Super-Dummie against System Care Antivirus

lala65 · 09.06.2013, 21:52

Hallo und Guten Abend,
meiner einer gehört zu den Super-DUMMIES der besonderen Art.
Bin unterwegs mit dem Notebook meines Nachwuchses mit der Auflage, besonders achtsam zu sein.(

).
Um das Geburtstagsgeschenk für den Notebookleiher vorzubereiten, surfte ich durch virtuelle legale Seiten. Nun wollte meiner einer heute Abend dies fortsetzen um festzustellen, das da etwas ist, was da nicht hingehört, nämlich "System Care Antivirus". Hat die das nicht gelesen

, doch habe ich, seit 2h, nur steht mache das und dies nicht. Beeindruckt mich sehr. Gibt es jemand Mutigen

mit verständlichen Stepp bei Stepp um dieses nicht gewollte "Virenprogramm" zu eliminieren?
Grüße Su

smeenk · 09.06.2013, 21:54

Ich bin smeenk und werde versuchen dir zu helfen

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop ( falls noch nicht vorhanden ).

Doppelklick auf die OTL.exe
Oben findest Du ein Kästchen mit Ausgabe. Wähle bitte Minimal Ausgabe
Unter Extra Registry, wähle bitte Use SafeList
Klicke nun auf Run Scan links oben
Wenn der Scan beendet wurde werden 2 Logfiles erstellt
Poste die Logfiles hier in den Thread.

lala65 · 10.06.2013, 04:13

Guten Morgen
Danke für die Antwort, werde heute Abend das "Projekt" starten.
Grüße

lala65 · 10.06.2013, 20:58

Hallo und Guten Abend smeenk,
zuerst ging überhaupt nichts.
Weder hatte ich Zugriff auf irgendwelche Programme, noch konnte ich ins Internet

.
Nach der Hardcore Ausschalte

und wieder hochfahren meldete mir Avira,das es etwas gefunden hat .
TR/Ransom.Blocker.bilo ...\16D0EDE49E6BC05100001.
Alles scheint so, als ob nie irgendetwas gewesen wäre

.
Das was du mir gepostet hast, habe ich getan.
Sieht mal ganz schön viel aus.Traue dem Frieden nicht so ganz da mir Avira gestern etwas ganz anderes mitgeteilt hatte.
Nun Danke ich nochmal und wünsche noch einen schönen Abend
Gruß SuOTL Logfile:

Code:

ATTFilter

OTL logfile created on: 10.06.2013 21:10:41 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = c:\Users\Jürgen\Downloads
Windows Vista Home Premium Edition  (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
1,75 Gb Total Physical Memory | 0,91 Gb Available Physical Memory | 51,97% Memory free
3,71 Gb Paging File | 2,31 Gb Available in Paging File | 62,33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69,05 Gb Total Space | 0,85 Gb Free Space | 1,23% Space Free | Partition Type: NTFS
Drive D: | 70,00 Gb Total Space | 69,90 Gb Free Space | 99,85% Space Free | Partition Type: NTFS
 
