| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normalWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
11.03.2013, 18:00
| #1 |
 |  Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal Hey Leute, ich habe noch keinen Thread zu meinem Thema gefunden  Wäre nett, wenn mir jemand helfen mag. Also: Wenn ich Youtube-Videos abspiele, dann stockt mein Laptop manchmal, ein lautes Störgeräusch ertönt und nichts geht mehr. Nach über einer Minute kann ich den Computer wieder benutzen.Außerdem: Manchmal stockt der PC zwar ohne Störgeräusch, dann kann ich den Mauszeiger aber auch nicht mehr bewegen. Danach kann ich das Keyboard nicht benutzen, nur €-Zeichen und andere Sonderzeichen. Geht erst wieder nach dem Neustart. Letztens ist er auch mal abgestürzt und ein blauer Bildschirm erschien (es kam der Begriff "dump memory" vor). Ich habe einen ASUS X5DIJ, Betriebssystem Windows 7 Home Premium Service Pack 1. Der Laptop ist 3 Jahre alt. Avira hat nix gefunden. Mein PC ist zudem sehr langsam, aber ich weiß nicht, wie ich ihn schneller machen könnte. Super wäre es, wenn du mir dabei auch helfen könntest Kurz: Mag jemand vielleicht ein edler Cyber-Ritter eine holde Dame aus ihrer Verzweiflung retten? Ihm gebürt mein ewiger Dank Herzlichst magnolia  |
|
13.03.2013, 12:47
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal Hallo und
__________________ Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
Note: Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards. Erstmal eine Kontrolle mit OTL bitte:
__________________ |
|
13.03.2013, 15:11
| #3 |
| | Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal Vielen Dank!
__________________ Code:
ATTFilter OTL logfile created on: 13.03.2013 14:42:05 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Asus\Desktop 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,97 Gb Total Physical Memory | 1,38 Gb Available Physical Memory | 34,81% Memory free 7,93 Gb Paging File | 4,69 Gb Available in Paging File | 59,19% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 74,52 Gb Total Space | 18,15 Gb Free Space | 24,36% Space Free | Partition Type: NTFS Drive D: | 204,03 Gb Total Space | 18,61 Gb Free Space | 9,12% Space Free | Partition Type: NTFS Drive G: | 1,83 Gb Total Space | 1,64 Gb Free Space | 89,54% Space Free | Partition Type: FAT Computer Name: ASUS-PC | User Name: Asus | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - File not found PRC - C:\Users\Asus\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_171.exe (Adobe Systems, Inc.) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation) PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation) PRC - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe (Cisco Systems, Inc.) PRC - C:\Program Files (x86)\OpenOffice.org 3\program\scalc.exe (OpenOffice.org) PRC - C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin (OpenOffice.org) PRC - C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe (OpenOffice.org) PRC - C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe () PRC - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe () PRC - C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe () PRC - C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe (ASUSTek Computer Inc.) PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe (ASUS) PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe () PRC - C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe () PRC - C:\Program Files\ATKGFNEX\GFNEXSrv.exe () ========== Modules (No Company Name) ========== MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll () MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll () MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll () MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll () MOD - C:\Program Files (x86)\OpenOffice.org 3\program\libxslt.dll () MOD - C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll () MOD - C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe () MOD - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe () MOD - C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe () MOD - C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe () MOD - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll () MOD - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll () ========== Services (SafeList) ========== SRV:64bit: - (SolutoLauncherService) -- C:\Program Files\Soluto\SolutoLauncherService.exe (Soluto) SRV:64bit: - (SolutoService) -- C:\Program Files\Soluto\SolutoService.exe (Soluto) SRV:64bit: - (SolutoRemoteService) -- C:\Program Files\Soluto\SolutoRemoteService.exe (Soluto) SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation) SRV:64bit: - (AFBAgent) -- C:\Windows\SysNative\FBAgent.exe (ASUSTeK Computer Inc.) SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SRV:64bit: - (ATKGFNEXSrv) -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe () SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation) SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation) SRV - (OpenVPNService) -- C:\Program Files (x86)\HMA! Pro VPN\bin\openvpnserv.exe () SRV - (CVPND) -- C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe (Cisco Systems, Inc.) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (ASLDRService) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe (ASUS) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (ADSMService) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe (ASUSTek Computer Inc.) SRV - (MSCSPTISRV) -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation) SRV - (SPTISRV) -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation) SRV - (PACSPTISVR) -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe () ========== Driver Services (SafeList) ========== DRV:64bit: - (Soluto) -- C:\Windows\SysNative\drivers\Soluto.sys (Soluto LTD.) DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation) DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation) DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation) DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation) DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation) DRV:64bit: - (tap0901) -- C:\Windows\SysNative\drivers\tap0901.sys (The OpenVPN Project) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (CVPNDRVA) -- C:\Windows\SysNative\drivers\CVPNDRVA.sys () DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation) DRV:64bit: - (AsDsm) -- C:\Windows\SysNative\drivers\AsDsm.sys (ASUSTek Computer Inc) DRV:64bit: - (CVirtA) -- C:\Windows\SysNative\drivers\CVirtA64.sys (Cisco Systems, Inc.) DRV:64bit: - (ETD) -- C:\Windows\SysNative\drivers\ETD.sys (ELAN Microelectronic Corp.) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.) DRV:64bit: - (L1E) -- C:\Windows\SysNative\drivers\L1E62x64.sys (Atheros Communications, Inc.) DRV:64bit: - (AmUStor) -- C:\Windows\SysNative\drivers\AmUStor.sys (Alcor Micro, Corp.) DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation) DRV:64bit: - (kbfiltr) -- C:\Windows\SysNative\drivers\kbfiltr.sys ( ) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (VIAHdAudAddService) -- C:\Windows\SysNative\drivers\viahduaa.sys (VIA Technologies, Inc.) DRV:64bit: - (ewusbnet) -- C:\Windows\SysNative\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (hwusbfake) -- C:\Windows\SysNative\drivers\ewusbfake.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (lullaby) -- C:\Windows\SysNative\drivers\lullaby.sys (Windows (R) Win 7 DDK provider) DRV:64bit: - (SiSGbeLH) -- C:\Windows\SysNative\drivers\SiSG664.sys (Silicon Integrated Systems Corp.) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (SNP2UVC) -- C:\Windows\SysNative\drivers\snp2uvc.sys () DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.) DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ATK64AMD.sys (ASUS) DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions) DRV:64bit: - (hwdatacard) -- C:\Windows\SysNative\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.) DRV:64bit: - (DNE) -- C:\Windows\SysNative\drivers\dne64x.sys (Deterministic Networks, Inc.) DRV:64bit: - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation) DRV:64bit: - (ASMMAP64) -- C:\Program Files\ATKGFNEX\ASMMAP64.sys () DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64} IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = hxxp://search.babylon.com/?q={searchTerms}&affID=111304&tt=290412_4_bst&babsrc=SP_ss&mntrId=7c02b03600000000000000fff2134b42 IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\..\SearchScopes\{3C91F9AE-DF32-41A4-8F59-1391742B7D6C}: "URL" = hxxp://search.avg.com/?d=4e2ee956&i=23&tp=chrome&q={searchTerms}&lng={language}&nt=1 IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ASUT_de IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050 IE - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultthis.engineName: "Search" FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.order.1: "Search the web (Babylon)" FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/" FF - prefs.js..extensions.enabledAddons: %7B36e61c98-5a87-4eee-bace-8fed1aef6d79%7D:0.9 FF - prefs.js..extensions.enabledAddons: socialfixer%40mattkruse.com:7.501 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2 FF - prefs.js..extensions.enabledItems: {4176DFF4-4698-11DE-BEEB-45DA55D89593}:0.8.11 FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.5 FF - prefs.js..extensions.enabledItems: elemhidehelper@adblockplus.org:1.1.1 FF - prefs.js..extensions.enabledItems: treestyletab@piro.sakura.ne.jp:0.11.2011021901 FF - prefs.js..extensions.enabledItems: {71328583-3CA7-4809-B4BA-570A85818FBB}:0.6.3 FF - prefs.js..extensions.enabledItems: cache@status.org:0.7.9 FF - prefs.js..extensions.enabledItems: {36e61c98-5a87-4eee-bace-8fed1aef6d79}:0.6 FF - prefs.js..keyword.URL: "hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=" FF - prefs.js..network.proxy.type: 0 FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_171.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.03.10 04:07:07 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013.02.03 20:03:38 | 000,000,000 | ---D | M] [2010.10.17 13:29:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\Extensions [2013.02.15 20:24:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\Firefox\Profiles\fwl4d9pq.default\extensions [2012.12.28 00:31:35 | 000,000,000 | ---D | M] ("ColorfulTabs") -- C:\Users\Asus\AppData\Roaming\mozilla\Firefox\Profiles\fwl4d9pq.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2011.02.09 23:32:27 | 000,000,000 | ---D | M] (CacheViewer) -- C:\Users\Asus\AppData\Roaming\mozilla\Firefox\Profiles\fwl4d9pq.default\extensions\{71328583-3CA7-4809-B4BA-570A85818FBB} [2012.07.24 11:52:11 | 000,000,000 | ---D | M] (Avira SearchFree Toolbar plus Web Protection) -- C:\Users\Asus\AppData\Roaming\mozilla\Firefox\Profiles\fwl4d9pq.default\extensions\toolbar@ask.com [2011.05.03 02:25:24 | 000,021,992 | ---- | M] () (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\firefox\profiles\fwl4d9pq.default\extensions\cache@status.org.xpi [2012.12.12 22:39:57 | 000,009,505 | ---- | M] () (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\firefox\profiles\fwl4d9pq.default\extensions\clipconverter@clipconverter.cc.xpi [2012.07.06 15:00:56 | 000,123,385 | ---- | M] () (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\firefox\profiles\fwl4d9pq.default\extensions\elemhidehelper@adblockplus.org.xpi [2013.02.11 00:02:00 | 000,155,983 | ---- | M] () (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\firefox\profiles\fwl4d9pq.default\extensions\socialfixer@mattkruse.com.xpi [2011.05.28 22:24:49 | 000,205,682 | ---- | M] () (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\firefox\profiles\fwl4d9pq.default\extensions\{36e61c98-5a87-4eee-bace-8fed1aef6d79}.xpi [2012.12.17 21:38:36 | 000,222,578 | ---- | M] () (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\firefox\profiles\fwl4d9pq.default\extensions\{4176DFF4-4698-11DE-BEEB-45DA55D89593}.xpi [2012.11.24 16:45:38 | 000,269,905 | ---- | M] () (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\firefox\profiles\fwl4d9pq.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2013.02.15 20:24:06 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\Asus\AppData\Roaming\mozilla\firefox\profiles\fwl4d9pq.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011.01.16 12:01:32 | 000,000,873 | ---- | M] () -- C:\Users\Asus\AppData\Roaming\mozilla\firefox\profiles\fwl4d9pq.default\searchplugins\conduit.xml [2012.05.16 22:03:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2013.03.10 04:07:07 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2013.02.05 23:14:45 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2012.05.09 23:23:24 | 000,002,355 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml [2013.02.05 23:14:45 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2013.02.05 23:14:45 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2013.02.05 23:14:45 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2013.02.05 23:14:45 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2013.02.05 23:14:45 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (TBSB02188 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\Babylon Toolbar\tbcore3.dll () O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {41B62AD3-5D43-40D1-9D43-F3539C1DB452} - C:\Program Files (x86)\Babylon Toolbar\tbcore3.dll () O3 - HKLM\..