: - (iusb3hub) -- C:\Windows\SysNative\drivers\iusb3hub.sys (Intel Corporation) DRV:64bit: - (iusb3hcs) -- C:\Windows\SysNative\drivers\iusb3hcs.sys (Intel Corporation) DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation) DRV:64bit: - (asmtxhci) -- C:\Windows\SysNative\drivers\asmtxhci.sys (ASMedia Technology Inc) DRV:64bit: - (asmthub3) -- C:\Windows\SysNative\drivers\asmthub3.sys (ASMedia Technology Inc) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.) DRV:64bit: - (e1cexpress) -- C:\Windows\SysNative\drivers\e1c62x64.sys (Intel Corporation) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (IOMap) -- C:\Windows\SysNative\drivers\IOMap64.sys (ASUSTeK Computer Inc.) DRV:64bit: - (TIEHDUSB) -- C:\Windows\SysNative\drivers\tiehdusb.sys (Texas Instruments) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.) DRV - (SASDIFSV) -- C:\Programme\SUPERAntiSpyware\sasdifsv64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASKUTIL) -- C:\Programme\SUPERAntiSpyware\saskutil64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 1D A4 FC 48 65 10 CE 01 [binary data] IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F1 3C 4F 21 89 E3 CD 01 [binary data] IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1049653227-1165385715-41009301-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..extensions.enabledAddons: %7Bd40f5e7b-d2cf-4856-b441-cc613eeffbe3%7D:1.68 FF - prefs.js..extensions.enabledAddons: firefox%40ghostery.com:2.8.4 FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20130129 FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.5.7 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0 FF - prefs.js..network.proxy.autoconfig_url: "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('turntable.fm')%20!%3D%20-1%20%26%26%20url.indexOf('static.turntable.fm')%20%3D%3D%20-1))%20%7B%20return%20'PROXY%20us03.personalitycores.com%3A8000%3B%20PROXY%20ab-us04.personalitycores.com%3A8000%3B%20PROXY%20ab-us01.personalitycores.com%3A8000%3B%20PROXY%20us02.personalitycores.com%3A8000%3B%20PROXY%20us06.personalitycores.com%3A8000%3B%20PROXY%20us01.personalitycores.com%3A8000%3B%20PROXY%20ab-us02.personalitycores.com%3A8000%3B%20PROXY%20us04.personalitycores.com%3A8000%3B%20PROXY%20ab-us03.personalitycores.com%3A8000'%3B%7D%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D" FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_168.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\WebRep\FF [2012.11.01 19:28:52 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.02.20 17:10:55 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.3\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.02.21 15:19:41 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.3\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 19.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.02.20 17:10:55 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 19.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.3\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.02.21 15:19:41 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.3\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins [2012.07.28 13:05:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\David\AppData\Roaming\mozilla\Extensions [2013.02.23 23:34:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\David\AppData\Roaming\mozilla\Firefox\Profiles\aye5hr3n.default\extensions [2013.01.30 11:49:30 | 000,000,000 | ---D | M] (WOT) -- C:\Users\David\AppData\Roaming\mozilla\Firefox\Profiles\aye5hr3n.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2012.10.13 18:51:30 | 000,000,000 | ---D | M] (German Dictionary) -- C:\Users\David\AppData\Roaming\mozilla\Firefox\Profiles\aye5hr3n.default\extensions\de-DE@dictionaries.addons.mozilla.org [2013.01.08 17:33:09 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\David\AppData\Roaming\mozilla\Firefox\Profiles\aye5hr3n.default\extensions\firefox@ghostery.com [2013.02.23 23:34:25 | 000,029,064 | ---- | M] () (No name found) -- C:\Users\David\AppData\Roaming\mozilla\firefox\profiles\aye5hr3n.default\extensions\groovesharkUnlocker@overlord1337.xpi [2013.01.21 17:43:56 | 000,315,066 | ---- | M] () (No name found) -- C:\Users\David\AppData\Roaming\mozilla\firefox\profiles\aye5hr3n.default\extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi [2013.02.19 18:57:29 | 000,530,982 | ---- | M] () (No name found) -- C:\Users\David\AppData\Roaming\mozilla\firefox\profiles\aye5hr3n.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013.02.14 22:02:18 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\David\AppData\Roaming\mozilla\firefox\profiles\aye5hr3n.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013.01.01 21:01:21 | 000,138,614 | ---- | M] () (No name found) -- C:\Users\David\AppData\Roaming\mozilla\firefox\profiles\aye5hr3n.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2013.02.20 17:10:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2013.02.20 17:10:55 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2012.07.14 01:45:08 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2012.08.31 09:31:30 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2012.07.14 01:45:08 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2012.07.14 01:45:08 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2012.07.14 01:45:08 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2012.07.14 01:45:07 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programme\AVAST Software\aswWebRepIE64.dll (AVAST Software) O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\aswWebRepIE.dll (AVAST Software) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programme\AVAST Software\aswWebRepIE64.dll (AVAST Software) O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\aswWebRepIE.dll (AVAST Software) O4:64bit: - HKLM..\Run: [RtHDVBg_DTS] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (ASUSTek Computer Inc.) O4 - HKLM..\Run: [ASUS WiFi GO! FileTransfer Execute] C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1049653227-1165385715-41009301-1000..\Run: [DAEMON Tools Lite] D:\Programme\Deamon Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-1049653227-1165385715-41009301-1004..\Run: [DAEMON Tools Lite] D:\Programme\Deamon Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-1049653227-1165385715-41009301-1004..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-21-1049653227-1165385715-41009301-1004..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - Startup: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk = C:\Programme\Rainmeter\Rainmeter.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowLegacyWebView = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowUnhashedWebView = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{01FABE58-0505-4AEB-8032-864F2C8E57C6}: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{598642DB-32AA-4854-A073-2BD8A8424431}: DhcpNameServer = 192.168.178.1 O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{a5d09f6d-d8a2-11e1-84d5-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{a5d09f6d-d8a2-11e1-84d5-806e6f6e6963}\Shell\AutoRun\command - "" = D:\.\Bin\ASSETUP.exe O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (sdnclean64.exe) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.02.22 14:25:20 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe [2013.02.22 14:25:17 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe [2013.02.22 14:25:17 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe [2013.02.22 14:25:17 | 000,095,648 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll [2013.02.22 14:25:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2013.02.22 14:24:37 | 000,310,688 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe [2013.02.22 14:24:34 | 000,188,832 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe [2013.02.22 14:24:34 | 000,188,320 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe [2013.02.22 14:24:34 | 000,108,448 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll [2013.02.21 18:39:49 | 000,031,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll [2013.02.21 18:39:48 | 026,947,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2013.02.21 18:39:48 | 025,256,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2013.02.21 18:39:48 | 020,534,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2013.02.21 18:39:48 | 017,987,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2013.02.21 18:39:48 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2013.02.21 18:39:48 | 012,862,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2013.02.21 18:39:48 | 009,422,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2013.02.21 18:39:48 | 007,964,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2013.02.21 18:39:48 | 007,569,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2013.02.21 18:39:48 | 006,267,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2013.02.21 18:39:48 | 002,911,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2013.02.21 18:39:48 | 002,726,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2013.02.21 18:39:48 | 002,350,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2013.02.21 18:39:48 | 001,990,944 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2013.02.21 18:39:48 | 001,807,136 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6420294.dll [2013.02.21 18:39:48 | 001,510,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6420162.dll [2013.02.21 18:39:48 | 000,963,776 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll [2013.02.21 18:39:48 | 000,420,128 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll [2013.02.21 18:39:48 | 000,364,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll [2013.02.21 18:39:48 | 000,250,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll [2013.02.21 18:39:48 | 000,205,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll [2013.02.21 18:39:48 | 000,194,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys [2013.02.21 15:19:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird [2013.02.20 17:10:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2013.02.17 17:13:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Bohemia Interactive Studio [2013.02.14 17:29:20 | 000,000,000 | ---D | C] -- C:\Program Files\paint.NET [2013.02.14 17:27:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\paint.NET [2013.02.14 15:38:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2013.02.14 15:36:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite [2013.02.14 15:35:50 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys [2013.02.13 22:33:51 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013.02.13 22:33:51 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013.02.13 22:33:51 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013.02.13 22:33:51 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013.02.13 22:33:51 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013.02.13 22:33:50 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013.02.13 22:33:50 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013.02.13 22:33:50 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013.02.13 22:33:50 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013.02.13 22:33:50 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013.02.13 22:33:50 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013.02.13 22:33:50 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013.02.13 22:33:49 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013.02.13 22:33:49 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013.02.13 22:33:49 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013.02.13 19:14:22 | 005,553,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013.02.13 19:14:22 | 003,967,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2013.02.13 19:14:21 | 003,913,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2013.02.13 