Computer Name: JÜRGEN-PC | User Name: Jürgen | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - c:\Users\Jürgen\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Windows\System32\Macromed\Flash\FlashUtil32_11_7_700_202_ActiveX.exe (Adobe Systems Incorporated)
PRC - C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Programme\Avira\AntiVir Desktop\avcenter.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Programme\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe ()
PRC - C:\Users\Jürgen\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
PRC - C:\Programme\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
PRC - C:\ProgramData\DatacardService\HWDeviceService.exe ()
PRC - C:\ProgramData\DatacardService\DCSHelper.exe (Huawei Technologies Co., Ltd.)
PRC - C:\Programme\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe (Microsoft Corp.)
PRC - C:\Programme\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Programme\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation)
PRC - C:\Users\Jürgen\AppData\Roaming\Mobile Partner\ouc.exe (Huawei Technologies Co., Ltd.)
PRC - C:\Programme\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
PRC - C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
PRC - C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation)
PRC - C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Sidebar\sidebar.exe (Microsoft Corporation)
PRC - C:\coolspot AG\Personal ID\pid.exe (coolspot AG)
PRC - C:\Programme\Samsung\EBM\EasyBatteryMgr3.exe (SAMSUNG Electronics co., LTD.)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Programme\Samsung\Easy Display Manager\dmhkcore.exe (SAMSUNG Electronics)
PRC - C:\Programme\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
PRC - C:\Windows\System32\lxczcoms.exe ( )
PRC - C:\Windows\System32\schtasks.exe (Microsoft Corporation)
PRC - C:\Windows\System32\agrsmsvc.exe (Agere Systems)
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe ()
MOD - c:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll ()
MOD - C:\Programme\Avira\AntiVir Desktop\sqlite3.dll ()
MOD - C:\Users\Jürgen\AppData\LocalLow\AdblockPlus\IE\sqlite3.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\03858406f9a9514402888707e8b93abe\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\23281812ddf7a1fab881b5322e577ac4\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\7208ffa39630e9b923331f9df0947a12\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1941d7639299344ae28fb6b23da65247\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6312464f64727a2a50d5ce3fd73ad1bb\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\52e1ea3c7491e05cda766d7b3ce3d559\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\17f572b09facdc5fda9431558eb7a26e\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_de_b77a5c561934e089\System.Windows.Forms.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.2728.28937__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.2728.29164__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.2728.28895__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.2728.28951__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.2728.29157__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.2728.29115__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.2728.28930__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Runtime\2.0.2728.28950__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.2728.29051__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.2728.28915__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.2728.29192__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.2728.29198__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.2728.28909__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.2728.29145__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.2728.29124__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.2728.29131__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.2728.29123__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.2728.29184__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.2728.29159__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.2728.29061__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.2728.28964__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.2728.28916__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.2728.28971__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.2728.28957__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.2728.29082__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.2728.29059__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.2728.28970__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.2728.29081__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.2728.29052__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.2728.29102__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.2728.29051__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.2728.29059__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.2728.29102__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.2665.42157__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.2665.42187__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.2665.42196__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.2665.42166__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2665.42196__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.2665.42152__90ba9c70f846762e\CLI.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2665.42162__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.2665.42198__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.2665.42149__90ba9c70f846762e\LOG.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2665.42240__90ba9c70f846762e\CLI.Foundation.XManifest.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2665.42151__90ba9c70f846762e\NEWAEM.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2665.42178__90ba9c70f846762e\DEM.OS.I0602.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2665.42166__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.2665.42161__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2665.42156__90ba9c70f846762e\CLI.Component.Client.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.2665.42168__90ba9c70f846762e\MOM.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.2665.42177__90ba9c70f846762e\DEM.OS.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.2665.42179__90ba9c70f846762e\DEM.Graphics.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.2665.42164__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2665.42181__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.2665.42180__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.2665.42186__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.2665.42197__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.2665.42184__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.2665.42187__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Shared\2.0.2665.42182__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.2665.42184__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.2665.42184__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.2665.42186__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.2665.42182__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.2665.42167__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.2665.42180__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.2665.42185__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.2665.42166__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.2665.42187__90ba9c70f846762e\APM.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Foundation\2.0.2665.42150__90ba9c70f846762e\AEM.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2665.42181__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2665.42160__90ba9c70f846762e\AEM.Server.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray.resources\2.0.2728.29169_de_90ba9c70f846762e\CLI.Component.Systemtray.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.2728.29220__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.2728.28892__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.2728.28903__90ba9c70f846762e\CLI.Component.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.2728.28924__90ba9c70f846762e\CLI.Component.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.2728.29169__90ba9c70f846762e\CLI.Component.Systemtray.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.2728.29178__90ba9c70f846762e\MOM.Implementation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.2728.28894__90ba9c70f846762e\CLI.Component.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2728.29176__90ba9c70f846762e\LOG.Foundation.Implementation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.2728.28894__90ba9c70f846762e\ATIDEMOS.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2665.42165__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2665.42160__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2665.42158__90ba9c70f846762e\LOG.Foundation.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.2728.29177__90ba9c70f846762e\CCC.Implementation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2665.42196__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2665.42169__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2665.42154__90ba9c70f846762e\CLI.Foundation.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.2665.42167__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.2665.42188__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.2728.28893__90ba9c70f846762e\AEM.Server.dll ()
MOD - C:\Windows\System32\atitmmxx.dll ()
MOD - C:\Windows\System32\btwhidcs.dll ()
MOD - C:\Programme\Samsung\EBM\ChkSec.dll ()
MOD - C:\coolspot AG\Personal ID\MxSWL32.dll ()
MOD - C:\Programme\Samsung\Easy Display Manager\WinMove.dll ()
MOD - C:\Programme\Samsung\EasySpeedUpManager\HookDllPS2.dll ()
MOD - C:\Programme\Samsung\Easy Display Manager\HookDllPS2.dll ()
MOD - C:\Programme\ArcSoft\PhotoImpression 5\Share\PIHook.dll ()
 