\Toolbar: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found. O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (AlcorMicro Co., Ltd.) O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [ADSMTray] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe (ASUSTek Computer Inc.) O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (ASUS) O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKU\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0 O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Asus\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html File not found O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Asus\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html File not found O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{52ADBC23-9B62-4D04-9107-E91F1E967E9E}: DhcpNameServer = 139.7.30.126 139.7.30.125 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C5FECA72-5375-4139-B22C-CB039CC9779B}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F2A672B3-E521-4EF2-9266-D2C92AEA1C81}: DhcpNameServer = 139.7.30.126 139.7.30.125 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (c:\windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (c:\program files\soluto\soluto.exe /userinit) - c:\program files\soluto\soluto.exe (Soluto) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{69503c3b-f759-11df-aa39-20cf3018582c}\Shell - "" = AutoRun O33 - MountPoints2\{69503c3b-f759-11df-aa39-20cf3018582c}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{695046d4-f759-11df-aa39-20cf3018582c}\Shell - "" = AutoRun O33 - MountPoints2\{695046d4-f759-11df-aa39-20cf3018582c}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{69504749-f759-11df-aa39-20cf3018582c}\Shell - "" = AutoRun O33 - MountPoints2\{69504749-f759-11df-aa39-20cf3018582c}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{69504756-f759-11df-aa39-20cf3018582c}\Shell - "" = AutoRun O33 - MountPoints2\{69504756-f759-11df-aa39-20cf3018582c}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{6a410d26-ea6a-11df-8852-20cf3018582c}\Shell - "" = AutoRun O33 - MountPoints2\{6a410d26-ea6a-11df-8852-20cf3018582c}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\G\Shell - "" = AutoRun O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.03.13 14:40:12 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Asus\Desktop\OTL.exe [2013.03.13 04:53:49 | 000,000,000 | ---D | C] -- C:\Users\Asus\.tuxguitar-1.2 [2013.03.13 04:52:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2013.03.13 04:52:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2013.03.13 04:51:44 | 000,782,240 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll [2013.03.13 04:51:43 | 000,861,088 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll [2013.03.13 04:51:43 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe [2013.03.13 04:51:12 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe [2013.03.13 04:51:12 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe [2013.03.13 04:51:12 | 000,095,648 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll [2013.03.13 04:50:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2013.03.13 04:49:04 | 000,896,928 | ---- | C] (Oracle Corporation) -- C:\Users\Asus\Desktop\jxpiinstall.exe [2013.03.13 04:47:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuxGuitar [2013.03.13 04:47:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuxGuitar [2013.03.13 04:41:24 | 007,715,210 | ---- | C] (Herac) -- C:\Users\Asus\Desktop\tuxguitar-1.2-windows-x86-installer.exe [2013.03.12 00:01:19 | 000,000,000 | ---D | C] -- C:\Users\Asus\AppData\Roaming\pdfforge [2013.03.12 00:01:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator [2013.03.12 00:01:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PDFCreator [2013.03.12 00:00:43 | 000,000,000 | ---D | C] -- C:\Users\Asus\AppData\Local\Programs [2013.03.11 23:55:49 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.03.08 16:25:26 | 000,000,000 | ---D | C] -- C:\Users\Asus\AppData\Local\{F240AD28-B592-42FB-9E10-1D9565BA212E} [2013.03.01 01:08:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2013.03.01 01:08:41 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype [2013.03.01 01:08:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2013.03.01 00:25:17 | 000,000,000 | ---D | C] -- C:\Users\Asus\Desktop\Kunst Fotos [2013.02.27 01:16:11 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll [2013.02.27 01:16:11 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll [2013.02.27 01:16:11 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll [2013.02.27 01:16:10 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll [2013.02.27 01:16:01 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll [2013.02.27 01:16:01 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll [2013.02.27 01:15:55 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll [2013.02.27 01:15:55 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll [2013.02.27 01:15:55 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll [2013.02.27 01:15:55 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll [2013.02.27 01:15:55 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll [2013.02.27 01:15:55 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll [2013.02.27 01:15:55 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll [2013.02.27 01:15:55 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll [2013.02.27 01:15:54 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll [2013.02.27 01:15:54 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll [2013.02.27 01:15:54 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll [2013.02.27 01:15:53 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll [2013.02.27 01:15:53 | 001,504,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll [2013.02.27 01:15:53 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll [2013.02.27 01:15:53 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll [2013.02.27 01:15:53 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll [2013.02.27 01:15:53 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll [2013.02.27 01:15:53 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll [2013.02.27 01:15:53 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll [2013.02.27 01:15:53 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll [2013.02.27 01:15:53 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll [2013.02.27 01:15:53 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll [2013.02.27 01:15:53 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll [2013.02.27 01:15:53 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll [2013.02.27 01:15:53 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll [2013.02.27 01:15:53 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll [2013.02.27 01:15:53 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll [2013.02.27 01:15:53 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll [2013.02.27 01:15:52 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll [2013.02.27 01:15:52 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll [2013.02.27 01:15:52 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll [2013.02.27 01:15:51 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll [2013.02.27 01:15:51 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll [2013.02.27 01:15:50 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll [2013.02.27 01:15:50 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2013.02.19 21:55:31 | 000,000,000 | ---D | C] -- C:\Users\Asus\Desktop\papa fotos handy [2013.02.19 21:51:38 | 000,000,000 | ---D | C] -- C:\Users\Asus\Desktop\Brenna 13 [2013.02.18 22:47:11 | 000,000,000 | ---D | C] -- C:\Users\Asus\Desktop\Les Amours Imaginaires 2010 [DVDRip.XviD-miguel] [2013.02.18 22:46:17 | 000,000,000 | ---D | C] -- C:\Users\Asus\Desktop\La Double Vie de Veronique [2013.02.18 22:42:14 | 000,000,000 | ---D | C] -- C:\Users\Asus\Desktop\Breakfast on Pluto [2013.02.16 15:14:14 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013.02.16 15:14:14 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013.02.16 15:14:11 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013.02.16 15:14:11 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013.02.16 15:14:11 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013.02.16 15:14:11 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013.02.16 15:14:10 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013.02.16 15:14:10 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013.02.16 15:14:09 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013.02.16 15:14:08 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013.02.16 15:14:08 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013.02.16 15:14:07 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013.02.16 15:14:05 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013.02.16 15:14:05 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013.02.16 15:14:05 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013.02.13 20:50:34 | 005,553,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013.02.13 20:50:33 | 003,967,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2013.02.13 20:50:33 | 003,913,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2013.02.13 20:49:53 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll [2013.02.13 20:49:52 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe [2013.02.13 20:49:52 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll [2013.02.13 20:49:52 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe [2013.02.13 20:49:52 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll [2013.02.13 20:49:51 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe [2013.02.13 20:49:45 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS [2008.08.12 05:45:20 | 000,155,648 | ---- | C] (ASUS) -- C:\Program Files (x86)\Common Files\MSIactionall.dll [46 C:\Users\Asus\Desktop\*.tmp files -> C:\Users\Asus\Desktop\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.03.13 14:40:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Asus\Desktop\OTL.exe [2013.03.13 14:32:25 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013.03.13 14:32:21 | 000,693,976 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013.03.13 14:32:21 | 000,073,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013.03.13 14:31:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.03.13 07:48:24 | 000,867,700 | ---- | M] () -- C:\Users\Asus\Desktop\102_4634.JPG [2013.03.13 04:50:57 | 000,095,648 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll [2013.03.13 04:50:54 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll [2013.03.13 04:50:54 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll [2013.03.13 04:50:54 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe [2013.03.13 04:50:54 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe [2013.03.13 04:50:54 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe [2013.03.13 04:49:08 | 000,896,928 | ---- | M] (Oracle Corporation) -- C:\Users\Asus\Desktop\jxpiinstall.exe [2013.03.13 04:47:50 | 000,000,951 | ---- | M] () -- C:\Users\Public\Desktop\TuxGuitar.lnk [2013.03.13 04:41:26 | 007,715,210 | ---- | M] (Herac) -- C:\Users\Asus\Desktop\tuxguitar-1.2-windows-x86-installer.exe [2013.03.13 03:18:46 | 000,867,471 | ---- | M] () -- C:\Users\Asus\Desktop\BA Agata Waleczek.pdf [2013.03.13 02:01:49 | 000,056,802 | ---- | M] () -- C:\Users\Asus\Desktop\250923_10151274187189778_1682797431_n.jpg [2013.03.13 02:00:37 | 000,075,417 | ---- | M] () -- C:\Users\Asus\Desktop\26855_1434398577929_6550657_n.jpg [2013.03.13 01:58:56 | 000,067,014 | ---- | M] () -- C:\Users\Asus\Desktop\564051_4212282232560_292395225_n.jpg [2013.03.13 01:56:29 | 000,061,391 | ---- | M] () -- C:\Users\Asus\Desktop\526974_10151055670253225_2145800475_n.jpg [2013.03.13 01:27:29 | 000,076,963 | ---- | M] () -- C:\Users\Asus\Desktop\j für aga.jpg [2013.03.12 22:38:41 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.03.12 22:38:41 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.03.12 21:53:32 | 001,500,294 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.03.12 21:53:32 | 000,654,852 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.03.12 21:53:32 | 000,616,694 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.03.12 21:53:32 | 000,130,434 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.03.12 21:53:32 | 000,106,816 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.03.12 00:01:20 | 000,001,037 | ---- | M] () -- C:\Users\Public\Desktop\PDFCreator.lnk [2013.03.11 23:55:52 | 000,001,744 | ---- | M] () -- C:\Users\Public\Desktop\CDBurnerXP.lnk [2013.03.11 20:44:34 | 000,015,246 | ---- | M] () -- C:\Users\Asus\Desktop\packliste strasbourg.ods [2013.03.11 20:44:33 | 000,000,108 | -H-- | M] () -- C:\Users\Asus\Desktop\.