19:14:17 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll [2013.02.13 19:14:17 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe [2013.02.13 19:14:17 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll [2013.02.13 19:14:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe [2013.02.13 19:14:17 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll [2013.02.13 19:14:16 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe [2013.02.13 19:14:14 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS [2013.02.12 22:12:24 | 000,000,000 | ---D | C] -- C:\Users\David\AppData\Roaming\Notepad++ [2013.02.10 18:20:50 | 000,000,000 | ---D | C] -- C:\ProgramData\TrackMania [2013.02.10 18:18:12 | 000,000,000 | ---D | C] -- C:\Users\David\Documents\TrackMania [2013.02.10 17:22:38 | 000,000,000 | ---D | C] -- C:\Users\David\AppData\Roaming\FileZilla [2013.02.10 17:22:12 | 000,000,000 | ---D | C] -- C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client [2013.02.09 18:43:52 | 000,555,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe [2013.02.08 14:30:24 | 000,000,000 | ---D | C] -- C:\Users\David\AppData\Local\Skyrim [2013.02.03 19:08:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock [2013.02.03 18:30:27 | 000,000,000 | ---D | C] -- C:\Users\David\AppData\Local\EggTranslator [2013.01.31 06:43:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2013.01.31 06:43:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2013.01.30 15:19:40 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller [2013.01.30 11:55:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games [2013.01.30 11:46:30 | 000,000,000 | ---D | C] -- C:\Users\David\AppData\Roaming\Origin [2013.01.30 11:46:19 | 000,000,000 | ---D | C] -- C:\Users\David\AppData\Local\Origin [2013.01.30 11:44:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin [2013.01.30 11:44:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts ========== Files - Modified Within 30 Days ========== [2013.02.27 14:19:17 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.02.27 14:19:17 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.02.27 14:18:06 | 001,612,624 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.02.27 14:18:06 | 000,696,638 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.02.27 14:18:06 | 000,651,956 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.02.27 14:18:06 | 000,147,934 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.02.27 14:18:06 | 000,120,888 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.02.27 14:17:57 | 000,000,000 | ---- | M] () -- C:\Windows\Path.idx [2013.02.27 14:12:52 | 001,048,576 | ---- | M] () -- C:\Windows\PE_Rom.dll [2013.02.27 14:12:13 | 000,000,022 | ---- | M] () -- C:\Windows\S.dirmngr [2013.02.27 14:12:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.02.27 14:12:09 | 4253,216,766 | -HS- | M] () -- C:\hiberfil.sys [2013.02.22 14:25:13 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll [2013.02.22 14:25:13 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll [2013.02.22 14:25:13 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe [2013.02.22 14:25:13 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe [2013.02.22 14:25:13 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe [2013.02.22 14:25:13 | 000,095,648 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll [2013.02.22 14:24:31 | 001,085,344 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npDeployJava1.dll [2013.02.22 14:24:31 | 000,963,488 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll [2013.02.22 14:24:31 | 000,310,688 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe [2013.02.22 14:24:31 | 000,188,832 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe [2013.02.22 14:24:31 | 000,188,320 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe [2013.02.22 14:24:31 | 000,108,448 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll [2013.02.22 14:21:04 | 000,001,534 | ---- | M] () -- C:\Users\David\Desktop\Downloads.lnk [2013.02.14 15:35:50 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys [2013.02.14 15:01:17 | 000,327,192 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013.02.12 21:55:39 | 000,691,568 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013.02.12 21:55:39 | 000,071,024 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013.02.10 04:25:27 | 026,947,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2013.02.10 04:25:27 | 025,256,736 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2013.02.10 04:25:27 | 020,534,560 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2013.02.10 04:25:27 | 017,987,192 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2013.02.10 04:25:27 | 017,560,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2013.02.10 04:25:27 | 015,275,744 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll [2013.02.10 04:25:27 | 015,038,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2013.02.10 04:25:27 | 012,862,400 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2013.02.10 04:25:27 | 009,422,672 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2013.02.10 04:25:27 | 007,964,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2013.02.10 04:25:27 | 007,569,184 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2013.02.10 04:25:27 | 006,267,240 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2013.02.10 04:25:27 | 002,911,008 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2013.02.10 04:25:27 | 002,854,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll [2013.02.10 04:25:27 | 002,726,176 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2013.02.10 04:25:27 | 002,528,840 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2013.02.10 04:25:27 | 002,350,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2013.02.10 04:25:27 | 001,990,944 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2013.02.10 04:25:27 | 001,807,136 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6420294.dll [2013.02.10 04:25:27 | 001,510,176 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6420162.dll [2013.02.10 04:25:27 | 001,114,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll [2013.02.10 04:25:27 | 000,963,776 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll [2013.02.10 04:25:27 | 000,420,128 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll [2013.02.10 04:25:27 | 000,364,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll [2013.02.10 04:25:27 | 000,250,504 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll [2013.02.10 04:25:27 | 000,205,184 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll [2013.02.10 04:25:27 | 000,017,738 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb [2013.02.10 02:04:31 | 006,393,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll [2013.02.10 02:04:31 | 003,472,672 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll [2013.02.10 02:04:29 | 002,555,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll [2013.02.10 02:04:29 | 000,237,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll [2013.02.10 02:04:29 | 000,063,776 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll [2013.02.09 18:43:52 | 000,555,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe [2013.02.09 14:25:36 | 003,035,306 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin [2013.02.09 12:24:32 | 000,000,671 | ---- | M] () -- C:\Users\David\Desktop\Spiele.lnk [2013.02.09 12:23:55 | 000,000,648 | ---- | M] () -- C:\Users\David\Desktop\Nexus.lnk [2013.02.03 19:08:57 | 000,000,652 | ---- | M] () -- C:\Users\David\Desktop\RocketDock.lnk [2013.02.03 18:28:25 | 000,001,200 | ---- | M] () -- C:\Users\David\Desktop\AIMP v3.lnk [2013.01.31 06:43:25 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2013.01.30 11:44:35 | 000,000,546 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk [2013.01.29 11:21:10 | 000,654,936 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Windows\SysNative\autoruns.exe [2013.01.28 16:06:22 | 000,002,665 | ---- | M] () -- C:\Windows\MB.idx ========== Files Created - No Company Name ========== [2013.02.27 14:12:13 | 000,000,022 | ---- | C] () -- C:\Windows\S.dirmngr [2013.02.22 14:20:35 | 000,001,534 | ---- | C] () -- C:\Users\David\Desktop\Downloads.lnk [2013.02.09 12:24:32 | 000,000,671 | ---- | C] () -- C:\Users\David\Desktop\Spiele.lnk [2013.02.09 12:23:55 | 000,000,648 | ---- | C] () -- C:\Users\David\Desktop\Nexus.lnk [2013.02.03 19:08:57 | 000,000,652 | ---- | C] () -- C:\Users\David\Desktop\RocketDock.lnk [2013.02.03 18:28:25 | 000,001,200 | ---- | C] () -- C:\Users\David\Desktop\AIMP v3.lnk [2013.01.30 11:44:35 | 000,000,546 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk [2012.12.09 09:17:25 | 000,581,642 | ---- | C] () -- C:\Users\David\AppData\Roaming\technic-launcher.jar [2012.11.16 03:30:30 | 000,042,440 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll [2012.08.30 19:38:12 | 001,048,576 | ---- | C] () -- C:\Windows\PE_Rom.dll [2012.08.30 19:31:21 | 000,014,464 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsUpIO.sys [2012.08.19 17:00:03 | 000,003,072 | ---- | C] () -- C:\Users\David\AppData\Local\file__0.localstorage [2012.07.31 09:22:48 | 000,000,671 | ---- | C] () -- C:\Users\David\Gespeicherte Spiele.lnk [2012.07.30 07:16:02 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat [2012.07.28 17:36:50 | 001,589,582 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.07.28 17:18:16 | 000,282,296 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.07.28 17:18:15 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe [2012.07.28 17:18:15 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.07.28 12:16:05 | 000,013,440 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys [2012.07.28 12:16:00 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys [2012.07.28 12:04:20 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2012.07.28 12:04:16 | 000,044,369 | ---- | C] () -- C:\Windows\Ascd_tmp.ini [2012.02.02 21:08:26 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll [2012.01.17 10:24:10 | 000,055,296 | ---- | C] () -- C:\Windows\SysWow64\ASGT.exe [2011.09.28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat ========== ZeroAccess Check ========== [2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] < End of report > Code:
ATTFilter OTL Extras logfile created on: 27.02.2013 14:31:54 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
15,95 Gb Total Physical Memory | 13,29 Gb Available Physical Memory | 83,31% Memory free
31,89 Gb Paging File | 29,12 Gb Available in Paging File | 91,30% Paging File free
Paging file location(s): d:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,69 Gb Total Space | 66,57 Gb Free Space | 59,60% Space Free | Partition Type: NTFS
Drive D: | 1863,01 Gb Total Space | 1705,43 Gb Free Space | 91,54% Space Free | Partition Type: NTFS
Computer Name: COUGAR | User Name: David | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.ini[@ = Notepad++_file] -- D:\Programme\Notepad++\notepad++.exe (Don HO don.h@free.fr)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
.js[@ = Notepad++_file] -- D:\Programme\Notepad++\notepad++.exe (Don HO don.h@free.fr)
.txt[@ = Notepad++_file] -- D:\Programme\Notepad++\notepad++.exe (Don HO don.h@free.fr)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.ini [@ = Notepad++_file] -- D:\Programme\Notepad++\notepad++.exe (Don HO don.h@free.fr)
.js [@ = Notepad++_file] -- D:\Programme\Notepad++\notepad++.exe (Don HO don.h@free.fr)
.txt [@ = Notepad++_file] -- D:\Programme\Notepad++\notepad++.exe (Don HO don.h@free.fr)
[HKEY_USERS\S-1-5-21-1049653227-1165385715-41009301-1000\SOFTWARE\Classes\<extension>]
.html [@ = Notepad++_file] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02FC56BB-12DA-414C-9A16-17FC4300F0BD}" = lport=2869 | protocol=6 | dir=in | name=upnp tcp 2869 |