 
========== Services (SafeList) ==========
 
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (AdobeARMservice) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (AntiVirSchedulerService) -- C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (BrowserProtect) -- C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe ()
SRV - (SkypeUpdate) -- C:\Programme\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (odserv) -- C:\Programme\Common Files\microsoft shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (HWDeviceService.exe) -- C:\ProgramData\DatacardService\HWDeviceService.exe ()
SRV - (McComponentHostService) -- C:\Programme\McAfee Security Scan\2.0.181\McCHSvc.exe (McAfee, Inc.)
SRV - (WinHttpAutoProxySvc) -- winhttp.dll (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV - (MSSQL$MSSMLBIZ) -- C:\Programme\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (Microsoft Office Groove Audit Service) -- C:\Programme\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
SRV - (SQLWriter) -- C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation)
SRV - (SQLBrowser) -- C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation)
SRV - (MSSQLServerADHelper) -- C:\Programme\Microsoft SQL Server\90\Shared\sqladhlp90.exe (Microsoft Corporation)
SRV - (BcmSqlStartupSvc) -- C:\Programme\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Microsoft Corporation)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (lxcz_device) -- C:\Windows\System32\lxczcoms.exe ( )
SRV - (WMPNetworkSvc) -- C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
SRV - (ose) -- C:\Programme\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (USBModem) -- system32\DRIVERS\lgusbmodem.sys File not found
DRV - (UsbDiag) -- system32\DRIVERS\lgusbdiag.sys File not found
DRV - (usbbus) -- system32\DRIVERS\lgusbbus.sys File not found
DRV - (PID_PEPI) -- system32\DRIVERS\LV302V32.SYS File not found
DRV - (pepifilter) -- system32\DRIVERS\lv302af.sys File not found
DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
DRV - (LVUSBSta) -- system32\drivers\LVUSBSta.sys File not found
DRV - (LGVMODEM) -- system32\DRIVERS\lgvmodem.sys File not found
DRV - (lgbusenum) -- system32\DRIVERS\lgbtbus.sys File not found
DRV - (LgBttPort) -- system32\DRIVERS\lgbtport.sys File not found
DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
DRV - (blbdrive) -- C:\Windows\system32\drivers\blbdrive.sys File not found
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira Operations GmbH & Co. KG)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG)
DRV - (avkmgr) -- C:\Windows\System32\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (huawei_enumerator) -- C:\Windows\System32\drivers\ew_jubusenum.sys (Huawei Technologies Co., Ltd.)
DRV - (ewusbnet) -- C:\Windows\System32\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.)
DRV - (hwdatacard) -- C:\Windows\System32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (ew_hwusbdev) -- C:\Windows\System32\drivers\ew_hwusbdev.sys (Huawei Technologies Co., Ltd.)
DRV - (StarOpen) -- C:\Windows\System32\drivers\StarOpen.sys ()
DRV - (KMDFMEMIO) -- C:\Windows\System32\drivers\KMDFMEMIO.sys (SAMSUNG ELECTRONICS CO., LTD.)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (R300) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (AtiPcie) -- C:\Windows\System32\drivers\AtiPcie.sys (ATI Technologies Inc.)
DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems)
DRV - (WSDPrintDevice) -- C:\Windows\System32\drivers\WSDPrint.sys (Microsoft Corporation)
DRV - (NETw2v32) -- C:\Windows\System32\drivers\NETw2v32.sys (Intel® Corporation)
DRV - (RTL8023xp) -- C:\Windows\System32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation                           )
DRV - (Afc) -- C:\Windows\System32\drivers\afc.sys (Arcsoft, Inc.)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http:\\www.samsungcomputer.com
IE - HKLM\..\URLSearchHook: {78e516ef-11de-47a1-8364-a99b917ec5ee} - C:\Programme\FileConverter_1.3\prxtbFile.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3241949
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.t-online.de/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http:\\www.samsungcomputer.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.t-online.de/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {78e516ef-11de-47a1-8364-a99b917ec5ee} - C:\Programme\FileConverter_1.3\prxtbFile.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Programme\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = hxxp://search.babylon.com/?q={searchTerms}&affID=109958&tt=5212_4&babsrc=SP_ss&mntrId=16c9c0510000000000000013774bfc9d
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADBF_deDE270
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3241949
IE - HKCU\..\SearchScopes\{AFF4CCB1-86E4-4D6D-A042-83DB9679F435}: "URL" = hxxp://search.babylon.com/?q={searchTerms}&affID=109958&tt=5212_4&babsrc=SP_ss&mntrId=16c9c0510000000000000013774bfc9d
IE - HKCU\..\SearchScopes\{E9679456-BD04-4672-876B-73412111A6D9}: "URL" = hxxp://search.babylon.com/?q={searchTerms}&affID=109958&tt=5212_4&babsrc=SP_ss&mntrId=16c9c0510000000000000013774bfc9d
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
========== FireFox ==========
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_35: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpWinExt,version=5.0: C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.633: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.633: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.633: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.633: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\msntoolbar@msn.com: C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\Firefox [2010.12.27 12:43:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011.02.21 23:56:17 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{58bd07eb-0ee0-4df0-8121-dc9b693373df}: C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension [2012.12.30 21:40:07 | 000,000,000 | ---D | M]
 
[2009.02.10 23:49:18 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
 
========== Chrome  ==========
 
CHR - homepage: hxxp://search.babylon.com/?affID=109958&tt=5212_4&babsrc=HP_ss&mntrId=16c9c0510000000000000013774bfc9d
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.3\
CHR - Extension: No name found = C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0\
 