~lock.packliste strasbourg.ods# [2013.03.11 17:43:05 | 000,131,072 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl [2013.03.11 17:42:31 | 3193,765,888 | -HS- | M] () -- C:\hiberfil.sys [2013.03.11 04:00:03 | 000,663,526 | ---- | M] () -- C:\Users\Asus\Desktop\8126535925_0723dc9435_kk.jpg [2013.03.11 03:58:04 | 001,060,702 | ---- | M] () -- C:\Users\Asus\Desktop\8126535925_0723dc9435_k.jpg [2013.03.09 15:07:58 | 001,133,293 | ---- | M] () -- C:\Users\Asus\Desktop\cspCjbJG.jpg [2013.03.09 01:58:22 | 000,051,095 | ---- | M] () -- C:\Users\Asus\Desktop\19144_251463506013_4613375_n.jpg [2013.03.07 02:12:44 | 000,153,591 | ---- | M] () -- C:\Users\Asus\Desktop\kampf.png [2013.03.07 01:47:14 | 000,373,502 | ---- | M] () -- C:\Users\Asus\Desktop\Auszug - Das Sexuelle in Riefenstahls Triumph des Willens.pdf [2013.03.07 01:39:41 | 000,141,044 | ---- | M] () -- C:\Users\Asus\Desktop\holz.png [2013.03.07 00:31:42 | 000,176,539 | ---- | M] () -- C:\Users\Asus\Desktop\kamerad.png [2013.03.07 00:11:08 | 000,178,283 | ---- | M] () -- C:\Users\Asus\Desktop\VOYUER.png [2013.03.01 01:55:37 | 001,894,439 | ---- | M] () -- C:\Users\Asus\Desktop\Jonas Hofrichter Portfolio.pdf [2013.02.25 23:06:12 | 000,868,247 | ---- | M] () -- C:\Users\Asus\Desktop\Kolla-Ried (3 von 4).jpg [2013.02.16 15:51:46 | 000,045,056 | ---- | M] () -- C:\Windows\SysNative\acovcnt.exe [2013.02.16 15:49:10 | 000,292,104 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013.02.15 14:52:32 | 000,099,756 | ---- | M] () -- C:\Users\Asus\Desktop\Kunst Redaktionsprotokoll 13.2..pdf [46 C:\Users\Asus\Desktop\*.tmp files -> C:\Users\Asus\Desktop\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.03.13 04:47:50 | 000,000,951 | ---- | C] () -- C:\Users\Public\Desktop\TuxGuitar.lnk [2013.03.13 03:18:43 | 000,867,471 | ---- | C] () -- C:\Users\Asus\Desktop\BA Agata Waleczek.pdf [2013.03.13 02:01:49 | 000,056,802 | ---- | C] () -- C:\Users\Asus\Desktop\250923_10151274187189778_1682797431_n.jpg [2013.03.13 02:00:36 | 000,075,417 | ---- | C] () -- C:\Users\Asus\Desktop\26855_1434398577929_6550657_n.jpg [2013.03.13 01:58:55 | 000,067,014 | ---- | C] () -- C:\Users\Asus\Desktop\564051_4212282232560_292395225_n.jpg [2013.03.13 01:56:28 | 000,061,391 | ---- | C] () -- C:\Users\Asus\Desktop\526974_10151055670253225_2145800475_n.jpg [2013.03.13 01:27:13 | 000,076,963 | ---- | C] () -- C:\Users\Asus\Desktop\j für aga.jpg [2013.03.12 21:51:02 | 000,867,700 | ---- | C] () -- C:\Users\Asus\Desktop\102_4634.JPG [2013.03.12 00:01:20 | 000,001,037 | ---- | C] () -- C:\Users\Public\Desktop\PDFCreator.lnk [2013.03.11 23:55:52 | 000,001,744 | ---- | C] () -- C:\Users\Public\Desktop\CDBurnerXP.lnk [2013.03.11 23:55:52 | 000,001,694 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk [2013.03.11 20:44:33 | 000,000,108 | -H-- | C] () -- C:\Users\Asus\Desktop\.~lock.packliste strasbourg.ods# [2013.03.11 20:44:32 | 000,015,246 | ---- | C] () -- C:\Users\Asus\Desktop\packliste strasbourg.ods [2013.03.11 04:00:03 | 000,663,526 | ---- | C] () -- C:\Users\Asus\Desktop\8126535925_0723dc9435_kk.jpg [2013.03.11 03:58:00 | 001,060,702 | ---- | C] () -- C:\Users\Asus\Desktop\8126535925_0723dc9435_k.jpg [2013.03.09 15:07:56 | 001,133,293 | ---- | C] () -- C:\Users\Asus\Desktop\cspCjbJG.jpg [2013.03.09 01:57:58 | 000,051,095 | ---- | C] () -- C:\Users\Asus\Desktop\19144_251463506013_4613375_n.jpg [2013.03.07 02:12:44 | 000,153,591 | ---- | C] () -- C:\Users\Asus\Desktop\kampf.png [2013.03.07 01:47:11 | 000,373,502 | ---- | C] () -- C:\Users\Asus\Desktop\Auszug - Das Sexuelle in Riefenstahls Triumph des Willens.pdf [2013.03.07 01:25:36 | 000,141,044 | ---- | C] () -- C:\Users\Asus\Desktop\holz.png [2013.03.07 00:31:41 | 000,176,539 | ---- | C] () -- C:\Users\Asus\Desktop\kamerad.png [2013.03.07 00:11:08 | 000,178,283 | ---- | C] () -- C:\Users\Asus\Desktop\VOYUER.png [2013.03.01 01:55:29 | 001,894,439 | ---- | C] () -- C:\Users\Asus\Desktop\Jonas Hofrichter Portfolio.pdf [2013.02.26 21:11:49 | 000,868,247 | ---- | C] () -- C:\Users\Asus\Desktop\Kolla-Ried (3 von 4).jpg [2013.02.18 22:49:45 | 732,684,288 | ---- | C] () -- C:\Users\Asus\Desktop\XXY.[Spanish].DVDRip.XviD.MP3.[DTL].avi [2013.02.18 22:48:32 | 729,270,272 | ---- | C] () -- C:\Users\Asus\Desktop\Pl.Galerianki.avi [2013.02.15 14:52:31 | 000,099,756 | ---- | C] () -- C:\Users\Asus\Desktop\Kunst Redaktionsprotokoll 13.2..pdf [2012.04.06 16:37:46 | 000,000,193 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc [2012.04.02 21:59:14 | 000,007,603 | ---- | C] () -- C:\Users\Asus\AppData\Local\Resmon.ResmonCfg [2011.01.31 15:37:45 | 000,003,584 | ---- | C] () -- C:\Users\Asus\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010.10.17 16:06:49 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2010.06.29 22:43:49 | 000,131,368 | ---- | C] () -- C:\ProgramData\FullRemove.exe [2009.04.08 18:31:56 | 000,106,496 | ---- | C] () -- C:\Program Files (x86)\Common Files\CPInstallAction.dll [2008.05.22 16:35:54 | 000,051,962 | ---- | C] () -- C:\Program Files (x86)\Common Files\banner.jpg ========== ZeroAccess Check ========== [2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:2F370DA6 @Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:4CF61E54 @Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:A724744F @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:AB689DEA < End of report > Code:
ATTFilter OTL Extras logfile created on: 13.03.2013 14:42:05 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Asus\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,97 Gb Total Physical Memory | 1,38 Gb Available Physical Memory | 34,81% Memory free
7,93 Gb Paging File | 4,69 Gb Available in Paging File | 59,19% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 74,52 Gb Total Space | 18,15 Gb Free Space | 24,36% Space Free | Partition Type: NTFS
Drive D: | 204,03 Gb Total Space | 18,61 Gb Free Space | 9,12% Space Free | Partition Type: NTFS
Drive G: | 1,83 Gb Total Space | 1,64 Gb Free Space | 89,54% Space Free | Partition Type: FAT
Computer Name: ASUS-PC | User Name: Asus | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AutoUpdateDisableNotify" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{002C6A39-C685-4354-B440-CE3E27198671}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{05420C81-D799-4780-AA46-45BC9801FE6F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{08D60825-F2E1-422F-9B58-27A729426333}" = rport=2869 | protocol=6 | dir=out | app=system |
"{096F6B4D-1C22-4DC5-B1D7-385041440B0A}" = rport=139 | protocol=6 | dir=out | app=system |
"{097281AC-735E-49C9-B358-BE52E12D6782}" = lport=139 | protocol=6 | dir=in | app=system |
"{104FE3CB-54C9-4232-9E1F-F183FDC978CA}" = rport=445 | protocol=6 | dir=out | app=system |
"{165838F7-A97F-456F-B2BB-EBF9FCC66B2C}" = rport=138 | protocol=17 | dir=out | app=system |
"{18444415-FB41-472B-9FC7-9593BCA29DC8}" = lport=137 | protocol=17 | dir=in | app=system |
"{24E4E1ED-DEC5-47BA-8206-21F6430604A1}" = lport=10243 | protocol=6 | dir=in | app=system |
"{35BAB70C-E8DF-4D57-BD92-D7374CF29787}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{3C7A385E-F33F-4485-9180-B0FA444CBBA4}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{3F0B85E2-CEA5-4513-812D-427A9D547DBE}" = lport=8182 | protocol=6 | dir=in | name=java(tm) platform se binary |
"{4119252C-8605-4C46-80AA-0C7BD4FA21A4}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{564DF96F-5071-49D8-AEE6-1387FE188FE5}" = lport=138 | protocol=17 | dir=in | app=system |
"{61A6FA6C-0996-4B4B-9CFF-796719CF6BC5}" = rport=137 | protocol=17 | dir=out | app=system |
"{6C48D93B-A542-4749-BE8B-FBFBBBDDCFC8}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{6DB2EF68-1E5A-4EB8-8EB7-A19A42DF5634}" = lport=2869 | protocol=6 | dir=in | app=system |
"{7A27C943-4C12-447A-B696-FCB11773A764}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{804FAA28-DB56-4748-8FF8-FB20B5EEBE42}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{948B357D-DB54-42AC-B47B-1CBC8212941E}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{98C2B33E-11A7-4CA3-970A-4FFD8873DB64}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B00300C4-8D32-4DD3-A879-DBC88C4F9FA4}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{B4E7B6C3-59C2-4C7F-AFBD-37B514152EDE}" = lport=5353 | protocol=17 | dir=in | name=java(tm) platform se binary |
"{B61B9680-C282-4FCB-8F84-6D9E8137CCAE}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{B66CDC5F-34F0-4451-866B-07E740F7A73C}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B974F9A5-D192-4009-8855-287D60F09344}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B9B20323-92F8-487D-9A92-B955493142DA}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BA602C2B-CB0D-47C9-8BC9-830677224ED7}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{BD6E0415-FDA7-4A3B-A81F-DBAC87365BF6}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C1062702-D30B-4874-A57C-5A8986363B7B}" = lport=445 | protocol=6 | dir=in | app=system |
"{C415CE05-0324-4CDE-A52B-5CA569148EA0}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{C781F91F-297A-4170-BA97-BF4A8116CB17}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D18D2FA8-17B2-48AC-AD5E-8D891F4CE7BE}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EC144EAC-A96B-4F3C-B2AC-7CCACDB0A5F1}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EF59C5DD-1300-4092-9228-BB94A347A985}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02AF860D-D739-49AE-AFEC-A45389C03FAB}" = protocol=6 | dir=out | app=system |
"{02D469EA-F93C-418B-9140-8095FED5B7C2}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{09C81D06-CE08-4349-BDF4-83F8182256EB}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{1492B87C-565C-4A45-87E9-E395A8F88070}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1A32605A-1175-439F-A8B9-01BC4A6854E2}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{1F898BFE-5159-4003-97DA-CED471A77FC6}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{20120093-CE5B-4558-B2C2-7002BB948509}" = protocol=6 | dir=in | app=c:\users\asus\desktop\solutoinstaller-n7m2cot1g4.exe |
"{22A55436-C7AD-4EA7-A1C1-C28EA76683E2}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{26044ABE-DEFB-458D-A1FC-E35A43EF04D3}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{283B5127-EE14-442D-B16F-B73D71C1992A}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{2BC095E8-F527-46A2-A70F-AED7BFA7AB59}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{30D3D32A-0838-4FA4-AA95-4085F06391CD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{30E2D84F-87EC-413A-900B-8E0CD545C79F}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{314770DA-C8A9-4E3C-8ECB-4027D8179CDC}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{39A96F45-B833-43E0-A54E-11161CAAFBAF}" = protocol=17 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{3BA104A5-9986-4225-96EF-A7A3CA8CE4E8}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{3BB53BD7-43BE-4586-BAED-E88D413AD58C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{43331561-4378-468B-92F0-A1F2632C9E33}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{4C1D2BB9-F8A4-49D3-B032-290113DFDC68}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{6342130E-156B-4F38-9EF3-A30133998942}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg10\avgmfapx.exe |
"{63EE9F27-B9B9-4D65-822D-2A0667EDCF94}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{6528873A-35FA-4FD6-B913-AA323DE42506}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{69C42AD4-3A2E-4C26-A86B-A43B67AFF694}" = protocol=17 | dir=in | app=c:\users\asus\desktop\solutoinstaller-n7m2cot1g4.exe |
"{6EA4512A-6240-48E7-A5D2-89591C802291}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{70E3486A-9A2E-455A-87A8-66C598D8AC8C}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{717DF5E0-FD6F-407F-A540-B8402A059DE0}" = protocol=17 | dir=in | app=c:\program files\soluto\soluto.exe |
"{73A72A5A-C4F2-4603-B41E-2B93A715F950}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7B90F7C3-19F9-47D9-AE0B-24E07CD056B6}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{7EEE623F-EC75-4204-921E-6D5DB6C64162}" = protocol=6 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{830CBB8B-6E60-42FC-9518-25C46F2A87E4}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{8A103ACC-18A9-4B40-A10A-E6A0FA2A7DC1}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg10\avgmfapx.exe |
"{8A2B13A7-7D2B-40A8-8EE2-2A440C15C67A}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{8A42DACF-37E7-4D7E-995A-6385D0DA6910}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8AEB8409-F424-4C0C-A246-4C16F7EBA4D1}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{8BFABD15-A813-4E2A-B5C6-090D6ECE6CCD}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{8CDEEC3C-175C-4BFB-B301-C43B57E5322F}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{93B1DDE8-E12E-4A68-B1F0-1C5C492515FC}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9A67DADB-D44F-4EB9-B92A-27200129BBA8}" = protocol=17 | dir=in | app=e:\alicesetup.exe |
"{A83D087F-4D22-490B-AC8B-83DE9284B0BA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AAADAB94-A72D-4FDB-ACA2-BA56B69DA715}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{ACE21CE5-F53A-415A-BEAB-AE1A547A0F77}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{AE74736B-2E90-4F3C-905D-4162D5F9B91C}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{AFAE8B75-D3E1-4C40-8D22-B68641F82F99}" = protocol=6 | dir=in | app=c:\program files\soluto\soluto.exe |
"{B03E060B-0A66-4397-8CAB-EFD986924767}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{B3B83BFD-8797-407A-ABEF-CFABEE0F6363}" = protocol=6 | dir=in | app=c:\program files\soluto\soluto.exe |