"{0A211879-02B8-42D2-ADAC-57B3FEE48686}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{0BDA4B15-6EC4-4215-B224-2B9BD87A526C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{115FC0D8-64BB-416C-B8D4-505570EF9296}" = lport=139 | protocol=6 | dir=in | app=system |
"{1BA8CEF0-E60B-4082-81BF-A55E6572C17F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{1F48909B-E624-4A95-8AFF-12C0B9982276}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{243A85F3-7FD8-4DE0-8D7A-EBA277B69888}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{48F395D9-F9CA-4A5A-B9D4-C49910E91A0B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5F638E66-7FE1-43F8-B994-44039BCF658F}" = lport=2869 | protocol=6 | dir=in | name=upnp tcp 2869 |
"{7B309FF8-3FD5-4568-A8D6-C9474401A8A7}" = rport=137 | protocol=17 | dir=out | app=system |
"{838EFA9A-933F-4578-B7FD-57BD7C9F4249}" = lport=137 | protocol=17 | dir=in | app=system |
"{841AAA90-9626-4B7D-A45A-1F1CA13FA211}" = lport=138 | protocol=17 | dir=in | app=system |
"{87B7C01C-ABE3-4104-B62C-E99239556256}" = lport=445 | protocol=6 | dir=in | app=system |
"{8F300381-1208-4E51-9DE8-932F8576F82A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{94B8406D-84FA-4DBA-BE49-B1B35CB135EC}" = rport=138 | protocol=17 | dir=out | app=system |
"{989CC67E-12B3-403A-BB59-5E9946ADDB95}" = lport=1900 | protocol=17 | dir=in | name=upnp udp 1900 |
"{9E11009C-9484-4AC6-B5D2-5ECBCC4BBC14}" = lport=10243 | protocol=6 | dir=in | app=system |
"{A9A12049-466C-4370-B44B-04703E59E946}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BFE4739C-A764-4E88-971A-B949F6DEF469}" = rport=10243 | protocol=6 | dir=out | app=system |
"{D1429988-AF10-4C22-BB60-BC6AE5036E61}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{D25CED3F-F735-4D39-978E-689289BB7922}" = rport=139 | protocol=6 | dir=out | app=system |
"{D833D213-9CAF-4E66-B71F-0FCB9C7463E4}" = rport=445 | protocol=6 | dir=out | app=system |
"{DC003217-5050-42C2-A471-7E4D47BDBC4C}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E73BC29A-E008-4247-975F-4CA0E5AF1077}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E8358580-82FC-4469-A02B-7F12B6B027CC}" = lport=1900 | protocol=17 | dir=in | name=upnp udp 1900 |
"{F1994772-AEF7-4297-89FC-288BB09E4020}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{012C9D3F-69F3-4F2D-BCCF-E1561ED7EEDC}" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"{0154B5E1-5BFF-43C2-A813-402A3C488096}" = protocol=17 | dir=in | app=d:\programme\xfire\xfire.exe |
"{01657DE5-9047-49E9-8647-A30CD8C49CEF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{04234AA4-A008-47EE-A4B8-2A6A86AC91C5}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{04DE76E8-B675-4D94-9D1F-13F0296C0E3E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{08956C2E-E58C-4E71-9336-FBA0C0C9C58B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{0D3A327C-6429-41D4-AC32-1DE1065E2A25}" = protocol=58 | dir=in | app=system |
"{145B9E58-7482-4C3B-A932-E4C481050B45}" = protocol=6 | dir=in | app=d:\spiele\farcry 3\bin\fc3updater.exe |
"{16742680-1F75-46F3-A16D-14E0AC40EE7F}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{1814FD29-8CF9-430C-BBD8-6F01378EF8F2}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe |
"{189FB3A4-1AAA-4E1E-8F49-AA06338E0B02}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{196BA222-2C13-46AE-AD3A-90E4056A6D84}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{23D2949D-7F44-40FE-8D5F-743C0F2307CE}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{2667699A-E47D-4290-9ED3-F576A68502A5}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{2AB65E9E-FFB9-4414-B934-ED59E46AB1BB}" = protocol=6 | dir=out | app=system |
"{34FD0E4F-51AE-4245-B5EC-CD5D95C278E0}" = protocol=17 | dir=in | app=d:\spiele\farcry 3\bin\farcry3_d3d11.exe |
"{370E6186-1A76-426C-A4EB-6B64D14D171A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3A097AB2-6CD3-4B9F-935B-0CE5699EB739}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{3AADB48E-716E-403F-9314-2FACE5E52FC7}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{3F1B9A17-D34D-41D5-8B0B-A21A2FFB4026}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3FF75C50-3EF9-4F48-B010-A8318DB789D9}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\battlefield bad company 2\bfbc2game.exe |
"{4079B3E4-4A69-405E-81EF-D1D77C778E49}" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"{44B4503C-6CA4-4186-B73E-7639C7179972}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{45FF5473-499E-43FF-8F28-ECB8954B2675}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\battlefield bad company 2\support\ea help\electronic_arts_technical_support.htm |
"{489D1963-BF23-4646-98DE-20694312D9EB}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\battlefield bad company 2\bfbc2game.exe |
"{49FDAEDC-B626-4ED5-B168-C565204C043F}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\trackmania nations forever\tmforeverlauncher.exe |
"{4CEFDCB6-1EBE-499F-B766-EEC2BDED85B6}" = protocol=6 | dir=in | app=d:\spiele\farcry 3\bin\farcry3_d3d11.exe |
"{53D3550D-702F-4528-A56B-E7A6B5E78C89}" = protocol=6 | dir=in | app=d:\spiele\farcry 3\bin\farcry3.exe |
"{540188AE-743E-4F03-B7D7-D11F68644C64}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{54347CF4-566D-4F34-9260-3BB7F59F7B9A}" = protocol=17 | dir=in | app=d:\spiele\burnout paradise - the ultimate box\burnoutparadise.exe |
"{577ECF97-23EA-4937-A2AD-34761EEF4286}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\arma 2\arma2.exe |
"{613B1CE2-ED30-4047-A511-32D6A852D037}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{67EC87D3-B3E3-450D-B6AF-F37994477ED1}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\arma 2\arma2.exe |
"{68126BA0-5028-4853-9A23-F8DD89AE83F4}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{691333B4-CD3D-404D-9415-274D811B104B}" = protocol=6 | dir=in | app=d:\spiele\farcry 3\bin\fc3editor.exe |
"{6CDB28B8-262E-47AD-BB72-4BE0F0C5006C}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\trackmania nations forever\tmforever.exe |
"{7DC712C2-3654-46C3-BC6B-8D9FC14E12C4}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd |
"{805699D6-3064-4F97-82C0-BFAC4300DAE1}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{891183E7-9CD6-44F5-A89C-642EE1C56854}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\arma 2\arma2.exe |
"{895BB851-F3D5-4A70-8FD0-DCB74EF15EC8}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\arma 2\arma2.exe |
"{8982696D-FE5A-4282-ACDC-321C91E5D9EF}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\ai suite ii\ai suite ii.exe |
"{8AA9B61D-E2DC-46FC-AB40-C5C2F3A2A7DD}" = protocol=17 | dir=in | app=d:\spiele\farcry 3\bin\fc3editor.exe |
"{95C77878-E2DE-4527-8F8E-75AADC0C27CB}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\ai suite ii\ai suite ii.exe |
"{97EA6B19-ACB2-4C78-8518-CACA3DB8029C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{984F01EC-3092-424D-8E01-E3970AFD1F45}" = protocol=17 | dir=in | app=d:\origin\origingames\crysis 3\bin32\crysis3.exe |
"{9BDC02D7-65BA-4C41-952A-BC1376B2767F}" = protocol=17 | dir=in | app=d:\steam\steam.exe |
"{9EA7FAF6-C49D-4CD2-B4AC-D5A1AF1233CD}" = protocol=6 | dir=in | app=d:\programme\xfire\xfire.exe |
"{9EB03CAF-93F3-401B-ACC3-9EEA96697723}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9FD7FF43-0EA2-4EBB-A851-371942EEDB79}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe |
"{A2EDFD73-29AC-4016-89E1-B64CE8498DD1}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\trackmania nations forever\tmforeverlauncher.exe |
"{A4C683BB-C104-44A3-93DA-494F8B7AEDF2}" = protocol=6 | dir=in | app=d:\spiele\burnout paradise - the ultimate box\burnoutlauncher.exe |
"{A6F9028E-716B-4355-BB83-B469EF068C19}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\ai suite ii\wi-fi go!\assisttools\wifi go! server.exe |
"{A8982FEE-6510-475B-9672-F92534D81728}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BF057DB3-9DB0-4894-B20F-B7C46E84B9D0}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe |
"{C1679B71-D297-4354-9C0E-2996CCD2FF69}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe |
"{C34EB02B-E43F-410F-A2FB-9C9C9C4EEA05}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\battlefield bad company 2\support\ea help\electronic_arts_technical_support.htm |
"{C3C64781-38FB-4159-B57A-7E6A38DC65F3}" = protocol=17 | dir=in | app=d:\spiele\burnout paradise - the ultimate box\burnoutlauncher.exe |
"{C47237E6-B740-4830-A0F3-7487B30A0275}" = protocol=17 | dir=in | app=d:\spiele\farcry 3\bin\fc3updater.exe |
"{C5D8058F-A6CA-474B-91D9-FD8E95256A9E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C689BCAB-E6AE-48DD-ACC7-1539B67CEC5F}" = protocol=17 | dir=in | app=d:\spiele\farcry 3\bin\farcry3.exe |
"{D48CE224-B46F-45FD-915C-5A280306DCF1}" = dir=in | app=d:\spiele\warz\warz.exe |
"{D56E6E06-6C79-44C2-B7FD-A4006CB29943}" = protocol=17 | dir=in | app=d:\spiele\burnout paradise - the ultimate box\burnoutconfigtool.exe |
"{DA199D06-CCBC-41F3-8F09-24F0B06390A0}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\ai suite ii\wi-fi go!\assisttools\wifi go! server.exe |
"{DF8C25E2-3720-432F-AE15-BD1FD72AC128}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{E0707AC1-4BCD-4E57-B3B9-67F47CAA590F}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd |
"{E0D0CB17-58A4-4DC9-81D4-937377E63CA9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{E22A50BA-723F-4675-A4AC-DE120896C94A}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E2EA5DF6-B76F-46DF-B23F-DD495F74415D}" = protocol=6 | dir=in | app=d:\origin\origingames\crysis 3\bin32\crysis3.exe |
"{E36D4B0E-8592-420F-A15D-8186E0060C41}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{E539E3FB-34DD-427B-B038-02D7F2FA0060}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E5F6E45F-76A5-4B80-B755-68654A96BCA3}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{E870CA99-E0DF-445F-870A-B9C8B3C1B6A0}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\trackmania nations forever\tmforever.exe |
"{F37A0383-B1C1-4256-BBAD-080DB1ED0495}" = protocol=6 | dir=in | app=d:\spiele\burnout paradise - the ultimate box\burnoutconfigtool.exe |
"{F8562CD9-9A8C-4213-936B-5B5ED1C28F8A}" = protocol=6 | dir=in | app=d:\steam\steam.exe |
"{FDE47F33-57FD-498F-B3A6-285924C9CCD4}" = protocol=6 | dir=in | app=d:\spiele\burnout paradise - the ultimate box\burnoutparadise.exe |
"TCP Query User{24D9E065-DD09-4B45-8AD9-2AC656AC9BDA}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{258FA93B-B9DE-4A4B-8297-1511CCB315C8}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"TCP Query User{3F421F84-4B79-4107-A5A9-26509BB2EF6C}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{65869620-28C8-4A2F-A7E1-790272B651C8}D:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe |
"TCP Query User{8B0B891E-45A7-45EF-9DF4-3DC4D46C1F87}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"TCP Query User{9FF14D7E-3FD5-4C4C-B9C5-77A410478FF6}D:\spiele\guild wars 2\gw2.exe" = protocol=6 | dir=in | app=d:\spiele\guild wars 2\gw2.exe |
"TCP Query User{B96ED3F7-491C-4495-944C-0415F53BA49E}D:\steam\steamapps\common\terraria\tconfigserver.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\terraria\tconfigserver.exe |
"TCP Query User{D62EB3E7-768A-48AD-B634-A9B4ADB8F187}D:\steam\steamapps\common\terraria\terrariaserver.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\terraria\terrariaserver.exe |
"TCP Query User{E5BE6CA9-4BA0-475C-9BFF-D30AC90D29E3}D:\programme\xfire\xfire.exe" = protocol=6 | dir=in | app=d:\programme\xfire\xfire.exe |
"TCP Query User{F015DDB7-794D-4F66-9331-AB4C967EF70F}D:\spiele\guild wars 2\gw2.exe" = protocol=6 | dir=in | app=d:\spiele\guild wars 2\gw2.exe |
"TCP Query User{FBD6C534-8440-40A1-AA3D-C88F67007EF7}D:\spiele\dayz\sixupdater\tools\bin\rsync.exe" = protocol=6 | dir=in | app=d:\spiele\dayz\sixupdater\tools\bin\rsync.exe |
"UDP Query User{07BB0F48-59EF-4CA7-8DDF-3E7EA34CF9A9}D:\spiele\guild wars 2\gw2.exe" = protocol=17 | dir=in | app=d:\spiele\guild wars 2\gw2.exe |