O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Programme\BabylonToolbar\BabylonToolbar\1.8.7.2\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (FileConverter 1.3 Toolbar) - {78e516ef-11de-47a1-8364-a99b917ec5ee} - C:\Programme\FileConverter_1.3\prxtbFile.dll (Conduit Ltd.)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Programme\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
O2 - BHO: (AdblockPlus) - {9FD6379A-EF46-4193-BC64-99F59DF1334F} - C:\Users\Jürgen\AppData\LocalLow\AdblockPlus\IE\AdblockPlus.dll (Wladimir Palant)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Programme\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll (Microsoft Corporation)
O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Programme\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKLM\..\Toolbar: (FileConverter 1.3 Toolbar) - {78e516ef-11de-47a1-8364-a99b917ec5ee} - C:\Programme\FileConverter_1.3\prxtbFile.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (@C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Programme\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - {D0F4A166-B8D4-48b8-9D63-80849FE137CB} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Programme\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (FileConverter 1.3 Toolbar) - {78E516EF-11DE-47A1-8364-A99B917EC5EE} - C:\Programme\FileConverter_1.3\prxtbFile.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Programme\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Programme\Common Files\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [StartCCC] C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" File not found
O4 - HKCU..\Run: [HW_OPENEYE_OUC_Mobile Partner] C:\Program Files\Mobile Partner\UpdateDog\ouc.exe (Huawei Technologies Co., Ltd.)
O4 - HKCU..\Run: [Mobile Partner] C:\Program Files\Mobile Partner\Mobile Partner.exe ()
O4 - HKCU..\Run: [Personal ID] C:\coolspot AG\Personal ID\pid.exe (coolspot AG)
O4 - HKCU..\Run: [Spotify] C:\Users\Jürgen\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Jürgen\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - Startup: C:\Users\Jürgen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk = C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoHotStart = 0
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {5554DCB0-700B-498D-9B58-4E40E5814405} https://skweb.tmsgmbh.de/Reserved.ReportViewerWebControl.axd?ReportSession=zqhmdlq0dnnj2sql2ey4mzio&Culture=1031&CultureOverrides=True&UICulture=1031&UICultureOverrides=True&ReportStack=1&ControlID=319aead34c64409f9793d17572e6f5c1&OpType=PrintCab&Arch=X86 (RSClientPrint 2008 Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3861AC4B-0AFF-4C4A-9D1C-DBA6CCCD3C16}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A527C5BB-0F92-48FA-B73A-CA707F374143}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programme\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\progra~2\browse~1\261040~1.25\{c16c1~1\browse~1.dll) - c:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Jürgen\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Jürgen\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{55130ae2-6d59-11e2-9722-0013774bfc9d}\Shell - "" = AutoRun
O33 - MountPoints2\{55130ae2-6d59-11e2-9722-0013774bfc9d}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{55130b88-6d59-11e2-9722-0013774bfc9d}\Shell - "" = AutoRun
O33 - MountPoints2\{55130b88-6d59-11e2-9722-0013774bfc9d}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{55130ba2-6d59-11e2-9722-0013774bfc9d}\Shell - "" = AutoRun
O33 - MountPoints2\{55130ba2-6d59-11e2-9722-0013774bfc9d}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{6d44530b-6d74-11e2-8296-0013774bfc9d}\Shell - "" = AutoRun
O33 - MountPoints2\{6d44530b-6d74-11e2-8296-0013774bfc9d}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{be537e70-f844-11de-960d-0013774bfc9d}\Shell - "" = AutoRun
O33 - MountPoints2\{be537e70-f844-11de-960d-0013774bfc9d}\Shell\AutoRun\command - "" = F:\USBAutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013.06.09 20:46:03 | 000,000,000 | ---D | C] -- C:\ProgramData\16D0EDE49E6BC051000016D0D71AC751
[2013.05.15 15:21:40 | 017,613,192 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerInstaller.exe
 
========== Files - Modified Within 30 Days ==========
 
[2013.06.10 21:11:30 | 000,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{1E5CCA43-D949-4EB5-813D-9B0687F7B1E5}.job
[2013.06.10 21:07:00 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.06.10 20:39:39 | 000,000,032 | ---- | M] () -- C:\ProgramData\ftstate.ini
[2013.06.10 20:39:21 | 000,000,268 | ---- | M] () -- C:\Windows\tasks\AbelssoftPreloader.job
[2013.06.10 20:38:59 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.06.10 20:37:57 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013.06.10 20:37:57 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013.06.10 20:37:34 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.06.10 20:24:14 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.06.09 22:57:55 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2013.06.06 22:20:19 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013.05.22 18:42:08 | 000,000,250 | ---- | M] () -- C:\Windows\lexstat.ini
[2013.05.22 11:13:15 | 000,002,057 | ---- | M] () -- C:\Windows\System32\LexFiles.ulf
[2013.05.15 16:22:24 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013.05.15 16:22:24 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013.05.15 16:22:02 | 017,613,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerInstaller.exe
 
========== Files Created - No Company Name ==========
 
[2013.01.01 21:02:23 | 000,000,032 | ---- | C] () -- C:\ProgramData\ftstate.ini
[2012.09.29 13:13:42 | 000,000,989 | ---- | C] () -- C:\Windows\wiso.ini
[2012.08.16 23:26:06 | 000,000,097 | ---- | C] () -- C:\Windows\System32\dmlg.dat
[2011.01.03 10:42:46 | 000,004,096 | -H-- | C] () -- C:\Users\Jürgen\AppData\Local\keyfile3.drm
[2010.08.16 10:18:46 | 493,262,920 | ---- | C] () -- C:\Users\Jürgen\Track No01.nrg
[2010.07.09 08:11:18 | 000,007,268 | ---- | C] () -- C:\Users\Jürgen\AppData\Local\d3d9caps.dat
[2010.01.26 09:14:11 | 000,000,760 | ---- | C] () -- C:\Users\Jürgen\AppData\Roaming\setup_ldm.iss
[2008.10.08 22:48:38 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt
[2008.03.11 17:11:13 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2008.02.06 21:52:53 | 035,056,614 | ---- | C] () -- C:\Users\Jürgen\Track No16.aif
[2008.02.02 23:28:17 | 003,719,127 | ---- | C] () -- C:\Users\Jürgen\3.mp3
[2008.01.14 21:58:20 | 000,000,305 | ---- | C] () -- C:\ProgramData\addr_file.html
[2007.08.24 19:56:09 | 000,009,728 | ---- | C] () -- C:\Users\Jürgen\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
========== ZeroAccess Check ==========
 