"{B811F705-694A-44E4-8074-8E43B333998F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BB8391C7-3C07-4F0E-B256-A55F5F4F8353}" = protocol=6 | dir=in | app=e:\alicesetup.exe |
"{BCE65711-08F8-4CBE-A966-6EDFCE560D8B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{BFB1C2F4-BAD8-4F04-A8E4-6FCECADD6AB1}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{C0D15393-CC6D-47CB-AF68-915277C5295A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C811A3B7-E51A-4565-A9A8-9A83776D5462}" = protocol=6 | dir=in | app=c:\users\asus\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{C96CCB5A-1D79-4838-AC71-901E0D6F7265}" = protocol=17 | dir=in | app=c:\users\asus\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{D2938DCD-DDEE-4FA8-B543-B2EF5FA6E00E}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D4CF678B-7EA4-48CF-A073-BB800A90F836}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{D95333B8-C10B-4776-82B8-1D0818F0C19A}" = protocol=17 | dir=in | app=c:\program files\soluto\soluto.exe |
"{DC1316BB-5AFB-49D9-A1E2-2D07F6DD6F2C}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{F4012F18-B5A2-439B-B565-F81BD725B6D6}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{F6CA5517-3295-4348-8C69-114D2838D6FE}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{FFC6429C-211E-4085-B0AC-22A1152C8185}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"TCP Query User{4EAF09EA-97B2-4CA7-A370-DC801D0CB90B}F:\starcraft 1.15 - no install needed\starcraft.exe" = protocol=6 | dir=in | app=f:\starcraft 1.15 - no install needed\starcraft.exe |
"TCP Query User{C3A35916-F222-4A77-BA8C-163DABB35DE9}C:\users\asus\desktop\starcraft 1.15 - no install needed\starcraft.exe" = protocol=6 | dir=in | app=c:\users\asus\desktop\starcraft 1.15 - no install needed\starcraft.exe |
"TCP Query User{DE326F3E-5639-43A9-86B6-DB3C78EB67E5}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{20893048-35B4-4FEC-872A-8D450B18913B}C:\users\asus\desktop\starcraft 1.15 - no install needed\starcraft.exe" = protocol=17 | dir=in | app=c:\users\asus\desktop\starcraft 1.15 - no install needed\starcraft.exe |
"UDP Query User{6C7045D1-4FBA-4109-885F-922A8D441DB7}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{B2CA2C84-D491-4FCA-BC1F-69B89309105A}F:\starcraft 1.15 - no install needed\starcraft.exe" = protocol=17 | dir=in | app=f:\starcraft 1.15 - no install needed\starcraft.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{0D87AE67-14EB-4C10-88A5-DA6C3181EB18}" = Windows Live Family Safety
"{13F4A7F3-EABC-4261-AF6B-1317777F0755}" = Fast Boot
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{2128559D-BBCD-4744-87F0-7C0CD5CFB464}" = Windows Live Family Safety
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{4B6CFC80-684E-4E1D-B4D9-DA801C05440C}" = Soluto
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{5FDC06BF-3D3D-4367-8FFB-4FAFCB61972D}" = Cisco Systems VPN Client 5.0.07.0440
"{6A76BEAF-6D1F-4273-A79B-DA8410A2E56B}" = Apple Mobile Device Support
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}" = iTunes
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-006D-0407-1000-0000000FF1CE}" = Microsoft Office Klick-und-Los 2010
"{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}" = ASUS Power4Gear Hybrid
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{D5876F0A-B2E9-4376-B9F5-CD47B7B8D820}" = Windows Live Remote Client Resources
"{D930AF5C-5193-4616-887D-B974CEFC4970}" = Windows Live Remote Service Resources
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}" = SRS Premium Sound Control Panel
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Elantech" = ETDWare PS/2-x64 7.0.5.9_WHQL
"EPSON P50 Series" = Druckerdeinstallation für EPSON P50 Series
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Redirection Port Monitor" = RedMon - Redirection Port Monitor
"USB 2.0 1.3M UVC WebCam" = USB 2.0 1.3M UVC WebCam
"WinRAR archiver" = WinRAR 4.11 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{03534DA5-2F88-4B8E-A978-849B979E1B8F}" = TuxGuitar
"{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}" = Messenger Companion
"{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}" = ASUS AI Recovery
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support
"{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2B81872B-A054-48DA-BE3B-FA5C164C303A}" = ASUS FancyStart
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}" = ATKOSD2
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1
"{5508128A-2C7B-46B5-81F9-58E8E8115F0B}" = AdblockIE
"{5B65EF64-1DFA-414A-8C94-7BB726158E21}" = ControlDeck
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}" = ASUS CopyProtect
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7C05592D-424B-46CB-B505-E0013E8E75C9}" = ATK Hotkey
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1" = PDF24 Creator 5.2.0
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8C1E2925-14F8-45AA-B999-1E2A74BF5607}" = Windows Live Sync
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8D1E61D1-1395-4E97-997F-D002DB3A5074}" = OpenOffice.org 3.2
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{90140011-0066-0407-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Deutsch
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{95140000-00AF-0407-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}" = ASUS MultiFrame
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI (11.0.01) - Deutsch
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B653A2EC-D816-4498-A4FD-651047AB9DC9}" = Boingo Wi-Fi
"{BBED4F90-7AE5-40BF-AFB7-1B495692F4AB}" = syncables desktop SE
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FA2092C5-7979-412D-A962-6485274AE1EE}" = ASUS Data Security Manager
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"ASUS WebStorage" = ASUS WebStorage
"ASUS_Screensaver" = ASUS_Screensaver
"Audacity_is1" = Audacity 2.0
"Avira AntiVir Desktop" = Avira Free Antivirus
"Babylon Toolbar" = Babylon Toolbar
"Digital Camera Enhancer_is1" = Digital Camera Enhancer
"ElsterFormular für Privatanwender 12.2.0.6412p" = ElsterFormular für Privatanwender
"Free Video Dub_is1" = Free Video Dub version 2.0.16.1212
"GPL Ghostscript 9.00" = GPL Ghostscript 9.00
"HMA! Pro VPN" = HMA! Pro VPN 2.6.9
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"Mozilla Firefox 19.0.2 (x86 de)" = Mozilla Firefox 19.0.2 (x86 de)
"Office14.Click2Run" = Microsoft Office Klick-und-Los 2010
"OpenMG HotFix4.7-07-13-22-01" = OpenMG Limited Patch 4.7-07-14-05-01
"SecureW2 EAP Suite" = SecureW2 EAP Suite 1.1.1 for Windows
"VLC media player" = VLC media player 1.1.7
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.01 (32-Bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1966995642-2264083377-1929930323-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Avira SearchFree Toolbar plus Web Protection Updater
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 07.03.2013 13:38:42 | Computer Name = Asus-PC | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler:
Type-ID=21, Autor-ID=29114, Lieferant-ID=0, Lieferant-Typ=0
Error - 07.03.2013 13:38:47 | Computer Name = Asus-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DllHost.exe, Version: 6.1.7600.16385,
Zeitstempel: 0x4a5bc6b7 Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514,
Zeitstempel: 0x4ce7b96f Ausnahmecode: 0xc0000005 Fehleroffset: 0x0003bc24 ID des fehlerhaften
Prozesses: 0x377c Startzeit der fehlerhaften Anwendung: 0x01ce17b95c87b9a4 Pfad der
fehlerhaften Anwendung: C:\Windows\SysWOW64\DllHost.exe Pfad des fehlerhaften Moduls:
C:\Windows\syswow64\ole32.dll Berichtskennung: dce26e68-874d-11e2-9304-20cf3018582c
Error - 07.03.2013 14:19:26 | Computer Name = Asus-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DllHost.exe, Version: 6.1.7600.16385,
Zeitstempel: 0x4a5bc6b7 Name des fehlerhaften Moduls: rasdlg.dll_unloaded, Version:
0.0.0.0, Zeitstempel: 0x4a5bdadd Ausnahmecode: 0xc0000005 Fehleroffset: 0x6a06bcd2
ID
des fehlerhaften Prozesses: 0x377c Startzeit der fehlerhaften Anwendung: 0x01ce17b95c87b9a4
Pfad
der fehlerhaften Anwendung: C:\Windows\SysWOW64\DllHost.exe Pfad des fehlerhaften
Moduls: rasdlg.dll Berichtskennung: 8a9fea83-8753-11e2-9304-20cf3018582c
Error - 08.03.2013 20:17:34 | Computer Name = Asus-PC | Source = Application Hang | ID = 1002
Description = Programm MovieMaker.exe, Version 15.4.3555.308 kann nicht mehr unter
Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf
in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem
zu suchen. Prozess-ID: 43b0 Startzeit: 01ce1c5b664da6ae Endzeit: 25 Anwendungspfad:
C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe Berichts-ID: b29d1621-884e-11e2-9304-20cf3018582c
Error - 09.03.2013 08:12:50 | Computer Name = Asus-PC | Source = VSS | ID = 8193
Description =
Error - 09.03.2013 08:12:50 | Computer Name = Asus-PC | Source = VSS | ID = 8193
Description =
Error - 09.03.2013 08:12:51 | Computer Name = Asus-PC | Source = VSS | ID = 8193
Description =
Error - 09.03.2013 08:28:34 | Computer Name = Asus-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Skype.exe, Version: 6.1.0.129, Zeitstempel:
0x50ec1757 Name des fehlerhaften Moduls: virtualCamera.ax, Version: 0.0.0.0, Zeitstempel:
0x4ab990e2 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000094e1 ID des fehlerhaften Prozesses:
0xb78 Startzeit der fehlerhaften Anwendung: 0x01ce1cbd3b02a70e Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Skype\Phone\Skype.exe Pfad des fehlerhaften Moduls:
C:\Program Files (x86)\asus\VirtualCamera\virtualCamera.ax Berichtskennung: db926340-88b4-11e2-9304-20cf3018582c
Error - 10.03.2013 19:03:33 | Computer Name = Asus-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files
(x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder
Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error - 12.03.2013 09:39:30 | Computer Name = Asus-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files
(x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder
Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
des "version"-Attributs im assemblyIdentity-Element ist ungültig.
[ Media Center Events ]
Error - 22.02.2013 17:00:01 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 22:00:01 - Fehler beim Herstellen der Internetverbindung. 22:00:01
- Serververbindung konnte nicht hergestellt werden..
Error - 22.02.2013 17:00:07 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 22:00:06 - Fehler beim Herstellen der Internetverbindung. 22:00:06
- Serververbindung konnte nicht hergestellt werden..
Error - 22.02.2013 18:00:12 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 23:00:12 - Fehler beim Herstellen der Internetverbindung. 23:00:12
- Serververbindung konnte nicht hergestellt werden..
Error - 22.02.2013 18:00:18 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 23:00:17 - Fehler beim Herstellen der Internetverbindung. 23:00:17
- Serververbindung konnte nicht hergestellt werden..
Error - 22.02.2013 19:00:36 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 00:00:36 - Fehler beim Herstellen der Internetverbindung. 00:00:36
- Serververbindung konnte nicht hergestellt werden..
Error - 22.02.2013 19:00:50 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 00:00:41 - Fehler beim Herstellen der Internetverbindung. 00:00:41
- Serververbindung konnte nicht hergestellt werden..
Error - 22.02.2013 20:01:14 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 01:01:14 - Fehler beim Herstellen der Internetverbindung. 01:01:14
- Serververbindung konnte nicht hergestellt werden..
Error - 22.02.2013 20:01:39 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 01:01:20 - Fehler beim Herstellen der Internetverbindung. 01:01:20
- Serververbindung konnte nicht hergestellt werden..
Error - 22.02.2013 21:01:55 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 02:01:55 - Fehler beim Herstellen der Internetverbindung. 02:01:55
- Serververbindung konnte nicht hergestellt werden..
Error - 22.02.2013 21:02:07 | Computer Name = Asus-PC | Source = MCUpdate | ID = 0
Description = 02:02:00 - Fehler beim Herstellen der Internetverbindung. 02:02:00
- Serververbindung konnte nicht hergestellt werden..
[ System Events ]
Error - 11.03.2013 15:25:52 | Computer Name = Asus-PC | Source = ipnathlp | ID = 31004
Description =
Error - 11.03.2013 15:27:16 | Computer Name = Asus-PC | Source = ipnathlp | ID = 31004
Description =
Error - 11.03.2013 15:27:18 | Computer Name = Asus-PC | Source = ipnathlp | ID = 31004
Description =
Error - 11.03.2013 18:49:27 | Computer Name = Asus-PC | Source = ipnathlp | ID = 31004
Description =
Error - 12.03.2013 02:49:45 | Computer Name = Asus-PC | Source = ipnathlp | ID = 31004
Description =
Error - 12.03.2013 08:48:28 | Computer Name = Asus-PC | Source = Service Control Manager | ID = 7011
Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung
von Dienst SolutoService erreicht.
Error - 12.03.2013 08:50:15 | Computer Name = Asus-PC | Source = DCOM | ID = 10016
Description =
Error - 12.03.2013 18:15:49 | Computer Name = Asus-PC | Source = ipnathlp | ID = 31004
Description =
Error - 12.03.2013 18:18:19 | Computer Name = Asus-PC | Source = ipnathlp | ID = 31004
Description =
Error - 13.03.2013 00:27:13 | Computer Name = Asus-PC | Source = ipnathlp | ID = 31004
Description =
< End of report >
|
|
13.03.2013, 16:10
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal Rootkitscan mit GMER Bitte lade dir  GMER herunter: (Dateiname zufällig)
 Tauchen Probleme auf?