"UDP Query User{116B6CEF-C30A-4BF3-A30F-A145FBEDF053}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{2418C1C9-B3B2-457B-A4B6-EDC6C0287347}D:\spiele\guild wars 2\gw2.exe" = protocol=17 | dir=in | app=d:\spiele\guild wars 2\gw2.exe |
"UDP Query User{4ADCDD7C-82B5-4AA3-BA2C-EA90A6746E86}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"UDP Query User{7310F592-67F4-4084-93A1-CCC31115FC4A}D:\programme\xfire\xfire.exe" = protocol=17 | dir=in | app=d:\programme\xfire\xfire.exe |
"UDP Query User{7A67CAFA-B3A0-4AFF-BBEE-7E83E0E77072}D:\spiele\dayz\sixupdater\tools\bin\rsync.exe" = protocol=17 | dir=in | app=d:\spiele\dayz\sixupdater\tools\bin\rsync.exe |
"UDP Query User{9DA1D75F-2CCB-447A-9A8A-359704482FD4}D:\steam\steamapps\common\terraria\terrariaserver.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\terraria\terrariaserver.exe |
"UDP Query User{C318FC44-A11D-4B98-B6E4-DE28AF093CB1}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"UDP Query User{CC808598-86B0-4293-A2E9-AE1358A02C0F}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{E1F924FC-C9B4-4B73-835B-EFD537AC4727}D:\steam\steamapps\common\terraria\tconfigserver.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\terraria\tconfigserver.exe |
"UDP Query User{F977B18C-AA44-4847-8A6C-1171E3AFACE0}D:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{09536BA1-E498-4CC3-B834-D884A67D7E34}" = Intel® Trusted Connect Service Client
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series" = Canon MG5100 series MP Drivers
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86417015FF}" = Java 7 Update 15 (64-bit)
"{357A82F9-B5FF-46C8-ABA2-104695E0F1D1}" = Intel(R) Network Connections 16.6.126.0
"{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{64A3A4F4-B792-11D6-A78A-00B0D0170090}" = Java SE Development Kit 7 Update 9 (64-bit)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 314.07
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 314.07
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 314.07
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 314.07
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.12.12
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.3.23.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"6af12c54-643b-4752-87d0-8335503010de_is1" = Nexus Mod Manager
"7511B29C86C398B4D11A0B0E4176CAD68D1B7057" = Windows Driver Package - Texas Instruments Inc. (TIEHDUSB) USB (09/02/2009 1.0.0.1)
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.63.0
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.20
"Defraggler" = Defraggler
"EC3E466026556D3EB760B01C4772277614354E11" = Windows Driver Package - Texas Instruments Inc. (SilvrLnk) USB (06/11/2009 1.0.0.0)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"PROSetDX" = Intel(R) Network Connections 16.6.126.0
"Unigine Heaven DX11 Benchmark (Basic Edition)_is1" = Heaven DX11 Benchmark version 3.0
"WinRAR archiver" = WinRAR 4.20 (64-Bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{224E185A-DCC7-45C5-B04D-77E6CE82D83E}_is1" = tConfig version 0.23.8
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83217015FF}" = Java 7 Update 15
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{2D8CED57-CCDB-4D86-9087-3BBCAE8F8F22}" = Six Updater
"{34D3688E-A737-44C5-9E2A-FF73618728E1}" = AI Suite II
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3FD0C489-0F02-481a-A3E1-9754CD396761}" = Intel® Watchdog Timer Driver (Intel® WDT)
"{4198AE83-A3C6-4C41-85C8-EC63E990696E}" = Crysis®3
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.2
"{532F6E8A-AF97-41C3-915F-39F718EC07D1}" = ASUS GPU Tweak
"{5AF4B3C4-C393-48D7-AC7E-8E7615579548}" = Adobe AIR
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}" = Asmedia ASM106x SATA Host Controller Driver
"{629321C7-65DC-4F59-BB36-32740D228A94}" = TEdit 3
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7D916FA5-DAE9-4A25-B089-655C70EAF607}" = Qualcomm Atheros WiFi Driver Installation
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A996B6A-846E-4A89-B9C4-17546B7BE49F}" = Burnout(TM) Paradise The Ultimate Box
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A8B94669-8654-4126-BD28-D0D2412CDED6}" = TI Connect 1.6
"{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI (11.0.02) - Deutsch
"{BC3051A7-1021-4B57-A3DA-AAC24566FAE7}_is1" = The War Z version alpha
"{C2F438B6-7010-453B-93EC-B2FC053AA97B}" = LibreOffice 3.6
"{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}" = Far Cry 3
"{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}" = Asmedia ASM104x USB 3.0 Host Controller Driver
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Audacity_is1" = Audacity 2.0
"avast" = avast! Free Antivirus
"BattlEye for OA" = BattlEye for OA Uninstall
"Canon MG5100 series Benutzerregistrierung" = Canon MG5100 series Benutzerregistrierung
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonSolutionMenuEX" = Canon Solution Menu EX
"DAEMON Tools Lite" = DAEMON Tools Lite
"Free YouTube Download_is1" = Free YouTube Download version 3.1.40.1031
"GPG4Win" = Gpg4win (2.1.0)
"Guild Wars 2" = Guild Wars 2
"ImgBurn" = ImgBurn
"InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}" = ASUS GPU Tweak
"LAME_is1" = LAME v3.99.3 (for Windows)
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.70.0.1100
"Mozilla Firefox 19.0 (x86 de)" = Mozilla Firefox 19.0 (x86 de)
"Mozilla Thunderbird 17.0.3 (x86 de)" = Mozilla Thunderbird 17.0.3 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 4.0" = Canon MP Navigator EX 4.0
"Mp3tag" = Mp3tag v2.54
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Origin" = Origin
"PunkBusterSvc" = PunkBuster Services
"Rainmeter" = Rainmeter
"RocketDock_is1" = RocketDock 1.3.5
"Steam App 105600" = Terraria
"Steam App 11020" = TrackMania Nations Forever
"Steam App 24960" = Battlefield: Bad Company 2
"Steam App 33910" = ARMA 2
"Steam App 33930" = ARMA 2: Operation Arrowhead
"Terraria Game Launcher GUI_is1" = Terraria Game Launcher GUI version 1.3
"Xfire" = Xfire
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1049653227-1165385715-41009301-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"FileZilla Client" = FileZilla Client 3.6.0.2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1049653227-1165385715-41009301-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"TeamSpeak 3 Client" = TeamSpeak 3 Client
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = ESENT | ID = 455
Description = Windows (3184) Windows: Fehler -1811 beim Öffnen von Protokolldatei
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00069.log.
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Windows Search Service | ID = 9000
Description =
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Windows Search Service | ID = 7040
Description =
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Windows Search Service | ID = 7042
Description =
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Windows Search Service | ID = 9002
Description =
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Windows Search Service | ID = 3029
Description =
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Windows Search Service | ID = 3029
Description =
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Windows Search Service | ID = 3028
Description =
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Windows Search Service | ID = 3058
Description =
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Windows Search Service | ID = 7010
Description =
[ System Events ]
Error - 22.02.2013 16:00:40 | Computer Name = Cougar | Source = ACPI | ID = 327693
Description = : Der eingebettete Controller (EC) hat nicht innerhalb des angegebenen
Zeitlimits reagiert. Dies deutet auf einen Fehler in der EC-Hardware oder -Firmware
hin bzw. darauf, dass das BIOS auf falsche Art auf den EC zugreift. Fragen Sie
den Computerhersteller nach einem aktualisierten BIOS. Dieser Fehler kann in einigen
Situationen zur Folge haben, dass der Computer fehlerhaft läuft.
Error - 22.02.2013 16:00:54 | Computer Name = Cougar | Source = ACPI | ID = 327693
Description = : Der eingebettete Controller (EC) hat nicht innerhalb des angegebenen
Zeitlimits reagiert. Dies deutet auf einen Fehler in der EC-Hardware oder -Firmware
hin bzw. darauf, dass das BIOS auf falsche Art auf den EC zugreift. Fragen Sie
den Computerhersteller nach einem aktualisierten BIOS. Dieser Fehler kann in einigen
Situationen zur Folge haben, dass der Computer fehlerhaft läuft.
Error - 23.02.2013 05:34:21 | Computer Name = Cougar | Source = ACPI | ID = 327693
Description = : Der eingebettete Controller (EC) hat nicht innerhalb des angegebenen
Zeitlimits reagiert. Dies deutet auf einen Fehler in der EC-Hardware oder -Firmware
hin bzw. darauf, dass das BIOS auf falsche Art auf den EC zugreift. Fragen Sie
den Computerhersteller nach einem aktualisierten BIOS. Dieser Fehler kann in einigen
Situationen zur Folge haben, dass der Computer fehlerhaft läuft.
Error - 23.02.2013 15:25:09 | Computer Name = Cougar | Source = ACPI | ID = 327693
Description = : Der eingebettete Controller (EC) hat nicht innerhalb des angegebenen
Zeitlimits reagiert. Dies deutet auf einen Fehler in der EC-Hardware oder -Firmware
hin bzw. darauf, dass das BIOS auf falsche Art auf den EC zugreift. Fragen Sie
den Computerhersteller nach einem aktualisierten BIOS. Dieser Fehler kann in einigen
Situationen zur Folge haben, dass der Computer fehlerhaft läuft.
Error - 23.02.2013 16:50:35 | Computer Name = Cougar | Source = ACPI | ID = 327693
Description = : Der eingebettete Controller (EC) hat nicht innerhalb des angegebenen
Zeitlimits reagiert. Dies deutet auf einen Fehler in der EC-Hardware oder -Firmware
hin bzw. darauf, dass das BIOS auf falsche Art auf den EC zugreift. Fragen Sie
den Computerhersteller nach einem aktualisierten BIOS. Dieser Fehler kann in einigen
Situationen zur Folge haben, dass der Computer fehlerhaft läuft.
Error - 24.02.2013 16:07:54 | Computer Name = Cougar | Source = Service Control Manager | ID = 7024
Description = Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem
Fehler beendet: %%-1073473535.
Error - 24.02.2013 16:07:54 | Computer Name = Cougar | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits
1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt:
Neustart des Diensts.
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Service Control Manager | ID = 7024
Description = Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem
Fehler beendet: %%-1073473535.
Error - 27.02.2013 09:12:14 | Computer Name = COUGAR | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits
1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt:
Neustart des Diensts.
Error - 27.02.2013 09:12:44 | Computer Name = COUGAR | Source = Service Control Manager | ID = 7032
Description = Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden
des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen,
ist fehlgeschlagen. Fehler: %%1056
< End of report >
|
|
27.02.2013, 14:58
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Fehlalarm durch andere Virenscanner? Bitte nun Logs mit GMER (<<< klick für Anleitung) und MBAR (Anleitung etwas weiter unten) erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim zweiten Mal nicht will, lass es einfach weg und führ nur MBAR aus. Anleitung MBAR: Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
27.02.2013, 15:24
| #5 |
| | Fehlalarm durch andere Virenscanner? mbar-log-2013-02-27 (15-22-10) Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.01.0.1020
www.malwarebytes.org
Database version: v2013.02.27.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
David :: COUGAR [administrator]
27.02.2013 15:22:10
mbar-log-2013-02-27 (15-22-10).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 28973
Time elapsed: 1 minute(s), 59 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
|
|
27.02.2013, 15:34
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Fehlalarm durch andere Virenscanner? Was ist mit GMER?