[2006.11.02 14:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2008.11.06 14:57:06 | 011,315,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.03.03 06:16:12 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2006.11.02 11:46:13 | 000,348,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

< End of report >

--- --- ---

smeenk · 10.06.2013, 21:51

Du hast Recht, dein Rechner ist noch nicht sauber, aber es ist schon das arbeiten am Gerät wieder möglich ist

Systemscan mit ZOEK

Bitte lade die zoek.exe von hier: http://hijackthis.nl/smeenk/

Bitte deaktiviere während des Scans alle Virenscanner, da sie das Ergebnis beeinflussen.
Starte die Zoek.exe mit einem Doppelklick (nur Windows XP-Benutzer).
Windows Vista/7 Benutzer starten das Tool bitte per Rechtsklick auf das Icon und wählen "Als Administrator starten".

Kopiere untenstehende Code in das Textfeld:

Code:

ATTFilter

emptyclsid;
chromelook;
autoclean;
startupall;
filesrcm;
firefoxlook;

Nun klicke auf "Run script" und warte geduldig, bis der Scan durchgelaufen ist.
Wenn das Tool fertig ist, wird sich Notepad mit dem Logfile öffnen (ggfs. erst nach einem Neustart).
Nachträglich kannst Du den Bericht unter c:\zoek-results.log einsehen.
Poste mir das Log File zoek-results.log

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Bitte alles nach Möglichkeit hier in CODE-Tags posten: [code] Dein Log hier [/code]

lala65 · 11.06.2013, 10:51

Hallo smeenk,
mußte erst mal googlen, was denn mit Code-Tags gemeint ist

.
Okay habs verstanden, dann kommt nicht mehr so ein Buchstabensalat raus.
Werde mich heute Abend damit beschäftigen.
Noch einen schönen Tag
Gruß Su

Hallo smeenk,
also ,das war schon fast wie eine Reise zum Mond

.
Wo ich mir nicht sicher bin ist die Sache mit der Firewall.
Die war jetzt nicht aus, Virenscanner schon, aus dem Grund hat sie auch gemeckert.
Teil 1

Code:

ATTFilter

Zoek.exe Version 4.0.0.2 Updated 03-June-2013
Tool run by Jrgen on 11.06.2013 at 18:58:42,48.
Microsoft® Windows Vista™ Home Premium  6.0.6000  x86
Running in: Normal Mode Internet Access Detected

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Internet Explorer\SearchScopes\{AFF4CCB1-86E4-4D6D-A042-83DB9679F435} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Internet Explorer\SearchScopes\{E9679456-BD04-4672-876B-73412111A6D9} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BrowserProtect deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\BrowserProtect deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"bProtector Start Page"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"bProtectorDefaultScope"=-

==== Deleting Files \ Folders ======================

"C:\Users\Jürgen\AppData\Roaming\Nero" not found 
"C:\Users\Jürgen\AppData\Roaming\Real" not found 
"C:\Users\Jürgen\AppData\Roaming\Ahead" not found 
"C:\Users\Jürgen\AppData\Roaming\EPSON" not found 
"C:\Users\Jürgen\AppData\Roaming\BabSolution" not found 
"C:\Users\Jürgen\AppData\Roaming\Babylon" not found 
"C:\Users\Jürgen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect" not found 
"C:\Users\Jürgen\AppData\Local\Conduit" not found 
"C:\Users\Jürgen\AppData\LocalLow\BabylonToolbar" not found 
"C:\Users\Jürgen\AppData\LocalLow\FileConverter_1.3" not found 
"C:\Users\Jürgen\AppData\LocalLow\PriceGong" not found 
"C:\Users\Jürgen\AppData\LocalLow\Conduit" not found 
"C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data" not found 
"C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\bProtectorPreferences" not found 
"C:\ProgramData\ezsid.dat" deleted
"C:\ProgramData\16D0EDE49E6BC051000016D0D71AC751\16D0EDE49E6BC051000016D0D71AC751" deleted
"C:\ProgramData\16D0EDE49E6BC051000016D0D71AC751\16D0EDE49E6BC051000016D0D71AC751.ico" deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\bl" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.settings" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\chrome.manifest" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\install.rdf" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\00" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\01" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\02" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\03" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\10" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\11" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\12" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\13" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\20" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\21" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\22" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\23" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\BrowserProtect-3.6.xpt" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content\BrowserProtect.js" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content\overlay.xul" not deleted
"C:\ProgramData\16D0EDE49E6BC051000016D0D71AC751" deleted
"C:\Program Files\FileConverter_1.3" deleted
"C:\Program Files\BabylonToolbar" deleted
"C:\Program Files\Conduit" deleted
"C:\ProgramData\BrowserProtect" not deleted
"C:\ProgramData\Babylon" deleted
"C:\Windows\System32\searchplugins" deleted
"C:\Windows\System32\Extensions" deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components" not deleted
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\JRGEN~1\AppData\Local\Temp ====
====== C:\Windows\system32 =====
====== C:\Windows\system32\drivers =====
====== C:\Windows\Tasks ======
2013-06-11 17:11:34	741D57347E0258CA3F88E04001884FCF	3346	----a-w-	C:\Windows\system32\Tasks\BrowserProtect
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C: =====
====== C:\Users\Jrgen\AppData\Roaming ======
====== C:\Users\Jrgen ======