Anschließend bitte MBAR ausführen: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ Logfiles bitte immer in CODE-Tags posten |
|
13.03.2013, 19:16
| #5 |
| | Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal und hier kommt auch schon der Gmer: Code:
ATTFilter GMER 2.1.19155 - hxxp://www.gmer.net
Rootkit scan 2013-03-13 19:07:44
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 Hitachi_ rev.PB3O 298,09GB
Running: gmer_2.1.19155.exe; Driver: C:\Users\Asus\AppData\Local\Temp\pxldrpoc.sys
---- Threads - GMER 2.1 ----
Thread C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [760:768] 000007fefc95cc10
Thread C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [760:776] 000007fefc81b564
Thread C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [760:836] 000007fefc81b564
Thread C:\Windows\System32\svchost.exe [944:1200] 000007fef7fd818c
Thread C:\Windows\System32\svchost.exe [944:1204] 000007fef77259a0
Thread C:\Windows\System32\svchost.exe [944:2368] 000007fef68f88f8
Thread C:\Windows\System32\svchost.exe [944:656] 000007feedf244e0
Thread C:\Windows\System32\svchost.exe [944:1168] 000007feeb908a4c
Thread C:\Windows\System32\svchost.exe [944:8076] 000007fef52814a0
Thread C:\Windows\System32\svchost.exe [944:3768] 000007fef526a2b0
Thread C:\Windows\system32\taskhost.exe [1940:2020] 000007fef8311010
Thread C:\Windows\system32\taskhost.exe [1940:2036] 000007fef6511f38
Thread C:\Windows\Explorer.EXE [1708:2972] 000007fef7fd818c
Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4736:4964] 000007fef8e22a7c
Thread C:\Windows\System32\svchost.exe [3688:3088] 000007feea939688
Thread C:\Windows\System32\spoolsv.exe [1712:6008] 000007fef5e710c8
Thread C:\Windows\System32\spoolsv.exe [1712:6456] 000007fef4a26144
Thread C:\Windows\System32\spoolsv.exe [1712:6128] 000007fef3555fd0
Thread C:\Windows\System32\spoolsv.exe [1712:5676] 000007fef5e13438
Thread C:\Windows\System32\spoolsv.exe [1712:6664] 000007fef35563ec
Thread C:\Windows\System32\spoolsv.exe [1712:3512] 000007fef74d5e5c
Thread C:\Windows\System32\spoolsv.exe [1712:7148] 000007fef2255074
---- EOF - GMER 2.1 ----
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.01.0.1021
www.malwarebytes.org
Database version: v2013.03.13.11
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Asus :: ASUS-PC [administrator]
13.03.2013 19:36:14
mbar-log-2013-03-13 (19-36-14).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 29117
Time elapsed: 21 minute(s), 36 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
|
|
14.03.2013, 10:45
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal aswMBR Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ --> Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal |
|
14.03.2013, 17:43
| #7 |
| | Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal dein wunsch sei mir befehl! Code:
ATTFilter aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-14 17:14:58
-----------------------------
17:14:58.718 OS Version: Windows x64 6.1.7601 Service Pack 1
17:14:58.718 Number of processors: 2 586 0x170A
17:14:58.718 ComputerName: ASUS-PC UserName: Asus
17:15:00.059 Initialize success
17:17:44.951 AVAST engine defs: 13031401
17:20:36.618 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:20:36.618 Disk 0 Vendor: Hitachi_ PB3O Size: 305245MB BusType: 3
17:20:36.633 Disk 0 MBR read successfully
17:20:36.633 Disk 0 MBR scan
17:20:36.664 Disk 0 Windows 7 default MBR code
17:20:36.664 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 20002 MB offset 63
17:20:36.696 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 76311 MB offset 40965752
17:20:36.711 Disk 0 Partition - 00 0F Extended LBA 208930 MB offset 197251072
17:20:36.742 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 208929 MB offset 197253120
17:20:36.789 Disk 0 scanning C:\Windows\system32\drivers
17:20:49.146 Service scanning
17:21:28.430 Modules scanning
17:21:28.430 Disk 0 trace - called modules:
17:21:28.961 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
17:21:28.976 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800504b330]
17:21:28.976 3 CLASSPNP.SYS[fffff88000c0143f] -> nt!IofCallDriver -> [0xfffffa8004a8be10]
17:21:28.976 5 ACPI.sys[fffff88000f877a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004a8e050]
17:21:29.429 AVAST engine scan C:\Windows
17:21:32.408 AVAST engine scan C:\Windows\system32
17:26:50.404 AVAST engine scan C:\Windows\system32\drivers
17:27:09.733 AVAST engine scan C:\Users\Asus
17:38:23.333 AVAST engine scan C:\ProgramData
17:40:00.698 Scan finished successfully
17:41:04.357 Disk 0 MBR has been saved successfully to "C:\Users\Asus\Desktop\MBR.dat"
17:41:04.373 The log file has been saved successfully to "C:\Users\Asus\Desktop\aswMBR.txt"
Code:
ATTFilter 17:53:26.0928 3408 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:53:28.0940 3408 ============================================================
17:53:28.0940 3408 Current date / time: 2013/03/14 17:53:28.0940
17:53:28.0940 3408 SystemInfo:
17:53:28.0940 3408
17:53:28.0940 3408 OS Version: 6.1.7601 ServicePack: 1.0
17:53:28.0940 3408 Product type: Workstation
17:53:28.0940 3408 ComputerName: ASUS-PC
17:53:28.0940 3408 UserName: Asus
17:53:28.0940 3408 Windows directory: C:\Windows
17:53:28.0940 3408 System windows directory: C:\Windows
17:53:28.0940 3408 Running under WOW64
17:53:28.0940 3408 Processor architecture: Intel x64
17:53:28.0940 3408 Number of processors: 2
17:53:28.0940 3408 Page size: 0x1000
17:53:28.0940 3408 Boot type: Normal boot
17:53:28.0940 3408 ============================================================
17:53:29.0424 3408 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:53:29.0455 3408 Drive \Device\Harddisk1\DR1 - Size: 0x75300000 (1.83 Gb), SectorSize: 0x200, Cylinders: 0xEF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:53:29.0455 3408 ============================================================
17:53:29.0455 3408 \Device\Harddisk0\DR0:
17:53:29.0455 3408 MBR partitions:
17:53:29.0455 3408 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2711678, BlocksNum 0x950B800
17:53:29.0486 3408 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xBC1D800, BlocksNum 0x19810800
17:53:29.0486 3408 \Device\Harddisk1\DR1:
17:53:29.0486 3408 MBR partitions:
17:53:29.0486 3408 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x89, BlocksNum 0x3A9777
17:53:29.0486 3408 ============================================================
17:53:29.0533 3408 C: <-> \Device\Harddisk0\DR0\Partition1
17:53:29.0564 3408 D: <-> \Device\Harddisk0\DR0\Partition2
17:53:29.0564 3408 ============================================================
17:53:29.0564 3408 Initialize success
17:53:29.0564 3408 ============================================================
17:53:37.0240 3936 ============================================================
17:53:37.0240 3936 Scan started
17:53:37.0240 3936 Mode: Manual; SigCheck; TDLFS;
17:53:37.0240 3936 ============================================================
17:53:37.0458 3936 ================ Scan system memory ========================
17:53:37.0458 3936 System memory - ok
17:53:37.0458 3936 ================ Scan services =============================
17:53:37.0614 3936 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:53:37.0676 3936 1394ohci - ok
17:53:37.0723 3936 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:53:37.0754 3936 ACPI - ok
17:53:37.0801 3936 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:53:37.0817 3936 AcpiPmi - ok
17:53:37.0879 3936 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:53:37.0910 3936 AdobeARMservice - ok
17:53:38.0020 3936 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:53:38.0035 3936 AdobeFlashPlayerUpdateSvc - ok
17:53:38.0098 3936 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:53:38.0129 3936 adp94xx - ok
17:53:38.0160 3936 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:53:38.0176 3936 adpahci - ok
17:53:38.0222 3936 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:53:38.0254 3936 adpu320 - ok
17:53:38.0300 3936 [ C0BF554D2277F7A4C735D475ADE2E3B2 ] ADSMService C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
17:53:38.0316 3936 ADSMService ( UnsignedFile.Multi.Generic ) - warning
17:53:38.0316 3936 ADSMService - detected UnsignedFile.Multi.Generic (1)
17:53:38.0347 3936 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:53:38.0378 3936 AeLookupSvc - ok
17:53:38.0425 3936 [ 2D00D3DADC1D3326BA788EB071F2726E ] AFBAgent C:\Windows\system32\FBAgent.exe
17:53:38.0519 3936 AFBAgent - ok
17:53:38.0551 3936 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:53:38.0582 3936 AFD - ok
17:53:38.0613 3936 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:53:38.0629 3936 agp440 - ok
17:53:38.0660 3936 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:53:38.0676 3936 ALG - ok
17:53:38.0723 3936 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:53:38.0754 3936 aliide - ok
17:53:38.0754 3936 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:53:38.0769 3936 amdide - ok
17:53:38.0801 3936 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:53:38.0816 3936 AmdK8 - ok
17:53:38.0832 3936 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:53:38.0863 3936 AmdPPM - ok
17:53:38.0894 3936 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:53:38.0910 3936 amdsata - ok
17:53:38.0925 3936 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:53:38.0941 3936 amdsbs - ok
17:53:38.0957 3936 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:53:38.0972 3936 amdxata - ok
17:53:39.0019 3936 [ 9C7F164B49CADC658D1B3C575782F346 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
17:53:39.0035 3936 AmUStor - ok
17:53:39.0097 3936 [ 459465DA28E49B358ECFE0D788F328F4 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
17:53:39.0097 3936 AntiVirSchedulerService - ok
17:53:39.0144 3936 [ BCDD17E8469D647A71B347C4B6F86685 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
17:53:39.0159 3936 AntiVirService - ok
17:53:39.0222 3936 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:53:39.0269 3936 AppID - ok
17:53:39.0300 3936 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:53:39.0331 3936 AppIDSvc - ok
17:53:39.0362 3936 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:53:39.0409 3936 Appinfo - ok
17:53:39.0471 3936 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:53:39.0487 3936 Apple Mobile Device - ok
17:53:39.0518 3936 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:53:39.0552 3936 arc - ok
17:53:39.0552 3936 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:53:39.0568 3936 arcsas - ok
17:53:39.0599 3936 [ 88FBC8BEBFD38566235EAA5E4DBC4E05 ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
17:53:39.0615 3936 AsDsm - ok
17:53:39.0662 3936 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
17:53:39.0677 3936 ASLDRService - ok
17:53:39.0724 3936 [ 2DB34EDD17D3A8DA7105A19C95A3DD68 ] ASMMAP64 C:\Program Files\ATKGFNEX\ASMMAP64.sys
17:53:39.0740 3936 ASMMAP64 - ok
17:53:39.0771 3936 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:53:39.0833 3936 AsyncMac - ok
17:53:39.0849 3936 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:53:39.0864 3936 atapi - ok
17:53:39.0927 3936 [ 0ACC06FCF46F64ED4F11E57EE461C1F4 ] athr C:\Windows\system32\DRIVERS\athrx.sys
17:53:39.0958 3936 athr - ok
17:53:39.0974 3936 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
17:53:39.0989 3936 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
17:53:39.0989 3936 ATKGFNEXSrv - detected UnsignedFile.Multi.Generic (1)
17:53:40.0020 3936 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:53:40.0067 3936 AudioEndpointBuilder - ok
17:53:40.0083 3936 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:53:40.0130 3936 AudioSrv - ok
17:53:40.0223 3936 [ BFE9598EBC3934CF8D876A303849C896 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
17:53:40.0239 3936 avgntflt - ok
17:53:40.0270 3936 [ F74D86A9FB35FA5F24627B8DBBF3A9A4 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
17:53:40.0301 3936 avipbb - ok
17:53:40.0332 3936 [ CD0E732347BF09717E0BDDC0C66699AB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
17:53:40.0364 3936 avkmgr - ok
17:53:40.0410 3936 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:53:40.0426 3936 AxInstSV - ok
17:53:40.0473 3936 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:53:40.0488 3936 b06bdrv - ok
17:53:40.0535 3936 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:53:40.0566 3936 b57nd60a - ok
17:53:40.0613 3936 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:53:40.0629 3936 BDESVC - ok
17:53:40.0629 3936 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:53:40.0676 3936 Beep - ok
17:53:40.0722 3936 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:53:40.0769 3936 BFE - ok
17:53:40.0800 3936 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:53:40.0847 3936 BITS - ok
17:53:40.0878 3936 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:53:40.0894 3936 blbdrive - ok
17:53:40.0972 3936 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:53:40.0988 3936 Bonjour Service - ok
17:53:41.0034 3936 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:53:41.0050 3936 bowser - ok
17:53:41.0066 3936 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:53:41.0081 3936 BrFiltLo - ok
17:53:41.0128 3936 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:53:41.0144 3936 BrFiltUp - ok
17:53:41.0175 3936 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:53:41.0190 3936 Browser - ok
17:53:41.0206 3936 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:53:41.0222 3936 Brserid - ok
17:53:41.0253 3936 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:53:41.0268 3936 BrSerWdm - ok
17:53:41.0284 3936 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:53:41.0300 3936 BrUsbMdm - ok
17:53:41.0315 3936 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:53:41.0331 3936 BrUsbSer - ok
17:53:41.0346 3936 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:53:41.0362 3936 BTHMODEM - ok
17:53:41.0409 3936 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:53:41.0456 3936 bthserv - ok
17:53:41.0471 3936 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:53:41.0518 3936 cdfs - ok
17:53:41.0565 3936 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:53:41.0596 3936 cdrom - ok
17:53:41.0627 3936 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:53:41.0658 3936 CertPropSvc - ok
17:53:41.0690 3936 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:53:41.0705 3936 circlass - ok
17:53:41.0736 3936 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:53:41.0752 3936 CLFS - ok
17:53:41.0814 3936 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:53:41.0846 3936 clr_optimization_v2.0.50727_32 - ok