__________________ --> Fehlalarm durch andere Virenscanner? |
|
27.02.2013, 16:02
| #7 |
| | Fehlalarm durch andere Virenscanner? Der Text ist zu lang, wie soll ich den posten? Als Archiv hochladen? |
|
27.02.2013, 16:14
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Fehlalarm durch andere Virenscanner? Ja zippen und anhängen. Das aber nur dann machen wenn die Logs zu groß sind
__________________ Logfiles bitte immer in CODE-Tags posten |
|
27.02.2013, 16:18
| #9 |
| | Fehlalarm durch andere Virenscanner? Logfile als zip-Datei: |
|
27.02.2013, 16:20
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Fehlalarm durch andere Virenscanner? aswMBR Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ Logfiles bitte immer in CODE-Tags posten |
|
27.02.2013, 16:45
| #11 |
| | Fehlalarm durch andere Virenscanner? aswMBR.txt Code:
ATTFilter aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-02-27 16:39:13
-----------------------------
16:39:13.557 OS Version: Windows x64 6.1.7601 Service Pack 1
16:39:13.557 Number of processors: 8 586 0x3A09
16:39:13.557 ComputerName: COUGAR UserName: David
16:39:14.089 Initialize success
16:39:14.143 AVAST engine defs: 13022700
16:39:44.855 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:39:44.858 Disk 0 Vendor: OCZ-AGIL 2.22 Size: 114473MB BusType: 3
16:39:44.860 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
16:39:44.863 Disk 1 Vendor: ST2000DM CC4C Size: 1907729MB BusType: 3
16:39:44.870 Disk 0 MBR read successfully
16:39:44.873 Disk 0 MBR scan
16:39:44.875 Disk 0 Windows 7 default MBR code
16:39:44.879 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
16:39:44.882 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 114371 MB offset 206848
16:39:44.891 Disk 0 scanning C:\Windows\system32\drivers
16:39:47.009 Service scanning
16:39:49.572 Modules scanning
16:39:49.581 Disk 0 trace - called modules:
16:39:49.591 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
16:39:49.597 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800c76f790]
16:39:49.602 3 CLASSPNP.SYS[fffff88001c5943f] -> nt!IofCallDriver -> [0xfffffa800ceb1940]
16:39:49.607 5 ACPI.sys[fffff88000f207a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800cfb6050]
16:39:50.044 AVAST engine scan C:\Windows
16:39:50.931 AVAST engine scan C:\Windows\system32
16:40:26.955 AVAST engine scan C:\Windows\system32\drivers
16:40:28.141 AVAST engine scan C:\Users\David
16:40:38.377 AVAST engine scan C:\ProgramData
16:40:41.221 Scan finished successfully
16:40:58.160 Disk 0 MBR has been saved successfully to "D:\Downloads\AV\MBR.dat"
16:40:58.163 The log file has been saved successfully to "D:\Downloads\AV\aswMBR.txt"
Code:
ATTFilter 16:41:59.0883 7052 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:42:00.0039 7052 ============================================================
16:42:00.0039 7052 Current date / time: 2013/02/27 16:42:00.0039
16:42:00.0039 7052 SystemInfo:
16:42:00.0039 7052
16:42:00.0039 7052 OS Version: 6.1.7601 ServicePack: 1.0
16:42:00.0039 7052 Product type: Workstation
16:42:00.0039 7052 ComputerName: COUGAR
16:42:00.0039 7052 UserName: David
16:42:00.0039 7052 Windows directory: C:\Windows
16:42:00.0039 7052 System windows directory: C:\Windows
16:42:00.0039 7052 Running under WOW64
16:42:00.0039 7052 Processor architecture: Intel x64
16:42:00.0039 7052 Number of processors: 8
16:42:00.0039 7052 Page size: 0x1000
16:42:00.0039 7052 Boot type: Normal boot
16:42:00.0039 7052 ============================================================
16:42:00.0167 7052 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:42:00.0180 7052 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:42:00.0191 7052 ============================================================
16:42:00.0191 7052 \Device\Harddisk0\DR0:
16:42:00.0191 7052 MBR partitions:
16:42:00.0191 7052 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:42:00.0191 7052 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
16:42:00.0191 7052 \Device\Harddisk1\DR1:
16:42:00.0191 7052 MBR partitions:
16:42:00.0191 7052 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
16:42:00.0191 7052 ============================================================
16:42:00.0192 7052 C: <-> \Device\Harddisk0\DR0\Partition2
16:42:00.0218 7052 D: <-> \Device\Harddisk1\DR1\Partition1
16:42:00.0218 7052 ============================================================
16:42:00.0218 7052 Initialize success
16:42:00.0218 7052 ============================================================
16:42:33.0678 4512 ============================================================
16:42:33.0678 4512 Scan started
16:42:33.0678 4512 Mode: Manual; SigCheck; TDLFS;
16:42:33.0678 4512 ============================================================
16:42:34.0228 4512 ================ Scan system memory ========================
16:42:34.0228 4512 System memory - ok
16:42:34.0229 4512 ================ Scan services =============================
16:42:34.0235 4512 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:42:34.0288 4512 !SASCORE - ok
16:42:34.0324 4512 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:42:34.0336 4512 1394ohci - ok
16:42:34.0341 4512 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:42:34.0353 4512 ACPI - ok
16:42:34.0356 4512 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:42:34.0368 4512 AcpiPmi - ok
16:42:34.0373 4512 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:42:34.0380 4512 AdobeARMservice - ok
16:42:34.0386 4512 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:42:34.0396 4512 adp94xx - ok
16:42:34.0401 4512 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:42:34.0410 4512 adpahci - ok
16:42:34.0413 4512 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:42:34.0421 4512 adpu320 - ok
16:42:34.0425 4512 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:42:34.0445 4512 AeLookupSvc - ok
16:42:34.0452 4512 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:42:34.0463 4512 AFD - ok
16:42:34.0465 4512 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:42:34.0472 4512 agp440 - ok
16:42:34.0491 4512 [ FF5221C2E5D5CC82F93EB7C99DC2852F ] AiCharger C:\Windows\syswow64\drivers\AiCharger.sys
16:42:34.0501 4512 AiCharger - ok
16:42:34.0504 4512 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:42:34.0513 4512 ALG - ok
16:42:34.0516 4512 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:42:34.0522 4512 aliide - ok
16:42:34.0524 4512 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:42:34.0531 4512 amdide - ok
16:42:34.0533 4512 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:42:34.0541 4512 AmdK8 - ok
16:42:34.0544 4512 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:42:34.0552 4512 AmdPPM - ok
16:42:34.0555 4512 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:42:34.0562 4512 amdsata - ok
16:42:34.0566 4512 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:42:34.0574 4512 amdsbs - ok
16:42:34.0576 4512 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:42:34.0583 4512 amdxata - ok
16:42:34.0585 4512 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:42:34.0605 4512 AppID - ok
16:42:34.0607 4512 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:42:34.0627 4512 AppIDSvc - ok
16:42:34.0630 4512 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:42:34.0650 4512 Appinfo - ok
16:42:34.0652 4512 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:42:34.0659 4512 arc - ok
16:42:34.0662 4512 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:42:34.0669 4512 arcsas - ok
16:42:34.0671 4512 [ EB6DC008A1F36DFD7999EB57E97EAACE ] asahci64 C:\Windows\system32\DRIVERS\asahci64.sys
16:42:34.0677 4512 asahci64 - ok
16:42:34.0687 4512 [ 31E2470E61D5A390405BA41C279D8446 ] asComSvc C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
16:42:34.0699 4512 asComSvc - ok
16:42:34.0702 4512 [ E536856E96A7605EBF580D62A868E5FE ] ASGT C:\Windows\SysWOW64\ASGT.exe
16:42:34.0705 4512 ASGT ( UnsignedFile.Multi.Generic ) - warning
16:42:34.0705 4512 ASGT - detected UnsignedFile.Multi.Generic (1)
16:42:34.0714 4512 [ 0466B91EE5767A769E9F8EDB8EF94DDB ] asHmComSvc C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
16:42:34.0727 4512 asHmComSvc - ok
16:42:34.0729 4512 [ FEF9DD9EA587F8886ADE43C1BEFBDAFE ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
16:42:34.0735 4512 AsIO - ok
16:42:34.0737 4512 [ 22842362DF890F5492F85AA60916A697 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
16:42:34.0747 4512 asmthub3 - ok
16:42:34.0753 4512 [ 08E2D77766CC05E75A0707207D9FC684 ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
16:42:34.0763 4512 asmtxhci - ok
16:42:34.0774 4512 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:42:34.0781 4512 aspnet_state - ok
16:42:34.0784 4512 [ AD8947D621FDCA48F1F39F4624B60AA1 ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
16:42:34.0790 4512 AsSysCtrlService - ok
16:42:34.0793 4512 [ 1392B92179B07B672720763D9B1028A5 ] AsUpIO C:\Windows\syswow64\drivers\AsUpIO.sys
16:42:34.0798 4512 AsUpIO - ok
16:42:34.0803 4512 [ 55B8384F53CF6405A7729F1CECEB0FA0 ] AsusFanControlService C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe
16:42:34.0807 4512 AsusFanControlService ( UnsignedFile.Multi.Generic ) - warning
16:42:34.0807 4512 AsusFanControlService - detected UnsignedFile.Multi.Generic (1)
16:42:34.0810 4512 [ A5E4CDB420540095D1293C874B5F89AA ] ASUSFILTER C:\Windows\syswow64\drivers\ASUSFILTER.sys
16:42:34.0816 4512 ASUSFILTER - ok
16:42:34.0818 4512 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
16:42:34.0824 4512 aswFsBlk - ok
16:42:34.0827 4512 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
16:42:34.0833 4512 aswMonFlt - ok
16:42:34.0836 4512 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
16:42:34.0842 4512 aswRdr - ok
16:42:34.0852 4512 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
16:42:34.0866 4512 aswSnx - ok
16:42:34.0871 4512 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
16:42:34.0880 4512 aswSP - ok
16:42:34.0883 4512 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
16:42:34.0889 4512 aswTdi - ok
16:42:34.0891 4512 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:42:34.0910 4512 AsyncMac - ok
16:42:34.0913 4512 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:42:34.0919 4512 atapi - ok
16:42:34.0942 4512 [ 3660381F5EA18E14A06C98591B533AD6 ] athr C:\Windows\system32\DRIVERS\athrx.sys
16:42:34.0966 4512 athr - ok
16:42:34.0974 4512 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:42:34.0999 4512 AudioEndpointBuilder - ok
16:42:35.0006 4512 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:42:35.0029 4512 AudioSrv - ok
16:42:35.0033 4512 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\AvastSvc.exe
16:42:35.0039 4512 avast! Antivirus - ok
16:42:35.0042 4512 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:42:35.0054 4512 AxInstSV - ok
16:42:35.0059 4512 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:42:35.0070 4512 b06bdrv - ok
16:42:35.0074 4512 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:42:35.0083 4512 b57nd60a - ok
16:42:35.0087 4512 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:42:35.0095 4512 BDESVC - ok
16:42:35.0097 4512 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:42:35.0117 4512 Beep - ok
16:42:35.0126 4512 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:42:35.0152 4512 BFE - ok
16:42:35.0161 4512 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
16:42:35.0189 4512 BITS - ok
16:42:35.0191 4512 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:42:35.0199 4512 blbdrive - ok
16:42:35.0205 4512 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:42:35.0216 4512 Bonjour Service - ok
16:42:35.0219 4512 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:42:35.0226 4512 bowser - ok
16:42:35.0228 4512 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:42:35.0237 4512 BrFiltLo - ok
16:42:35.0239 4512 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:42:35.0248 4512 BrFiltUp - ok
16:42:35.0251 4512 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:42:35.0260 4512 Browser - ok
16:42:35.0264 4512 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:42:35.0273 4512 Brserid - ok
16:42:35.0275 4512 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:42:35.0285 4512 BrSerWdm - ok
16:42:35.0287 4512 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:42:35.0296 4512 BrUsbMdm - ok
16:42:35.0298 4512 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:42:35.0305 4512 BrUsbSer - ok
16:42:35.0308 4512 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:42:35.0317 4512 BTHMODEM - ok
16:42:35.0321 4512 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:42:35.0341 4512 bthserv - ok
16:42:35.0344 4512 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:42:35.0365 4512 cdfs - ok
16:42:35.0368 4512 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:42:35.0377 4512 cdrom - ok
16:42:35.0380 4512 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:42:35.0400 4512 CertPropSvc - ok
16:42:35.0402 4512 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:42:35.0412 4512 circlass - ok
16:42:35.0417 4512 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:42:35.0426 4512 CLFS - ok
16:42:35.0434 4512 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:42:35.0440 4512 clr_optimization_v2.0.50727_32 - ok
16:42:35.0445 4512 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:42:35.0451 4512 clr_optimization_v2.0.50727_64 - ok
16:42:35.0460 4512 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:42:35.0467 4512 clr_optimization_v4.0.30319_32 - ok
16:42:35.0469 4512 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:42:35.0477 4512 clr_optimization_v4.0.30319_64 - ok