====== C: exe-files ==
2013-06-10 19:05:47	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Jürgen\Downloads\OTL.exe
2013-06-06 20:09:19	1EA998DE136184740B292FB9DCDD49AC	746848	----a-w-	C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\27.0.1453.110\27.0.1453.110_27.0.1453.94_chrome_updater.exe
=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Personal ID"="C:\COOLSP~1\PERSON~1\PID.EXE"
"Spotify"="C:\Users\Jrgen\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"
"Spotify Web Helper"="C:\Users\Jrgen\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"HW_OPENEYE_OUC_Mobile Partner"="C:\Program Files\Mobile Partner\UpdateDog\ouc.exe"
"Mobile Partner"="C:\Program Files\Mobile Partner\Mobile Partner.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe"
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
"LanguageShortcut"="C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
"NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe"
"HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe"
"Bing Bar"="C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe"
"Microsoft Default Manager"="C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe -resume"
"TkBellExe"="C:\Program Files\Real\RealPlayer\Update\realsched.exe -osboot"
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime"
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"avgnt"="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min"
"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Personal ID"="C:\COOLSP~1\PERSON~1\PID.EXE"
"Spotify"="C:\Users\Jrgen\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"
"Spotify Web Helper"="C:\Users\Jrgen\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"HW_OPENEYE_OUC_Mobile Partner"="C:\Program Files\Mobile Partner\UpdateDog\ouc.exe"
"Mobile Partner"="C:\Program Files\Mobile Partner\Mobile Partner.exe"

==== Startup Folders ======================

2007-09-10 13:03:10	1054	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk
2007-07-10 22:31:16	807	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk
2010-08-14 12:45:50	1717	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
2010-01-25 15:30:30	1901	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WISO Mein Sparbuch heute.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\AbelssoftPreloader.job --a------ C:\2C:\Program Files\WashAndGo\AbelssoftPreloader.exe []
C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [15.05.2013 16:22]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\0C:\Program Files\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [08.02.2010 11:35]
C:\Windows\tasks\User_Feed_Synchronization-{1E5CCA43-D949-4EB5-813D-9B0687F7B1E5}.job --ah----- C:\Windows\system32\msfeedssync.exe [23.02.2010 06:54]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dhkplhfnhceodhffomolpfigojocbpcb - C:\Users\Jrgen\AppData\Roaming\BabSolution\CR\BabylonChrome1.crx[09.12.2012 18:24]
jfmjfhklogoienhpfnppmbcbjfjnkonk - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx[21.02.2011 23:56]
oajhdafmlgdbnceanjdnahnblimohpdc - C:\Users\Jrgen\AppData\LocalLow\AdblockPlus\CHROME\AdblockPlus.crx[15.07.2010 23:00]
pgafcinpmmpklohkojmllohdhomoefph - C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx[20.12.2012 17:05]

==== Chrome Fix ======================

C:\Users\Jrgen\AppData\Roaming\BabSolution\CR\BabylonChrome1.crx deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.t-online.de/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="hxxp://search.babylon.com/?affID=109958&tt=5212_4&babsrc=NT_ss&mntrId=16c9c0510000000000000013774bfc9d"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.t-online.de/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} Search the web (Babylon) Url="hxxp://search.babylon.com/?q={searchTerms}&affID=109958&tt=5212_4&babsrc=SP_ss&mntrId=16c9c0510000000000000013774bfc9d"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{78E516EF-11DE-47A1-8364-A99B917EC5EE} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_USERS\S-1-5-21-3278456500-2755554684-1864709346-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb deleted successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jürgen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jürgen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Jürgen\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jürgen\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\JRGEN~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\bl"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.settings"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\chrome.manifest"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\install.rdf"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\00"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\01"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\02"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\03"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\10"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\11"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\12"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\13"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\20"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\21"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\22"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\23"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\BrowserProtect-3.6.xpt"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content\BrowserProtect.js"  not found
"C:\ProgramData\BrowserProtect\2.6.1040.25\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content\overlay.xul"  not found
"C:\ProgramData\BrowserProtect"  not found

==== EOF on 11.06.2013 at 19:22:06,33 ======================

Teil 1 habe das leider mit dem zip nicht hinbekommen

Code:

ATTFilter

19:50:39.0513 5512  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:50:39.0747 5512  ============================================================
19:50:39.0747 5512  Current date / time: 2013/06/11 19:50:39.0747
19:50:39.0747 5512  SystemInfo:
19:50:39.0747 5512  
19:50:39.0747 5512  OS Version: 6.0.6000 ServicePack: 0.0
19:50:39.0747 5512  Product type: Workstation
19:50:39.0747 5512  ComputerName: JÜRGEN-PC
19:50:39.0747 5512  UserName: Jürgen
19:50:39.0747 5512  Windows directory: C:\Windows
19:50:39.0747 5512  System windows directory: C:\Windows
19:50:39.0747 5512  Processor architecture: Intel x86
19:50:39.0747 5512  Number of processors: 2
19:50:39.0747 5512  Page size: 0x1000
19:50:39.0747 5512  Boot type: Normal boot
19:50:39.0747 5512  ============================================================
19:50:41.0728 5512  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:50:41.0728 5512  ============================================================
19:50:41.0728 5512  \Device\Harddisk0\DR0:
19:50:41.0728 5512  MBR partitions:
19:50:41.0728 5512  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1400800, BlocksNum 0x8A19000
19:50:41.0728 5512  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9E19800, BlocksNum 0x8BFF800
19:50:41.0728 5512  ============================================================
19:50:41.0759 5512  C: <-> \Device\Harddisk0\DR0\Partition1
19:50:41.0806 5512  D: <-> \Device\Harddisk0\DR0\Partition2
19:50:41.0806 5512  ============================================================
19:50:41.0806 5512  Initialize success
19:50:41.0806 5512  ============================================================
19:50:48.0920 2800  ============================================================
19:50:48.0920 2800  Scan started
19:50:48.0920 2800  Mode: Manual; 
19:50:48.0920 2800  ============================================================
19:50:49.0825 2800  ================ Scan system memory ========================
19:50:49.0825 2800  System memory - ok
19:50:49.0825 2800  ================ Scan services =============================
19:50:50.0027 2800  [ 84FC6DF81212D16BE5C4F441682FECCC ] ACPI            C:\Windows\system32\drivers\acpi.sys
19:50:50.0027 2800  ACPI - ok
19:50:50.0152 2800  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:50:50.0168 2800  AdobeARMservice - ok
19:50:50.0246 2800  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:50:50.0246 2800  AdobeFlashPlayerUpdateSvc - ok
19:50:50.0308 2800  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
19:50:50.0355 2800  adp94xx - ok
19:50:50.0402 2800  [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci         C:\Windows\system32\drivers\adpahci.sys
19:50:50.0433 2800  adpahci - ok
19:50:50.0464 2800  [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
19:50:50.0495 2800  adpu160m - ok
19:50:50.0511 2800  [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320         C:\Windows\system32\drivers\adpu320.sys
19:50:50.0542 2800  adpu320 - ok
19:50:50.0573 2800  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:50:50.0589 2800  AeLookupSvc - ok
19:50:50.0620 2800  [ A7B8A3A79D35215D798A300DF49ED23F ] Afc             C:\Windows\system32\drivers\Afc.sys
19:50:50.0651 2800  Afc - ok
19:50:50.0683 2800  [ 5D24CAF8EFD924A875698FF28384DB8B ] AFD             C:\Windows\system32\drivers\afd.sys
19:50:50.0714 2800  AFD - ok
19:50:50.0745 2800  [ 39E435C90C9C4F780FA0ED05CA3C3A1B ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
19:50:50.0761 2800  AgereModemAudio - ok
19:50:50.0854 2800  [ A19871AE65A769C65034B4DC44C29023 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
19:50:50.0948 2800  AgereSoftModem - ok
19:50:50.0979 2800  [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440          C:\Windows\system32\drivers\agp440.sys
19:50:51.0010 2800  agp440 - ok
19:50:51.0073 2800  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
19:50:51.0104 2800  aic78xx - ok
19:50:51.0119 2800  [ E69FB0E3112C40FDC0EF7D21A52DC951 ] ALG             C:\Windows\System32\alg.exe
19:50:51.0151 2800  ALG - ok
19:50:51.0197 2800  [ 90395B64600EBB4552E26E178C94B2E4 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:50:51.0197 2800  aliide - ok
19:50:51.0229 2800  [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
19:50:51.0244 2800  amdagp - ok
19:50:51.0260 2800  [ 0577DF1D323FE75A739C787893D300EA ] amdide          C:\Windows\system32\drivers\amdide.sys
19:50:51.0307 2800  amdide - ok
19:50:51.0338 2800  [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
19:50:51.0353 2800  AmdK7 - ok
19:50:51.0369 2800  [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
19:50:51.0385 2800  AmdK8 - ok
19:50:51.0463 2800  [ D9A92E6DD41C5ADC045AE485026AA40C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