17:53:41.0892 3936 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:53:41.0908 3936 clr_optimization_v2.0.50727_64 - ok
17:53:41.0970 3936 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:53:41.0986 3936 clr_optimization_v4.0.30319_32 - ok
17:53:42.0017 3936 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:53:42.0033 3936 clr_optimization_v4.0.30319_64 - ok
17:53:42.0064 3936 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:53:42.0080 3936 CmBatt - ok
17:53:42.0111 3936 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:53:42.0126 3936 cmdide - ok
17:53:42.0158 3936 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:53:42.0189 3936 CNG - ok
17:53:42.0220 3936 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:53:42.0236 3936 Compbatt - ok
17:53:42.0267 3936 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:53:42.0282 3936 CompositeBus - ok
17:53:42.0298 3936 COMSysApp - ok
17:53:42.0345 3936 cpuz135 - ok
17:53:42.0360 3936 cpuz136 - ok
17:53:42.0392 3936 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:53:42.0407 3936 crcdisk - ok
17:53:42.0438 3936 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:53:42.0454 3936 CryptSvc - ok
17:53:42.0548 3936 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:53:42.0579 3936 cvhsvc - ok
17:53:42.0626 3936 [ 44BDDEB03C84A1C993C992FFB5700357 ] CVirtA C:\Windows\system32\DRIVERS\CVirtA64.sys
17:53:42.0641 3936 CVirtA - ok
17:53:42.0704 3936 [ 98C413E1A2FB6E5A4C101C25B3D0B275 ] CVPND C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
17:53:42.0735 3936 CVPND - ok
17:53:42.0766 3936 [ 79AF0E203D089AF442A3F70ED00A37FB ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys
17:53:42.0797 3936 CVPNDRVA - ok
17:53:42.0828 3936 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:53:42.0875 3936 DcomLaunch - ok
17:53:42.0891 3936 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:53:42.0938 3936 defragsvc - ok
17:53:42.0984 3936 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:53:43.0016 3936 DfsC - ok
17:53:43.0062 3936 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:53:43.0078 3936 Dhcp - ok
17:53:43.0109 3936 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:53:43.0140 3936 discache - ok
17:53:43.0187 3936 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:53:43.0203 3936 Disk - ok
17:53:43.0250 3936 [ 05CB5910B3CA6019FC3CCA815EE06FFB ] DNE C:\Windows\system32\DRIVERS\dne64x.sys
17:53:43.0265 3936 DNE - ok
17:53:43.0312 3936 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:53:43.0328 3936 Dnscache - ok
17:53:43.0359 3936 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:53:43.0406 3936 dot3svc - ok
17:53:43.0421 3936 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:53:43.0452 3936 DPS - ok
17:53:43.0484 3936 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:53:43.0515 3936 drmkaud - ok
17:53:43.0562 3936 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:53:43.0593 3936 DXGKrnl - ok
17:53:43.0640 3936 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:53:43.0671 3936 EapHost - ok
17:53:43.0780 3936 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:53:43.0842 3936 ebdrv - ok
17:53:43.0874 3936 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:53:43.0889 3936 EFS - ok
17:53:43.0967 3936 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:53:43.0998 3936 ehRecvr - ok
17:53:44.0030 3936 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:53:44.0045 3936 ehSched - ok
17:53:44.0108 3936 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:53:44.0154 3936 elxstor - ok
17:53:44.0170 3936 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:53:44.0186 3936 ErrDev - ok
17:53:44.0232 3936 [ 3C38648375B7F3988691F53A7AAE10A9 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
17:53:44.0248 3936 ETD - ok
17:53:44.0279 3936 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:53:44.0326 3936 EventSystem - ok
17:53:44.0373 3936 [ 251AF86E0A4DDF3A6B181ED5103B06B1 ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
17:53:44.0388 3936 ewusbnet - ok
17:53:44.0404 3936 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:53:44.0451 3936 exfat - ok
17:53:44.0466 3936 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:53:44.0513 3936 fastfat - ok
17:53:44.0560 3936 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:53:44.0591 3936 Fax - ok
17:53:44.0607 3936 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:53:44.0622 3936 fdc - ok
17:53:44.0669 3936 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:53:44.0700 3936 fdPHost - ok
17:53:44.0716 3936 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:53:44.0763 3936 FDResPub - ok
17:53:44.0794 3936 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:53:44.0810 3936 FileInfo - ok
17:53:44.0825 3936 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:53:44.0856 3936 Filetrace - ok
17:53:44.0872 3936 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:53:44.0888 3936 flpydisk - ok
17:53:44.0934 3936 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:53:44.0950 3936 FltMgr - ok
17:53:44.0997 3936 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
17:53:45.0028 3936 FontCache - ok
17:53:45.0090 3936 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:53:45.0106 3936 FontCache3.0.0.0 - ok
17:53:45.0137 3936 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:53:45.0153 3936 FsDepends - ok
17:53:45.0200 3936 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
17:53:45.0200 3936 fssfltr - ok
17:53:45.0309 3936 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
17:53:45.0356 3936 fsssvc - ok
17:53:45.0371 3936 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:53:45.0387 3936 Fs_Rec - ok
17:53:45.0418 3936 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:53:45.0449 3936 fvevol - ok
17:53:45.0496 3936 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:53:45.0496 3936 gagp30kx - ok
17:53:45.0558 3936 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:53:45.0574 3936 GEARAspiWDM - ok
17:53:45.0621 3936 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:53:45.0699 3936 gpsvc - ok
17:53:45.0730 3936 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
17:53:45.0746 3936 hamachi - ok
17:53:45.0761 3936 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:53:45.0777 3936 hcw85cir - ok
17:53:45.0839 3936 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:53:45.0870 3936 HdAudAddService - ok
17:53:45.0902 3936 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:53:45.0933 3936 HDAudBus - ok
17:53:45.0964 3936 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:53:45.0995 3936 HidBatt - ok
17:53:46.0011 3936 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:53:46.0042 3936 HidBth - ok
17:53:46.0058 3936 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:53:46.0073 3936 HidIr - ok
17:53:46.0120 3936 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:53:46.0167 3936 hidserv - ok
17:53:46.0214 3936 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:53:46.0245 3936 HidUsb - ok
17:53:46.0276 3936 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:53:46.0323 3936 hkmsvc - ok
17:53:46.0354 3936 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:53:46.0370 3936 HomeGroupListener - ok
17:53:46.0416 3936 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:53:46.0448 3936 HomeGroupProvider - ok
17:53:46.0463 3936 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:53:46.0494 3936 HpSAMD - ok
17:53:46.0557 3936 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:53:46.0619 3936 HTTP - ok
17:53:46.0635 3936 [ 4B5C07DB91A0099272FAAE732E1152BD ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:53:46.0651 3936 hwdatacard - ok
17:53:46.0683 3936 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:53:46.0698 3936 hwpolicy - ok
17:53:46.0729 3936 [ 9C13A2691AC410CC7469F298684DCA5D ] hwusbfake C:\Windows\system32\DRIVERS\ewusbfake.sys
17:53:46.0761 3936 hwusbfake - ok
17:53:46.0792 3936 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:53:46.0807 3936 i8042prt - ok
17:53:46.0839 3936 [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
17:53:46.0870 3936 iaStor - ok
17:53:46.0901 3936 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:53:46.0917 3936 iaStorV - ok
17:53:47.0010 3936 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
17:53:47.0026 3936 IDriverT ( UnsignedFile.Multi.Generic ) - warning
17:53:47.0026 3936 IDriverT - detected UnsignedFile.Multi.Generic (1)
17:53:47.0088 3936 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:53:47.0119 3936 idsvc - ok
17:53:47.0353 3936 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:53:47.0478 3936 igfx - ok
17:53:47.0525 3936 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:53:47.0556 3936 iirsp - ok
17:53:47.0603 3936 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:53:47.0665 3936 IKEEXT - ok
17:53:47.0697 3936 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:53:47.0697 3936 intelide - ok
17:53:47.0743 3936 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:53:47.0759 3936 intelppm - ok
17:53:47.0775 3936 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:53:47.0821 3936 IPBusEnum - ok
17:53:47.0853 3936 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:53:47.0884 3936 IpFilterDriver - ok
17:53:47.0931 3936 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:53:47.0946 3936 iphlpsvc - ok
17:53:47.0977 3936 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:53:47.0993 3936 IPMIDRV - ok
17:53:48.0024 3936 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:53:48.0055 3936 IPNAT - ok
17:53:48.0118 3936 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:53:48.0133 3936 iPod Service - ok
17:53:48.0180 3936 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:53:48.0211 3936 IRENUM - ok
17:53:48.0227 3936 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:53:48.0243 3936 isapnp - ok
17:53:48.0274 3936 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:53:48.0289 3936 iScsiPrt - ok
17:53:48.0321 3936 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:53:48.0352 3936 kbdclass - ok
17:53:48.0367 3936 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:53:48.0383 3936 kbdhid - ok
17:53:48.0414 3936 [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
17:53:48.0430 3936 kbfiltr - ok
17:53:48.0445 3936 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:53:48.0477 3936 KeyIso - ok
17:53:48.0492 3936 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:53:48.0508 3936 KSecDD - ok
17:53:48.0539 3936 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:53:48.0555 3936 KSecPkg - ok
17:53:48.0586 3936 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:53:48.0648 3936 ksthunk - ok
17:53:48.0679 3936 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:53:48.0726 3936 KtmRm - ok
17:53:48.0742 3936 [ B8E670D7EF61615FA03104552854FAC9 ] L1E C:\Windows\system32\DRIVERS\L1E62x64.sys
17:53:48.0757 3936 L1E - ok
17:53:48.0789 3936 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:53:48.0820 3936 LanmanServer - ok
17:53:48.0867 3936 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:53:48.0898 3936 LanmanWorkstation - ok
17:53:48.0960 3936 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:53:49.0007 3936 lltdio - ok
17:53:49.0038 3936 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:53:49.0085 3936 lltdsvc - ok
17:53:49.0101 3936 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:53:49.0132 3936 lmhosts - ok
17:53:49.0179 3936 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:53:49.0194 3936 LSI_FC - ok
17:53:49.0241 3936 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:53:49.0257 3936 LSI_SAS - ok
17:53:49.0257 3936 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:53:49.0272 3936 LSI_SAS2 - ok
17:53:49.0288 3936 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:53:49.0303 3936 LSI_SCSI - ok
17:53:49.0335 3936 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:53:49.0366 3936 luafv - ok
17:53:49.0381 3936 [ 085435AE1A124361304044029B5CC644 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
17:53:49.0397 3936 lullaby - ok
17:53:49.0444 3936 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:53:49.0459 3936 Mcx2Svc - ok
17:53:49.0491 3936 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:53:49.0506 3936 megasas - ok
17:53:49.0522 3936 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:53:49.0537 3936 MegaSR - ok
17:53:49.0569 3936 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:53:49.0615 3936 MMCSS - ok
17:53:49.0631 3936 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:53:49.0678 3936 Modem - ok
17:53:49.0693 3936 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:53:49.0725 3936 monitor - ok
17:53:49.0756 3936 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:53:49.0771 3936 mouclass - ok
17:53:49.0803 3936 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:53:49.0818 3936 mouhid - ok
17:53:49.0834 3936 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:53:49.0849 3936 mountmgr - ok
17:53:49.0881 3936 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:53:49.0896 3936 mpio - ok
17:53:49.0912 3936 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:53:49.0959 3936 mpsdrv - ok
17:53:50.0005 3936 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:53:50.0037 3936 MpsSvc - ok
17:53:50.0068 3936 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:53:50.0099 3936 MRxDAV - ok
17:53:50.0115 3936 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:53:50.0130 3936 mrxsmb - ok
17:53:50.0177 3936 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:53:50.0193 3936 mrxsmb10 - ok
17:53:50.0208 3936 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:53:50.0224 3936 mrxsmb20 - ok
17:53:50.0255 3936 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:53:50.0271 3936 msahci - ok
17:53:50.0333 3936 [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D ] MSCSPTISRV C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
17:53:50.0349 3936 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - warning
17:53:50.0349 3936 MSCSPTISRV - detected UnsignedFile.Multi.Generic (1)
17:53:50.0364 3936 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:53:50.0395 3936 msdsm - ok
17:53:50.0427 3936 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:53:50.0442 3936 MSDTC - ok
17:53:50.0489 3936 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:53:50.0536 3936 Msfs - ok
17:53:50.0536 3936 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:53:50.0583 3936 mshidkmdf - ok
17:53:50.0614 3936 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:53:50.0614 3936 msisadrv - ok
17:53:50.0661 3936 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:53:50.0692 3936 MSiSCSI - ok
17:53:50.0692 3936 msiserver - ok
17:53:50.0739 3936 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:53:50.0770 3936 MSKSSRV - ok