16:42:35.0480 4512 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:42:35.0487 4512 CmBatt - ok
16:42:35.0489 4512 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:42:35.0496 4512 cmdide - ok
16:42:35.0501 4512 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
16:42:35.0515 4512 CNG - ok
16:42:35.0517 4512 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:42:35.0524 4512 Compbatt - ok
16:42:35.0526 4512 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:42:35.0535 4512 CompositeBus - ok
16:42:35.0537 4512 COMSysApp - ok
16:42:35.0539 4512 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:42:35.0546 4512 crcdisk - ok
16:42:35.0550 4512 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:42:35.0559 4512 CryptSvc - ok
16:42:35.0568 4512 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:42:35.0595 4512 DcomLaunch - ok
16:42:35.0600 4512 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:42:35.0624 4512 defragsvc - ok
16:42:35.0627 4512 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:42:35.0649 4512 DfsC - ok
16:42:35.0654 4512 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:42:35.0663 4512 Dhcp - ok
16:42:35.0716 4512 [ 4F26BB00747D41E7C0FE8EBB2900F862 ] DirMngr D:\Programme\GnuPG\dirmngr.exe
16:42:35.0725 4512 DirMngr ( UnsignedFile.Multi.Generic ) - warning
16:42:35.0725 4512 DirMngr - detected UnsignedFile.Multi.Generic (1)
16:42:35.0730 4512 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:42:35.0761 4512 discache - ok
16:42:35.0764 4512 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:42:35.0773 4512 Disk - ok
16:42:35.0776 4512 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:42:35.0788 4512 Dnscache - ok
16:42:35.0793 4512 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:42:35.0819 4512 dot3svc - ok
16:42:35.0822 4512 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:42:35.0846 4512 DPS - ok
16:42:35.0848 4512 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:42:35.0857 4512 drmkaud - ok
16:42:35.0861 4512 [ 426D951F2DE2D4DFCBE0D1A42BBBA72F ] DTSAudioSvc C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
16:42:35.0871 4512 DTSAudioSvc - ok
16:42:35.0875 4512 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
16:42:35.0885 4512 dtsoftbus01 - ok
16:42:35.0897 4512 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:42:35.0913 4512 DXGKrnl - ok
16:42:35.0917 4512 [ EAFCB4551836FF44EE775CEDDFA7A77E ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys
16:42:35.0926 4512 e1cexpress - ok
16:42:35.0929 4512 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:42:35.0950 4512 EapHost - ok
16:42:35.0975 4512 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:42:36.0001 4512 ebdrv - ok
16:42:36.0004 4512 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:42:36.0013 4512 EFS - ok
16:42:36.0022 4512 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:42:36.0037 4512 ehRecvr - ok
16:42:36.0040 4512 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:42:36.0049 4512 ehSched - ok
16:42:36.0055 4512 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:42:36.0066 4512 elxstor - ok
16:42:36.0068 4512 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:42:36.0076 4512 ErrDev - ok
16:42:36.0082 4512 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:42:36.0105 4512 EventSystem - ok
16:42:36.0109 4512 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:42:36.0130 4512 exfat - ok
16:42:36.0133 4512 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:42:36.0154 4512 fastfat - ok
16:42:36.0163 4512 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:42:36.0180 4512 Fax - ok
16:42:36.0182 4512 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:42:36.0190 4512 fdc - ok
16:42:36.0192 4512 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:42:36.0212 4512 fdPHost - ok
16:42:36.0214 4512 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:42:36.0235 4512 FDResPub - ok
16:42:36.0237 4512 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:42:36.0244 4512 FileInfo - ok
16:42:36.0246 4512 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:42:36.0265 4512 Filetrace - ok
16:42:36.0268 4512 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:42:36.0276 4512 flpydisk - ok
16:42:36.0281 4512 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:42:36.0289 4512 FltMgr - ok
16:42:36.0300 4512 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:42:36.0318 4512 FontCache - ok
16:42:36.0321 4512 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:42:36.0328 4512 FontCache3.0.0.0 - ok
16:42:36.0330 4512 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:42:36.0337 4512 FsDepends - ok
16:42:36.0339 4512 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:42:36.0346 4512 Fs_Rec - ok
16:42:36.0350 4512 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:42:36.0360 4512 fvevol - ok
16:42:36.0363 4512 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:42:36.0369 4512 gagp30kx - ok
16:42:36.0377 4512 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:42:36.0403 4512 gpsvc - ok
16:42:36.0406 4512 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
16:42:36.0412 4512 hamachi - ok
16:42:36.0429 4512 Hamachi2Svc - ok
16:42:36.0431 4512 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:42:36.0439 4512 hcw85cir - ok
16:42:36.0443 4512 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:42:36.0454 4512 HdAudAddService - ok
16:42:36.0458 4512 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:42:36.0468 4512 HDAudBus - ok
16:42:36.0470 4512 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:42:36.0478 4512 HidBatt - ok
16:42:36.0480 4512 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:42:36.0490 4512 HidBth - ok
16:42:36.0492 4512 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:42:36.0501 4512 HidIr - ok
16:42:36.0503 4512 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:42:36.0524 4512 hidserv - ok
16:42:36.0526 4512 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:42:36.0534 4512 HidUsb - ok
16:42:36.0536 4512 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:42:36.0557 4512 hkmsvc - ok
16:42:36.0561 4512 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:42:36.0571 4512 HomeGroupListener - ok
16:42:36.0574 4512 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:42:36.0585 4512 HomeGroupProvider - ok
16:42:36.0587 4512 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:42:36.0594 4512 HpSAMD - ok
16:42:36.0601 4512 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:42:36.0625 4512 HTTP - ok
16:42:36.0627 4512 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:42:36.0634 4512 hwpolicy - ok
16:42:36.0637 4512 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:42:36.0645 4512 i8042prt - ok
16:42:36.0651 4512 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:42:36.0662 4512 iaStor - ok
16:42:36.0667 4512 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
16:42:36.0673 4512 IAStorDataMgrSvc - ok
16:42:36.0678 4512 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:42:36.0688 4512 iaStorV - ok
16:42:36.0691 4512 [ 90D95B25F8413F937A2E155F196D892C ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
16:42:36.0695 4512 ICCS ( UnsignedFile.Multi.Generic ) - warning
16:42:36.0695 4512 ICCS - detected UnsignedFile.Multi.Generic (1)
16:42:36.0697 4512 [ C1010ADD3DDAE1196ED21057AF7B2AAE ] ICCWDT C:\Windows\system32\DRIVERS\ICCWDT.sys
16:42:36.0703 4512 ICCWDT - ok
16:42:36.0711 4512 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:42:36.0724 4512 idsvc - ok
16:42:36.0726 4512 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:42:36.0733 4512 iirsp - ok
16:42:36.0737 4512 [ AD5DF6F4FBBC798636EDC66BFEC7D0DE ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
16:42:36.0743 4512 IJPLMSVC - ok
16:42:36.0752 4512 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:42:36.0780 4512 IKEEXT - ok
16:42:36.0818 4512 [ E83BB47C3446F0497019DE7FD6C6A86F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:42:36.0861 4512 IntcAzAudAddService - ok
16:42:36.0871 4512 [ 832CE330DD987227B7DEA8C03F22AEFA ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
16:42:36.0882 4512 Intel(R) Capability Licensing Service Interface - ok
16:42:36.0885 4512 [ D0E680E2F30FE6611895F2F34324A67C ] Intel(R) PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
16:42:36.0893 4512 Intel(R) PROSet Monitoring Service - ok
16:42:36.0895 4512 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:42:36.0902 4512 intelide - ok
16:42:36.0904 4512 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:42:36.0912 4512 intelppm - ok
16:42:36.0915 4512 [ A01C412699B6F21645B2885C2BAE4454 ] IOMap C:\Windows\system32\drivers\IOMap64.sys
16:42:36.0921 4512 IOMap - ok
16:42:36.0924 4512 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:42:36.0945 4512 IPBusEnum - ok
16:42:36.0947 4512 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:42:36.0967 4512 IpFilterDriver - ok
16:42:36.0973 4512 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:42:36.0987 4512 iphlpsvc - ok
16:42:36.0990 4512 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:42:36.0997 4512 IPMIDRV - ok
16:42:37.0000 4512 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:42:37.0019 4512 IPNAT - ok
16:42:37.0022 4512 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:42:37.0032 4512 IRENUM - ok
16:42:37.0034 4512 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:42:37.0041 4512 isapnp - ok
16:42:37.0044 4512 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:42:37.0053 4512 iScsiPrt - ok
16:42:37.0055 4512 [ 8E4577C6E0D3114170509159DE658907 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
16:42:37.0061 4512 iusb3hcs - ok
16:42:37.0065 4512 [ FE76346E9B57DA575BD1B3BD0CCAD7FF ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
16:42:37.0074 4512 iusb3hub - ok
16:42:37.0082 4512 [ 1008CD90DA2198FFD250298DEB9DF160 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
16:42:37.0094 4512 iusb3xhc - ok
16:42:37.0097 4512 [ C44B44E24B929631D9D7368F5B2B40CF ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
16:42:37.0105 4512 jhi_service - ok
16:42:37.0108 4512 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:42:37.0114 4512 kbdclass - ok
16:42:37.0117 4512 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:42:37.0124 4512 kbdhid - ok
16:42:37.0126 4512 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:42:37.0135 4512 KeyIso - ok
16:42:37.0137 4512 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:42:37.0145 4512 KSecDD - ok
16:42:37.0148 4512 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:42:37.0156 4512 KSecPkg - ok
16:42:37.0158 4512 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:42:37.0178 4512 ksthunk - ok
16:42:37.0182 4512 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:42:37.0207 4512 KtmRm - ok
16:42:37.0212 4512 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:42:37.0236 4512 LanmanServer - ok
16:42:37.0239 4512 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:42:37.0261 4512 LanmanWorkstation - ok
16:42:37.0264 4512 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:42:37.0284 4512 lltdio - ok
16:42:37.0289 4512 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:42:37.0312 4512 lltdsvc - ok
16:42:37.0314 4512 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:42:37.0335 4512 lmhosts - ok
16:42:37.0340 4512 [ 75F29D77B0540FCF47EE3BE000BBABDA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:42:37.0349 4512 LMS - ok
16:42:37.0353 4512 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:42:37.0360 4512 LSI_FC - ok
16:42:37.0363 4512 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:42:37.0370 4512 LSI_SAS - ok
16:42:37.0373 4512 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:42:37.0380 4512 LSI_SAS2 - ok
16:42:37.0382 4512 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:42:37.0390 4512 LSI_SCSI - ok
16:42:37.0393 4512 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:42:37.0413 4512 luafv - ok
16:42:37.0416 4512 [ 922CBAC7B992B9614CAB7122F4BF9406 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
16:42:37.0422 4512 ManyCam - ok
16:42:37.0425 4512 [ 34A42DD7CF525D0D2C5232916496E4B8 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
16:42:37.0433 4512 mcaudrv_simple - ok
16:42:37.0436 4512 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:42:37.0445 4512 Mcx2Svc - ok
16:42:37.0447 4512 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:42:37.0454 4512 megasas - ok
16:42:37.0458 4512 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:42:37.0467 4512 MegaSR - ok
16:42:37.0470 4512 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
16:42:37.0476 4512 MEIx64 - ok
16:42:37.0479 4512 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:42:37.0500 4512 MMCSS - ok
16:42:37.0502 4512 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:42:37.0522 4512 Modem - ok
16:42:37.0524 4512 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:42:37.0533 4512 monitor - ok
16:42:37.0535 4512 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:42:37.0542 4512 mouclass - ok
16:42:37.0544 4512 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:42:37.0552 4512 mouhid - ok
16:42:37.0555 4512 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:42:37.0562 4512 mountmgr - ok
16:42:37.0565 4512 [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:42:37.0573 4512 MozillaMaintenance - ok
16:42:37.0576 4512 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:42:37.0584 4512 mpio - ok
16:42:37.0586 4512 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:42:37.0606 4512 mpsdrv - ok
16:42:37.0614 4512 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:42:37.0642 4512 MpsSvc - ok
16:42:37.0646 4512 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:42:37.0657 4512 MRxDAV - ok
16:42:37.0660 4512 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:42:37.0669 4512 mrxsmb - ok
16:42:37.0673 4512 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:42:37.0682 4512 mrxsmb10 - ok
16:42:37.0685 4512 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:42:37.0693 4512 mrxsmb20 - ok
16:42:37.0695 4512 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:42:37.0702 4512 msahci - ok
16:42:37.0705 4512 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:42:37.0712 4512 msdsm - ok
16:42:37.0715 4512 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:42:37.0725 4512 MSDTC - ok
16:42:37.0729 4512 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:42:37.0749 4512 Msfs - ok
16:42:37.0751 4512 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:42:37.0771 4512 mshidkmdf - ok
16:42:37.0773 4512 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:42:37.0780 4512 msisadrv - ok
16:42:37.0783 4512 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:42:37.0805 4512 MSiSCSI - ok
16:42:37.0807 4512 msiserver - ok
16:42:37.0809 4512 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:42:37.0829 4512 MSKSSRV - ok
16:42:37.0831 4512 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:42:37.0851 4512 MSPCLOCK - ok
16:42:37.0853 4512 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:42:37.0873 4512 MSPQM - ok
16:42:37.0878 4512 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:42:37.0888 4512 MsRPC - ok
16:42:37.0891 4512 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:42:37.0898 4512 mssmbios - ok
16:42:37.0900 4512 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:42:37.0920 4512 MSTEE - ok
16:42:37.0922 4512 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:42:37.0931 4512 MTConfig - ok
16:42:37.0933 4512 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:42:37.0940 4512 Mup - ok
16:42:37.0946 4512 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:42:37.0971 4512 napagent - ok
16:42:37.0976 4512 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:42:37.0988 4512 NativeWifiP - ok
16:42:37.0997 4512 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:42:38.0012 4512 NDIS - ok
16:42:38.0014 4512 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:42:38.0034 4512 NdisCap - ok
16:42:38.0036 4512 [ 270B10B8BD822DD4673781E0A1935DFB ] ndisrd C:\Windows\system32\DRIVERS\ndisrd.sys
16:42:38.0042 4512 ndisrd - ok
16:42:38.0044 4512 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:42:38.0064 4512 NdisTapi - ok
16:42:38.0066 4512 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:42:38.0086 4512 Ndisuio - ok
16:42:38.0089 4512 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:42:38.0109 4512 NdisWan - ok
16:42:38.0112 4512 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:42:38.0131 4512 NDProxy - ok
16:42:38.0134 4512 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:42:38.0154 4512 NetBIOS - ok
16:42:38.0158 4512 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:42:38.0179 4512 NetBT - ok
16:42:38.0181 4512 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:42:38.0189 4512 Netlogon - ok
16:42:38.0195 4512 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:42:38.0218 4512 Netman - ok
16:42:38.0221 4512 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:38.0228 4512 NetMsmqActivator - ok
16:42:38.0231 4512 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:38.0237 4512 NetPipeActivator - ok
16:42:38.0243 4512 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:42:38.0267 4512 netprofm - ok
16:42:38.0270 4512 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:38.0277 4512 NetTcpActivator - ok
16:42:38.0279 4512 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:38.0285 4512 NetTcpPortSharing - ok
16:42:38.0288 4512 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:42:38.0294 4512 nfrd960 - ok
16:42:38.0298 4512 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:42:38.0308 4512 NlaSvc - ok
16:42:38.0311 4512 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:42:38.0331 4512 Npfs - ok
16:42:38.0333 4512 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:42:38.0354 4512 nsi - ok
16:42:38.0356 4512 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:42:38.0376 4512 nsiproxy - ok
16:42:38.0391 4512 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:42:38.0411 4512 Ntfs - ok
16:42:38.0414 4512 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:42:38.0433 4512 Null - ok
16:42:38.0437 4512 [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
16:42:38.0445 4512 NVHDA - ok
16:42:38.0533 4512 [ 0A2F27B5BCC45B64E152DD6AE0815198 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:42:38.0625 4512 nvlddmkm - ok
16:42:38.0630 4512 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:42:38.0638 4512 nvraid - ok
16:42:38.0641 4512 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:42:38.0649 4512 nvstor - ok
16:42:38.0658 4512 [ 574087EA9105F23FB522A4FDDD5292D9 ] nvsvc C:\Windows\system32\nvvsvc.exe
16:42:38.0672 4512 nvsvc - ok
16:42:38.0684 4512 [ ABA5A88740635D37A2B6CEB27DBC738A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:42:38.0700 4512 nvUpdatusService - ok
16:42:38.0703 4512 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:42:38.0711 4512 nv_agp - ok
16:42:38.0718 4512 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:42:38.0726 4512 ohci1394 - ok
16:42:38.0731 4512 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:42:38.0743 4512 p2pimsvc - ok
16:42:38.0748 4512 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:42:38.0761 4512 p2psvc - ok
16:42:38.0764 4512 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:42:38.0772 4512 Parport - ok
16:42:38.0775 4512 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:42:38.0782 4512 partmgr - ok
16:42:38.0785 4512 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:42:38.0799 4512 PcaSvc - ok
16:42:38.0802 4512 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:42:38.0810 4512 pci - ok
16:42:38.0812 4512 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:42:38.0819 4512 pciide - ok
16:42:38.0822 4512 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:42:38.0831 4512 pcmcia - ok
16:42:38.0833 4512 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:42:38.0840 4512 pcw - ok
16:42:38.0846 4512 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:42:38.0870 4512 PEAUTH - ok
16:42:38.0891 4512 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:42:38.0901 4512 PerfHost - ok
16:42:38.0919 4512 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:42:38.0954 4512 pla - ok
16:42:38.0959 4512 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:42:38.0973 4512 PlugPlay - ok
16:42:38.0975 4512 PnkBstrA - ok
16:42:38.0977 4512 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:42:38.0985 4512 PNRPAutoReg - ok
16:42:38.0989 4512 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:42:38.0999 4512 PNRPsvc - ok
16:42:39.0007 4512 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:42:39.0032 4512 PolicyAgent - ok
16:42:39.0036 4512 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:42:39.0059 4512 Power - ok
16:42:39.0062 4512 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:42:39.0082 4512 PptpMiniport - ok
16:42:39.0084 4512 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:42:39.0093 4512 Processor - ok
16:42:39.0097 4512 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:42:39.0107 4512 ProfSvc - ok
16:42:39.0109 4512 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:42:39.0118 4512 ProtectedStorage - ok
16:42:39.0121 4512 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:42:39.0141 4512 Psched - ok
16:42:39.0155 4512 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:42:39.0174 4512 ql2300 - ok
16:42:39.0177 4512 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:42:39.0185 4512 ql40xx - ok
16:42:39.0188 4512 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:42:39.0201 4512 QWAVE - ok
16:42:39.0204 4512 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:42:39.0215 4512 QWAVEdrv - ok
16:42:39.0216 4512 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:42:39.0237 4512 RasAcd - ok
16:42:39.0240 4512 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:42:39.0260 4512 RasAgileVpn - ok
16:42:39.0263 4512 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:42:39.0285 4512 RasAuto - ok
16:42:39.0289 4512 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:42:39.0308 4512 Rasl2tp - ok
16:42:39.0313 4512 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:42:39.0337 4512 RasMan - ok
16:42:39.0340 4512 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:42:39.0360 4512 RasPppoe - ok
16:42:39.0363 4512 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:42:39.0383 4512 RasSstp - ok
16:42:39.0389 4512 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:42:39.0410 4512 rdbss - ok
16:42:39.0413 4512 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:42:39.0422 4512 rdpbus - ok
16:42:39.0424 4512 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:42:39.0444 4512 RDPCDD - ok
16:42:39.0447 4512 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:42:39.0467 4512 RDPENCDD - ok
16:42:39.0470 4512 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:42:39.0490 4512 RDPREFMP - ok
16:42:39.0494 4512 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:42:39.0501 4512 RdpVideoMiniport - ok
16:42:39.0505 4512 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:42:39.0514 4512 RDPWD - ok
16:42:39.0518 4512 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:42:39.0526 4512 rdyboost - ok
16:42:39.0529 4512 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:42:39.0550 4512 RemoteAccess - ok
16:42:39.0554 4512 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:42:39.0577 4512 RemoteRegistry - ok
16:42:39.0580 4512 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:42:39.0601 4512 RpcEptMapper - ok
16:42:39.0603 4512 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:42:39.0613 4512 RpcLocator - ok
16:42:39.0621 4512 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:42:39.0645 4512 RpcSs - ok
16:42:39.0648 4512 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:42:39.0668 4512 rspndr - ok
16:42:39.0671 4512 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:42:39.0679 4512 SamSs - ok
16:42:39.0683 4512 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
16:42:39.0689 4512 SASDIFSV - ok
16:42:39.0691 4512 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
16:42:39.0697 4512 SASKUTIL - ok
16:42:39.0700 4512 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:42:39.0708 4512 sbp2port - ok
16:42:39.0711 4512 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:42:39.0734 4512 SCardSvr - ok
16:42:39.0737 4512 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:42:39.0756 4512 scfilter - ok
16:42:39.0766 4512 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:42:39.0796 4512 Schedule - ok
16:42:39.0799 4512 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:42:39.0819 4512 SCPolicySvc - ok
16:42:39.0822 4512 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:42:39.0832 4512 SDRSVC - ok
16:42:39.0835 4512 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:42:39.0854 4512 secdrv - ok
16:42:39.0857 4512 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:42:39.0877 4512 seclogon - ok
16:42:39.0880 4512 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:42:39.0901 4512 SENS - ok
16:42:39.0903 4512 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:42:39.0913 4512 SensrSvc - ok
16:42:39.0915 4512 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:42:39.0923 4512 Serenum - ok
16:42:39.0925 4512 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:42:39.0933 4512 Serial - ok
16:42:39.0935 4512 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:42:39.0943 4512 sermouse - ok
16:42:39.0948 4512 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:42:39.0970 4512 SessionEnv - ok
16:42:39.0972 4512 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:42:39.0981 4512 sffdisk - ok
16:42:39.0983 4512 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:42:39.0992 4512 sffp_mmc - ok
16:42:39.0994 4512 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:42:40.0003 4512 sffp_sd - ok
16:42:40.0005 4512 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:42:40.0013 4512 sfloppy - ok
16:42:40.0017 4512 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:42:40.0041 4512 SharedAccess - ok
16:42:40.0046 4512 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:42:40.0069 4512 ShellHWDetection - ok
16:42:40.0071 4512 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:42:40.0078 4512 SiSRaid2 - ok
16:42:40.0081 4512 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:42:40.0088 4512 SiSRaid4 - ok
16:42:40.0092 4512 [ 0A0A0183711EFB04F9BCC32BB44471F2 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:42:40.0099 4512 SkypeUpdate - ok
16:42:40.0102 4512 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:42:40.0122 4512 Smb - ok
16:42:40.0126 4512 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:42:40.0135 4512 SNMPTRAP - ok
16:42:40.0137 4512 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:42:40.0144 4512 spldr - ok
16:42:40.0150 4512 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:42:40.0164 4512 Spooler - ok
16:42:40.0194 4512 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:42:40.0247 4512 sppsvc - ok