17:53:50.0785 3936 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:53:50.0832 3936 MSPCLOCK - ok
17:53:50.0863 3936 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:53:50.0895 3936 MSPQM - ok
17:53:50.0926 3936 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:53:50.0941 3936 MsRPC - ok
17:53:50.0988 3936 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:53:51.0004 3936 mssmbios - ok
17:53:51.0035 3936 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:53:51.0066 3936 MSTEE - ok
17:53:51.0097 3936 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:53:51.0097 3936 MTConfig - ok
17:53:51.0144 3936 [ 032D35C996F21D19A205A7C8F0B76F3C ] MTsensor C:\Windows\system32\DRIVERS\ATK64AMD.sys
17:53:51.0160 3936 MTsensor - ok
17:53:51.0175 3936 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:53:51.0191 3936 Mup - ok
17:53:51.0222 3936 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:53:51.0269 3936 napagent - ok
17:53:51.0300 3936 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:53:51.0331 3936 NativeWifiP - ok
17:53:51.0378 3936 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:53:51.0394 3936 NDIS - ok
17:53:51.0441 3936 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:53:51.0472 3936 NdisCap - ok
17:53:51.0503 3936 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:53:51.0534 3936 NdisTapi - ok
17:53:51.0565 3936 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:53:51.0612 3936 Ndisuio - ok
17:53:51.0628 3936 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:53:51.0675 3936 NdisWan - ok
17:53:51.0690 3936 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:53:51.0737 3936 NDProxy - ok
17:53:51.0768 3936 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:53:51.0799 3936 NetBIOS - ok
17:53:51.0846 3936 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:53:51.0877 3936 NetBT - ok
17:53:51.0893 3936 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:53:51.0909 3936 Netlogon - ok
17:53:51.0971 3936 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:53:52.0018 3936 Netman - ok
17:53:52.0049 3936 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:53:52.0096 3936 netprofm - ok
17:53:52.0127 3936 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:53:52.0143 3936 NetTcpPortSharing - ok
17:53:52.0174 3936 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:53:52.0189 3936 nfrd960 - ok
17:53:52.0221 3936 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:53:52.0252 3936 NlaSvc - ok
17:53:52.0314 3936 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:53:52.0361 3936 Npfs - ok
17:53:52.0392 3936 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:53:52.0423 3936 nsi - ok
17:53:52.0455 3936 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:53:52.0486 3936 nsiproxy - ok
17:53:52.0548 3936 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:53:52.0595 3936 Ntfs - ok
17:53:52.0626 3936 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:53:52.0657 3936 Null - ok
17:53:52.0689 3936 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:53:52.0704 3936 nvraid - ok
17:53:52.0720 3936 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:53:52.0735 3936 nvstor - ok
17:53:52.0751 3936 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:53:52.0767 3936 nv_agp - ok
17:53:52.0782 3936 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:53:52.0798 3936 ohci1394 - ok
17:53:52.0860 3936 [ D8A0164A79D4BFD6083945C5431E41E7 ] OpenVPNService C:\Program Files (x86)\HMA! Pro VPN\bin\openvpnserv.exe
17:53:52.0860 3936 OpenVPNService ( UnsignedFile.Multi.Generic ) - warning
17:53:52.0860 3936 OpenVPNService - detected UnsignedFile.Multi.Generic (1)
17:53:52.0907 3936 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:53:52.0923 3936 ose - ok
17:53:53.0079 3936 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:53:53.0157 3936 osppsvc - ok
17:53:53.0188 3936 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:53:53.0219 3936 p2pimsvc - ok
17:53:53.0235 3936 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:53:53.0250 3936 p2psvc - ok
17:53:53.0281 3936 [ 753A8F339F231D2B857E2CCD51A6E6CA ] PACSPTISVR C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
17:53:53.0297 3936 PACSPTISVR ( UnsignedFile.Multi.Generic ) - warning
17:53:53.0297 3936 PACSPTISVR - detected UnsignedFile.Multi.Generic (1)
17:53:53.0313 3936 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:53:53.0328 3936 Parport - ok
17:53:53.0375 3936 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:53:53.0391 3936 partmgr - ok
17:53:53.0422 3936 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:53:53.0437 3936 PcaSvc - ok
17:53:53.0453 3936 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:53:53.0469 3936 pci - ok
17:53:53.0500 3936 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:53:53.0515 3936 pciide - ok
17:53:53.0547 3936 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:53:53.0562 3936 pcmcia - ok
17:53:53.0593 3936 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:53:53.0609 3936 pcw - ok
17:53:53.0625 3936 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:53:53.0671 3936 PEAUTH - ok
17:53:53.0749 3936 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:53:53.0765 3936 PerfHost - ok
17:53:53.0827 3936 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:53:53.0890 3936 pla - ok
17:53:53.0937 3936 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:53:53.0968 3936 PlugPlay - ok
17:53:53.0983 3936 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:53:53.0999 3936 PNRPAutoReg - ok
17:53:54.0015 3936 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:53:54.0030 3936 PNRPsvc - ok
17:53:54.0077 3936 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:53:54.0124 3936 PolicyAgent - ok
17:53:54.0155 3936 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:53:54.0202 3936 Power - ok
17:53:54.0233 3936 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:53:54.0264 3936 PptpMiniport - ok
17:53:54.0295 3936 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:53:54.0311 3936 Processor - ok
17:53:54.0342 3936 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:53:54.0358 3936 ProfSvc - ok
17:53:54.0373 3936 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:53:54.0389 3936 ProtectedStorage - ok
17:53:54.0420 3936 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:53:54.0451 3936 Psched - ok
17:53:54.0498 3936 [ FBF4DB6D53585437E41A113300002A2B ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
17:53:54.0514 3936 PxHlpa64 - ok
17:53:54.0576 3936 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:53:54.0623 3936 ql2300 - ok
17:53:54.0639 3936 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:53:54.0654 3936 ql40xx - ok
17:53:54.0701 3936 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:53:54.0732 3936 QWAVE - ok
17:53:54.0748 3936 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:53:54.0779 3936 QWAVEdrv - ok
17:53:54.0810 3936 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:53:54.0841 3936 RasAcd - ok
17:53:54.0873 3936 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:53:54.0904 3936 RasAgileVpn - ok
17:53:54.0935 3936 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:53:54.0966 3936 RasAuto - ok
17:53:55.0013 3936 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:53:55.0044 3936 Rasl2tp - ok
17:53:55.0091 3936 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:53:55.0138 3936 RasMan - ok
17:53:55.0185 3936 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:53:55.0247 3936 RasPppoe - ok
17:53:55.0247 3936 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:53:55.0294 3936 RasSstp - ok
17:53:55.0325 3936 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:53:55.0372 3936 rdbss - ok
17:53:55.0387 3936 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:53:55.0403 3936 rdpbus - ok
17:53:55.0419 3936 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:53:55.0465 3936 RDPCDD - ok
17:53:55.0497 3936 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:53:55.0528 3936 RDPENCDD - ok
17:53:55.0543 3936 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:53:55.0575 3936 RDPREFMP - ok
17:53:55.0606 3936 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:53:55.0621 3936 RDPWD - ok
17:53:55.0653 3936 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:53:55.0668 3936 rdyboost - ok
17:53:55.0699 3936 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:53:55.0746 3936 RemoteAccess - ok
17:53:55.0762 3936 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:53:55.0809 3936 RemoteRegistry - ok
17:53:55.0840 3936 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:53:55.0871 3936 RpcEptMapper - ok
17:53:55.0887 3936 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:53:55.0902 3936 RpcLocator - ok
17:53:55.0933 3936 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:53:55.0980 3936 RpcSs - ok
17:53:56.0011 3936 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:53:56.0058 3936 rspndr - ok
17:53:56.0074 3936 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:53:56.0089 3936 SamSs - ok
17:53:56.0136 3936 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:53:56.0167 3936 sbp2port - ok
17:53:56.0199 3936 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:53:56.0245 3936 SCardSvr - ok
17:53:56.0277 3936 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:53:56.0308 3936 scfilter - ok
17:53:56.0339 3936 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:53:56.0417 3936 Schedule - ok
17:53:56.0448 3936 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:53:56.0479 3936 SCPolicySvc - ok
17:53:56.0495 3936 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:53:56.0526 3936 SDRSVC - ok
17:53:56.0557 3936 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:53:56.0589 3936 secdrv - ok
17:53:56.0620 3936 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:53:56.0667 3936 seclogon - ok
17:53:56.0682 3936 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:53:56.0729 3936 SENS - ok
17:53:56.0760 3936 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:53:56.0776 3936 SensrSvc - ok
17:53:56.0791 3936 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:53:56.0807 3936 Serenum - ok
17:53:56.0823 3936 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:53:56.0838 3936 Serial - ok
17:53:56.0854 3936 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:53:56.0869 3936 sermouse - ok
17:53:56.0901 3936 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:53:56.0947 3936 SessionEnv - ok
17:53:56.0979 3936 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:53:56.0994 3936 sffdisk - ok
17:53:56.0994 3936 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:53:57.0025 3936 sffp_mmc - ok
17:53:57.0025 3936 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:53:57.0057 3936 sffp_sd - ok
17:53:57.0088 3936 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:53:57.0103 3936 sfloppy - ok
17:53:57.0166 3936 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
17:53:57.0197 3936 Sftfs - ok
17:53:57.0259 3936 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:53:57.0291 3936 sftlist - ok
17:53:57.0322 3936 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
17:53:57.0337 3936 Sftplay - ok
17:53:57.0369 3936 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
17:53:57.0369 3936 Sftredir - ok
17:53:57.0400 3936 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
17:53:57.0400 3936 Sftvol - ok
17:53:57.0415 3936 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:53:57.0431 3936 sftvsa - ok
17:53:57.0478 3936 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:53:57.0509 3936 SharedAccess - ok
17:53:57.0540 3936 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:53:57.0587 3936 ShellHWDetection - ok
17:53:57.0618 3936 [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
17:53:57.0634 3936 SiSGbeLH - ok
17:53:57.0681 3936 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:53:57.0681 3936 SiSRaid2 - ok
17:53:57.0696 3936 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:53:57.0712 3936 SiSRaid4 - ok
17:53:57.0743 3936 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:53:57.0759 3936 SkypeUpdate - ok
17:53:57.0774 3936 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:53:57.0821 3936 Smb - ok
17:53:57.0852 3936 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:53:57.0883 3936 SNMPTRAP - ok
17:53:57.0977 3936 [ 1D8474722CDFFBB8FCA5FA12C50A05A2 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
17:53:58.0008 3936 SNP2UVC - ok
17:53:58.0071 3936 [ F9369327409492097B0BB7CE86BD29DE ] Soluto C:\Windows\system32\DRIVERS\Soluto.sys
17:53:58.0086 3936 Soluto - ok
17:53:58.0133 3936 [ 8A8123DF07D5CC13468F84F49A897975 ] SolutoLauncherService C:\Program Files\Soluto\SolutoLauncherService.exe
17:53:58.0164 3936 SolutoLauncherService - ok
17:53:58.0195 3936 [ BCA25A87AD78FEDAC5C5ABD92DB3BECD ] SolutoRemoteService C:\Program Files\Soluto\SolutoRemoteService.exe
17:53:58.0211 3936 SolutoRemoteService ( UnsignedFile.Multi.Generic ) - warning
17:53:58.0211 3936 SolutoRemoteService - detected UnsignedFile.Multi.Generic (1)
17:53:58.0258 3936 [ E2774CDAC3BDCDC188891236F64594DC ] SolutoService C:\Program Files\Soluto\SolutoService.exe
17:53:58.0273 3936 SolutoService - ok
17:53:58.0305 3936 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:53:58.0320 3936 spldr - ok
17:53:58.0367 3936 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:53:58.0383 3936 Spooler - ok
17:53:58.0476 3936 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:53:58.0554 3936 sppsvc - ok
17:53:58.0585 3936 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:53:58.0617 3936 sppuinotify - ok
17:53:58.0632 3936 [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1 ] SPTISRV C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
17:53:58.0648 3936 SPTISRV ( UnsignedFile.Multi.Generic ) - warning
17:53:58.0648 3936 SPTISRV - detected UnsignedFile.Multi.Generic (1)
17:53:58.0679 3936 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:53:58.0710 3936 srv - ok
17:53:58.0726 3936 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:53:58.0741 3936 srv2 - ok
17:53:58.0757 3936 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:53:58.0773 3936 srvnet - ok
17:53:58.0804 3936 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:53:58.0851 3936 SSDPSRV - ok
17:53:58.0866 3936 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:53:58.0897 3936 SstpSvc - ok
17:53:58.0929 3936 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:53:58.0944 3936 stexstor - ok
17:53:58.0991 3936 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:53:59.0038 3936 stisvc - ok
17:53:59.0069 3936 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:53:59.0085 3936 swenum - ok