16:42:40.0250 4512 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:42:40.0273 4512 sppuinotify - ok
16:42:40.0279 4512 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:42:40.0289 4512 srv - ok
16:42:40.0293 4512 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:42:40.0303 4512 srv2 - ok
16:42:40.0307 4512 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:42:40.0315 4512 srvnet - ok
16:42:40.0319 4512 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:42:40.0341 4512 SSDPSRV - ok
16:42:40.0344 4512 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:42:40.0366 4512 SstpSvc - ok
16:42:40.0368 4512 Steam Client Service - ok
16:42:40.0375 4512 [ 78216A10BF8B200890A88D8820F33F14 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:42:40.0384 4512 Stereo Service - ok
16:42:40.0388 4512 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:42:40.0395 4512 stexstor - ok
16:42:40.0404 4512 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:42:40.0422 4512 stisvc - ok
16:42:40.0425 4512 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
16:42:40.0431 4512 swenum - ok
16:42:40.0437 4512 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:42:40.0463 4512 swprv - ok
16:42:40.0478 4512 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:42:40.0506 4512 SysMain - ok
16:42:40.0509 4512 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:42:40.0522 4512 TabletInputService - ok
16:42:40.0526 4512 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:42:40.0550 4512 TapiSrv - ok
16:42:40.0552 4512 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:42:40.0574 4512 TBS - ok
16:42:40.0591 4512 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:42:40.0613 4512 Tcpip - ok
16:42:40.0630 4512 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:42:40.0651 4512 TCPIP6 - ok
16:42:40.0655 4512 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:42:40.0663 4512 tcpipreg - ok
16:42:40.0665 4512 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:42:40.0673 4512 TDPIPE - ok
16:42:40.0675 4512 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:42:40.0683 4512 TDTCP - ok
16:42:40.0686 4512 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:42:40.0706 4512 tdx - ok
16:42:40.0708 4512 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
16:42:40.0715 4512 TermDD - ok
16:42:40.0723 4512 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:42:40.0747 4512 TermService - ok
16:42:40.0750 4512 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:42:40.0762 4512 Themes - ok
16:42:40.0764 4512 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:42:40.0784 4512 THREADORDER - ok
16:42:40.0787 4512 [ 199C2E87D9A5EC58D0BCD94E893BF629 ] TIEHDUSB C:\Windows\system32\DRIVERS\tiehdusb.sys
16:42:40.0795 4512 TIEHDUSB - ok
16:42:40.0798 4512 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:42:40.0819 4512 TrkWks - ok
16:42:40.0824 4512 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:42:40.0845 4512 TrustedInstaller - ok
16:42:40.0849 4512 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:42:40.0868 4512 tssecsrv - ok
16:42:40.0870 4512 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:42:40.0879 4512 TsUsbFlt - ok
16:42:40.0881 4512 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:42:40.0901 4512 tunnel - ok
16:42:40.0904 4512 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:42:40.0911 4512 uagp35 - ok
16:42:40.0917 4512 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:42:40.0939 4512 udfs - ok
16:42:40.0943 4512 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:42:40.0953 4512 UI0Detect - ok
16:42:40.0956 4512 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:42:40.0962 4512 uliagpkx - ok
16:42:40.0965 4512 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:42:40.0973 4512 umbus - ok
16:42:40.0975 4512 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:42:40.0983 4512 UmPass - ok
16:42:40.0988 4512 [ 193AD338F2A64D17300AD640ADFA5D0A ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:42:40.0998 4512 UNS - ok
16:42:41.0003 4512 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:42:41.0028 4512 upnphost - ok
16:42:41.0032 4512 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
16:42:41.0035 4512 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
16:42:41.0035 4512 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
16:42:41.0038 4512 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
16:42:41.0048 4512 usbaudio - ok
16:42:41.0050 4512 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:42:41.0059 4512 usbccgp - ok
16:42:41.0062 4512 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:42:41.0071 4512 usbcir - ok
16:42:41.0074 4512 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
16:42:41.0082 4512 usbehci - ok
16:42:41.0086 4512 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:42:41.0095 4512 usbhub - ok
16:42:41.0098 4512 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:42:41.0106 4512 usbohci - ok
16:42:41.0108 4512 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:42:41.0118 4512 usbprint - ok
16:42:41.0121 4512 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:42:41.0130 4512 usbscan - ok
16:42:41.0133 4512 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:42:41.0141 4512 USBSTOR - ok
16:42:41.0145 4512 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:42:41.0152 4512 usbuhci - ok
16:42:41.0154 4512 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:42:41.0176 4512 UxSms - ok
16:42:41.0179 4512 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:42:41.0187 4512 VaultSvc - ok
16:42:41.0189 4512 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:42:41.0196 4512 vdrvroot - ok
16:42:41.0203 4512 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:42:41.0228 4512 vds - ok
16:42:41.0230 4512 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:42:41.0240 4512 vga - ok
16:42:41.0242 4512 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:42:41.0262 4512 VgaSave - ok
16:42:41.0266 4512 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:42:41.0274 4512 vhdmp - ok
16:42:41.0277 4512 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:42:41.0283 4512 viaide - ok
16:42:41.0286 4512 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:42:41.0293 4512 volmgr - ok
16:42:41.0298 4512 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:42:41.0308 4512 volmgrx - ok
16:42:41.0312 4512 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:42:41.0321 4512 volsnap - ok
16:42:41.0324 4512 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:42:41.0332 4512 vsmraid - ok
16:42:41.0346 4512 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:42:41.0381 4512 VSS - ok
16:42:41.0383 4512 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:42:41.0392 4512 vwifibus - ok
16:42:41.0394 4512 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:42:41.0404 4512 vwififlt - ok
16:42:41.0407 4512 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:42:41.0417 4512 vwifimp - ok
16:42:41.0422 4512 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:42:41.0446 4512 W32Time - ok
16:42:41.0449 4512 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:42:41.0458 4512 WacomPen - ok
16:42:41.0461 4512 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:42:41.0481 4512 WANARP - ok
16:42:41.0483 4512 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:42:41.0502 4512 Wanarpv6 - ok
16:42:41.0522 4512 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:42:41.0550 4512 wbengine - ok
16:42:41.0553 4512 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:42:41.0567 4512 WbioSrvc - ok
16:42:41.0573 4512 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:42:41.0588 4512 wcncsvc - ok
16:42:41.0591 4512 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:42:41.0600 4512 WcsPlugInService - ok
16:42:41.0602 4512 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:42:41.0609 4512 Wd - ok
16:42:41.0616 4512 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:42:41.0630 4512 Wdf01000 - ok
16:42:41.0632 4512 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:42:41.0645 4512 WdiServiceHost - ok
16:42:41.0647 4512 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:42:41.0659 4512 WdiSystemHost - ok
16:42:41.0664 4512 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:42:41.0679 4512 WebClient - ok
16:42:41.0682 4512 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:42:41.0706 4512 Wecsvc - ok
16:42:41.0709 4512 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:42:41.0732 4512 wercplsupport - ok
16:42:41.0734 4512 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:42:41.0757 4512 WerSvc - ok
16:42:41.0759 4512 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:42:41.0779 4512 WfpLwf - ok
16:42:41.0781 4512 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:42:41.0788 4512 WIMMount - ok
16:42:41.0790 4512 WinDefend - ok
16:42:41.0793 4512 WinHttpAutoProxySvc - ok
16:42:41.0801 4512 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:42:41.0823 4512 Winmgmt - ok
16:42:41.0842 4512 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:42:41.0880 4512 WinRM - ok
16:42:41.0891 4512 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:42:41.0911 4512 Wlansvc - ok
16:42:41.0931 4512 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:42:41.0962 4512 wlidsvc - ok
16:42:41.0965 4512 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:42:41.0973 4512 WmiAcpi - ok
16:42:41.0977 4512 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:42:41.0986 4512 wmiApSrv - ok
16:42:41.0989 4512 WMPNetworkSvc - ok
16:42:41.0991 4512 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:42:42.0000 4512 WPCSvc - ok
16:42:42.0003 4512 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:42:42.0013 4512 WPDBusEnum - ok
16:42:42.0016 4512 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:42:42.0035 4512 ws2ifsl - ok
16:42:42.0038 4512 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
16:42:42.0050 4512 wscsvc - ok
16:42:42.0051 4512 WSearch - ok
16:42:42.0073 4512 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:42:42.0107 4512 wuauserv - ok
16:42:42.0110 4512 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:42:42.0118 4512 WudfPf - ok
16:42:42.0121 4512 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:42:42.0131 4512 WUDFRd - ok
16:42:42.0134 4512 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:42:42.0144 4512 wudfsvc - ok
16:42:42.0147 4512 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:42:42.0161 4512 WwanSvc - ok
16:42:42.0167 4512 ================ Scan global ===============================
16:42:42.0169 4512 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:42:42.0173 4512 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
16:42:42.0178 4512 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
16:42:42.0182 4512 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:42:42.0188 4512 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:42:42.0191 4512 [Global] - ok
16:42:42.0192 4512 ================ Scan MBR ==================================
16:42:42.0193 4512 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:42:42.0280 4512 \Device\Harddisk0\DR0 - ok
16:42:42.0282 4512 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
16:42:42.0348 4512 \Device\Harddisk1\DR1 - ok
16:42:42.0348 4512 ================ Scan VBR ==================================
16:42:42.0352 4512 [ 0BF129E11CC6F549ACA0E26832209CFE ] \Device\Harddisk0\DR0\Partition1
16:42:42.0353 4512 \Device\Harddisk0\DR0\Partition1 - ok
16:42:42.0356 4512 [ 46E387750787206603A327DE2C1E5ED1 ] \Device\Harddisk0\DR0\Partition2
16:42:42.0358 4512 \Device\Harddisk0\DR0\Partition2 - ok
16:42:42.0360 4512 [ C3CB7AE2DF05C2D24BCE32F479736240 ] \Device\Harddisk1\DR1\Partition1
16:42:42.0362 4512 \Device\Harddisk1\DR1\Partition1 - ok
16:42:42.0362 4512 ============================================================
16:42:42.0362 4512 Scan finished
16:42:42.0362 4512 ============================================================
16:42:42.0370 6900 Detected object count: 5
16:42:42.0370 6900 Actual detected object count: 5
16:42:58.0737 6900 ASGT ( UnsignedFile.Multi.Generic ) - skipped by user
16:42:58.0738 6900 ASGT ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:42:58.0739 6900 AsusFanControlService ( UnsignedFile.Multi.Generic ) - skipped by user
16:42:58.0739 6900 AsusFanControlService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:42:58.0740 6900 DirMngr ( UnsignedFile.Multi.Generic ) - skipped by user
16:42:58.0740 6900 DirMngr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:42:58.0741 6900 ICCS ( UnsignedFile.Multi.Generic ) - skipped by user
16:42:58.0741 6900 ICCS ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:42:58.0742 6900 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
16:42:58.0742 6900 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:43:11.0993 3740 Deinitialize success
|
|
27.02.2013, 17:38
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Fehlalarm durch andere Virenscanner? JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Im Anschluss: adwCleaner - Toolbars und ungewollte Start-/Suchseiten entfernen Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Danach eine Kontrolle mit OTL bitte:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Fehlalarm durch andere Virenscanner? |
| andere, avast, bewusst, bild, dateien, durchgeführt, einfach, ergebnis, erhalte, erhalten, fehlalarm, funde, gestartet, guten, malewarebytes, parallel, probleme, programme, prozesse, prüfung, scan, scanner, virenprüfung, virenscan, virenscanner |
Fehlalarm durch andere Virenscanner?
Linear-Darstellung