17:53:59.0131 3936 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:53:59.0178 3936 swprv - ok
17:53:59.0241 3936 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:53:59.0287 3936 SysMain - ok
17:53:59.0319 3936 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:53:59.0334 3936 TabletInputService - ok
17:53:59.0365 3936 [ 3B73C849B41FB20D77B0E553214061A5 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
17:53:59.0381 3936 tap0901 - ok
17:53:59.0397 3936 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:53:59.0443 3936 TapiSrv - ok
17:53:59.0459 3936 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:53:59.0506 3936 TBS - ok
17:53:59.0584 3936 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:53:59.0631 3936 Tcpip - ok
17:53:59.0693 3936 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:53:59.0740 3936 TCPIP6 - ok
17:53:59.0755 3936 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:53:59.0771 3936 tcpipreg - ok
17:53:59.0818 3936 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:53:59.0833 3936 TDPIPE - ok
17:53:59.0865 3936 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:53:59.0880 3936 TDTCP - ok
17:53:59.0911 3936 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:53:59.0943 3936 tdx - ok
17:53:59.0974 3936 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:53:59.0989 3936 TermDD - ok
17:54:00.0021 3936 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:54:00.0067 3936 TermService - ok
17:54:00.0099 3936 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:54:00.0114 3936 Themes - ok
17:54:00.0130 3936 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:54:00.0177 3936 THREADORDER - ok
17:54:00.0208 3936 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:54:00.0255 3936 TrkWks - ok
17:54:00.0301 3936 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:54:00.0348 3936 TrustedInstaller - ok
17:54:00.0364 3936 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:54:00.0395 3936 tssecsrv - ok
17:54:00.0442 3936 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:54:00.0457 3936 TsUsbFlt - ok
17:54:00.0489 3936 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:54:00.0535 3936 tunnel - ok
17:54:00.0567 3936 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:54:00.0582 3936 uagp35 - ok
17:54:00.0613 3936 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:54:00.0645 3936 udfs - ok
17:54:00.0691 3936 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:54:00.0723 3936 UI0Detect - ok
17:54:00.0738 3936 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:54:00.0754 3936 uliagpkx - ok
17:54:00.0769 3936 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:54:00.0785 3936 umbus - ok
17:54:00.0832 3936 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:54:00.0847 3936 UmPass - ok
17:54:00.0863 3936 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:54:00.0910 3936 upnphost - ok
17:54:00.0941 3936 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:54:00.0941 3936 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
17:54:00.0941 3936 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
17:54:00.0988 3936 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:54:01.0003 3936 usbccgp - ok
17:54:01.0019 3936 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:54:01.0035 3936 usbcir - ok
17:54:01.0050 3936 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:54:01.0066 3936 usbehci - ok
17:54:01.0097 3936 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:54:01.0113 3936 usbhub - ok
17:54:01.0144 3936 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:54:01.0159 3936 usbohci - ok
17:54:01.0175 3936 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:54:01.0206 3936 usbprint - ok
17:54:01.0222 3936 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:54:01.0237 3936 usbscan - ok
17:54:01.0269 3936 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:54:01.0284 3936 USBSTOR - ok
17:54:01.0315 3936 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:54:01.0331 3936 usbuhci - ok
17:54:01.0347 3936 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:54:01.0362 3936 usbvideo - ok
17:54:01.0393 3936 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:54:01.0440 3936 UxSms - ok
17:54:01.0440 3936 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:54:01.0456 3936 VaultSvc - ok
17:54:01.0487 3936 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:54:01.0503 3936 vdrvroot - ok
17:54:01.0534 3936 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:54:01.0581 3936 vds - ok
17:54:01.0596 3936 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:54:01.0612 3936 vga - ok
17:54:01.0643 3936 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:54:01.0674 3936 VgaSave - ok
17:54:01.0705 3936 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:54:01.0737 3936 vhdmp - ok
17:54:01.0815 3936 [ FE595D1A1B781190BB483444B62CC607 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
17:54:01.0861 3936 VIAHdAudAddService - ok
17:54:01.0877 3936 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:54:01.0893 3936 viaide - ok
17:54:01.0924 3936 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:54:01.0939 3936 volmgr - ok
17:54:01.0971 3936 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:54:01.0986 3936 volmgrx - ok
17:54:02.0002 3936 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:54:02.0017 3936 volsnap - ok
17:54:02.0064 3936 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:54:02.0080 3936 vsmraid - ok
17:54:02.0142 3936 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:54:02.0205 3936 VSS - ok
17:54:02.0220 3936 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:54:02.0236 3936 vwifibus - ok
17:54:02.0267 3936 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:54:02.0283 3936 vwififlt - ok
17:54:02.0314 3936 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:54:02.0345 3936 vwifimp - ok
17:54:02.0361 3936 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:54:02.0423 3936 W32Time - ok
17:54:02.0454 3936 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:54:02.0470 3936 WacomPen - ok
17:54:02.0517 3936 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:54:02.0548 3936 WANARP - ok
17:54:02.0548 3936 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:54:02.0595 3936 Wanarpv6 - ok
17:54:02.0657 3936 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:54:02.0704 3936 WatAdminSvc - ok
17:54:02.0751 3936 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:54:02.0782 3936 wbengine - ok
17:54:02.0829 3936 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:54:02.0860 3936 WbioSrvc - ok
17:54:02.0891 3936 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:54:02.0922 3936 wcncsvc - ok
17:54:02.0938 3936 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:54:02.0953 3936 WcsPlugInService - ok
17:54:02.0985 3936 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:54:03.0000 3936 Wd - ok
17:54:03.0047 3936 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:54:03.0063 3936 Wdf01000 - ok
17:54:03.0078 3936 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:54:03.0109 3936 WdiServiceHost - ok
17:54:03.0109 3936 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:54:03.0141 3936 WdiSystemHost - ok
17:54:03.0172 3936 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:54:03.0219 3936 WebClient - ok
17:54:03.0250 3936 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:54:03.0297 3936 Wecsvc - ok
17:54:03.0312 3936 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:54:03.0343 3936 wercplsupport - ok
17:54:03.0359 3936 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:54:03.0406 3936 WerSvc - ok
17:54:03.0437 3936 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:54:03.0468 3936 WfpLwf - ok
17:54:03.0515 3936 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
17:54:03.0531 3936 WimFltr - ok
17:54:03.0531 3936 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:54:03.0546 3936 WIMMount - ok
17:54:03.0577 3936 WinDefend - ok
17:54:03.0577 3936 WinHttpAutoProxySvc - ok
17:54:03.0640 3936 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:54:03.0687 3936 Winmgmt - ok
17:54:03.0749 3936 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:54:03.0827 3936 WinRM - ok
17:54:03.0889 3936 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:54:03.0905 3936 WinUsb - ok
17:54:03.0936 3936 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:54:03.0967 3936 Wlansvc - ok
17:54:04.0014 3936 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:54:04.0030 3936 wlcrasvc - ok
17:54:04.0155 3936 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:54:04.0201 3936 wlidsvc - ok
17:54:04.0233 3936 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:54:04.0248 3936 WmiAcpi - ok
17:54:04.0279 3936 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:54:04.0311 3936 wmiApSrv - ok
17:54:04.0326 3936 WMPNetworkSvc - ok
17:54:04.0357 3936 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:54:04.0373 3936 WPCSvc - ok
17:54:04.0389 3936 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:54:04.0420 3936 WPDBusEnum - ok
17:54:04.0451 3936 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:54:04.0482 3936 ws2ifsl - ok
17:54:04.0513 3936 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:54:04.0529 3936 wscsvc - ok
17:54:04.0545 3936 WSearch - ok
17:54:04.0623 3936 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:54:04.0669 3936 wuauserv - ok
17:54:04.0701 3936 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:54:04.0716 3936 WudfPf - ok
17:54:04.0747 3936 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:54:04.0763 3936 WUDFRd - ok
17:54:04.0779 3936 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:54:04.0794 3936 wudfsvc - ok
17:54:04.0825 3936 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:54:04.0857 3936 WwanSvc - ok
17:54:04.0919 3936 ================ Scan global ===============================
17:54:04.0966 3936 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:54:04.0981 3936 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:54:04.0997 3936 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:54:05.0028 3936 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:54:05.0059 3936 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:54:05.0075 3936 [Global] - ok
17:54:05.0075 3936 ================ Scan MBR ==================================
17:54:05.0091 3936 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:54:05.0527 3936 \Device\Harddisk0\DR0 - ok
17:54:05.0543 3936 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
17:54:05.0699 3936 \Device\Harddisk1\DR1 - ok
17:54:05.0699 3936 ================ Scan VBR ==================================
17:54:05.0715 3936 [ B5CAB8DFD5A4125B13F19836998B2C42 ] \Device\Harddisk0\DR0\Partition1
17:54:05.0715 3936 \Device\Harddisk0\DR0\Partition1 - ok
17:54:05.0793 3936 [ 0681E632891FC35246891683F06935CD ] \Device\Harddisk0\DR0\Partition2
17:54:05.0793 3936 \Device\Harddisk0\DR0\Partition2 - ok
17:54:05.0793 3936 [ DB9A794942312CAEC4CF021828EF4071 ] \Device\Harddisk1\DR1\Partition1
17:54:05.0808 3936 \Device\Harddisk1\DR1\Partition1 - ok
17:54:05.0808 3936 ============================================================
17:54:05.0808 3936 Scan finished
17:54:05.0808 3936 ============================================================
17:54:05.0824 4340 Detected object count: 9
17:54:05.0824 4340 Actual detected object count: 9
17:54:24.0216 4340 ADSMService ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:24.0216 4340 ADSMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:24.0216 4340 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:24.0216 4340 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:24.0216 4340 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:24.0216 4340 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:24.0216 4340 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:24.0216 4340 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:24.0232 4340 OpenVPNService ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:24.0232 4340 OpenVPNService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:24.0232 4340 PACSPTISVR ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:24.0232 4340 PACSPTISVR ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:24.0232 4340 SolutoRemoteService ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:24.0232 4340 SolutoRemoteService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:24.0232 4340 SPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:24.0232 4340 SPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:24.0232 4340 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:24.0232 4340 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
14.03.2013, 21:55
| #8 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normalZitat:
 Die Logs sind bisher allesamt unauffällig. Bevor wir noch größeren Aufwand betreiben: Hast du mit FF mal ein neues Profil getestet? => Firefox-Profile erstellen und löschen | Hilfe zu Firefox Das alte Profil NICHT löschen. Starte den FF mit frischem Profil und probiere da mal YT aus und berichte
__________________ Logfiles bitte immer in CODE-Tags posten |
|
14.03.2013, 22:35
| #9 |
| | Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal ich würde mich nie erdreisten, in den heiligen hallen des trojaner-board befehle zu erteilen - ich kann nur bitten und hoffen, dass mich jemand erhört  wie du mir empfohlen hast, habe ich ein neues profil bei ff erstellt und warte nun ab, was passiert. allerdings ist mir dabei etwas eingefallen: das störgeräusch ist außer bei yt auch schon bei anderen audio-anwendungen aufgetreten, z.b. bei itunes. hm... *grübel* |
|
15.03.2013, 12:03
| #10 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normalZitat:
 Zitat:
Hast du schonmal im abgesicherten Modous getestet?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
15.03.2013, 14:28
| #11 |
| | Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal hehe also den treiber habe ich eben gecheckt und er ist auf dem aktuellsten stand: VIA Hight Definition Audio, Treiberdatum 09.07.2009, Version 6.0.1.7333.hm, seit wann ich es habe, weiß ich nicht. ich hatte mal die vermutung, es könnte an überhitzung liegen. kann das sein? das mit dem abgesicherten modus probier ich mal  |
|
| Themen zu Bei Abspielen von Videos - lautes Störgeräusch, PC reagiert nicht, nach >1Min. wieder normal |
| abspielen, asus, avira, betriebssystem, betriebssystem windows 7, bildschirm, blauer, blauer bildschirm, computer, fehler, home, jahre, langsam, laptop, leute, minute, nicht mehr, nichts, reagiert, retten, sehr langsam, service, stockt, störgeräusch, super, test, thema, thread, virus, windows, windows 7 |
Linear-Darstellung