19:50:51.0494 2800  AntiVirSchedulerService - ok
19:50:51.0541 2800  [ 66A7A38F7C439153B758548375EB9E5E ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
19:50:51.0541 2800  AntiVirService - ok
19:50:51.0587 2800  [ CFA455816879F06F1C4E5BBF9E8AEF7D ] Appinfo         C:\Windows\System32\appinfo.dll
19:50:51.0587 2800  Appinfo - ok
19:50:51.0603 2800  [ 5F673180268BB1FDB69C99B6619FE379 ] arc             C:\Windows\system32\drivers\arc.sys
19:50:51.0634 2800  arc - ok
19:50:51.0743 2800  [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
19:50:51.0790 2800  arcsas - ok
19:50:51.0993 2800  [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:50:52.0024 2800  aspnet_state - ok
19:50:52.0040 2800  [ E86CF7CE67D5DE898F27EF884DC357D8 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:50:52.0071 2800  AsyncMac - ok
19:50:52.0118 2800  [ B35CFCEF838382AB6490B321C87EDF17 ] atapi           C:\Windows\system32\drivers\atapi.sys
19:50:52.0118 2800  atapi - ok
19:50:52.0165 2800  [ B0C272DEF210B149C0BFA0D85600CE4B ] athr            C:\Windows\system32\DRIVERS\athr.sys
19:50:52.0227 2800  athr - ok
19:50:52.0289 2800  [ D29CAE8AA91E405A569892FA3D97AA64 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
19:50:52.0321 2800  Ati External Event Utility - ok
19:50:52.0430 2800  [ E46F2FB11CFE13187A4E3EF512C0D226 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
19:50:52.0508 2800  atikmdag - ok
19:50:52.0539 2800  [ 4AA1EB65481C392955939E735D27118B ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
19:50:52.0555 2800  AtiPcie - ok
19:50:52.0601 2800  [ E760FC1BD68F7F6F1B17EB4E8D9480B0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:50:52.0601 2800  AudioEndpointBuilder - ok
19:50:52.0617 2800  [ E760FC1BD68F7F6F1B17EB4E8D9480B0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
19:50:52.0633 2800  Audiosrv - ok
19:50:52.0679 2800  [ 87425709A251386064C99B684BF96F72 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
19:50:52.0711 2800  avgntflt - ok
19:50:52.0742 2800  [ D50FBA68163BC498F2C136E0E5BA8E2F ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
19:50:52.0773 2800  avipbb - ok
19:50:52.0804 2800  [ CB8741CD7B126499FED40C9B197F6AC5 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
19:50:52.0820 2800  avkmgr - ok
19:50:52.0913 2800  [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
19:50:52.0945 2800  BcmSqlStartupSvc - ok
19:50:52.0991 2800  [ AC3DD1708B22761EBD7CBE14DCC3B5D7 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:50:52.0991 2800  Beep - ok
19:50:53.0054 2800  [ 98EBDFFB824A7C265337D68DD480E45C ] BFE             C:\Windows\System32\bfe.dll
19:50:53.0054 2800  BFE - ok
19:50:53.0116 2800  [ DA551697E34D2B9943C8B1C8EAFFE89A ] BITS            C:\Windows\System32\qmgr.dll
19:50:53.0147 2800  BITS - ok
19:50:53.0147 2800  blbdrive - ok
19:50:53.0179 2800  [ 913CD06FBE9105CE6077E90FD4418561 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:50:53.0210 2800  bowser - ok
19:50:53.0241 2800  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
19:50:53.0241 2800  BrFiltLo - ok
19:50:53.0272 2800  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
19:50:53.0288 2800  BrFiltUp - ok
19:50:53.0319 2800  [ BEB6470532B7461D7BB426E3FACB424F ] Browser         C:\Windows\System32\browser.dll
19:50:53.0335 2800  Browser - ok
19:50:53.0381 2800  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
19:50:53.0413 2800  Brserid - ok
19:50:53.0428 2800  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
19:50:53.0444 2800  BrSerWdm - ok
19:50:53.0459 2800  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
19:50:53.0491 2800  BrUsbMdm - ok
19:50:53.0506 2800  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
19:50:53.0522 2800  BrUsbSer - ok
19:50:53.0569 2800  [ 064FBC56921051DE1075495D628B815F ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
19:50:53.0569 2800  BthEnum - ok
19:50:53.0600 2800  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
19:50:53.0631 2800  BTHMODEM - ok
19:50:53.0678 2800  [ B8C3D9DDF85FD197C3E5F849FEF71144 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
19:50:53.0709 2800  BthPan - ok
19:50:53.0740 2800  [ B24757D9154CCA035E1BBD3DB92966D7 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
19:50:53.0771 2800  BTHPORT - ok
19:50:53.0787 2800  [ 58EE7F5E68310BC8D4E7CEBD8358C12E ] BthServ         C:\Windows\System32\bthserv.dll
19:50:53.0818 2800  BthServ - ok
19:50:53.0849 2800  [ D42CF5F0C7635B3F1578810FE34D9E41 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
19:50:53.0865 2800  BTHUSB - ok
19:50:53.0927 2800  [ 636F45A8500C1438CFA7DEE15FC5C184 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
19:50:53.0927 2800  btwaudio - ok
19:50:53.0974 2800  [ BF9256FF01B093A5D90BB7A35EC90410 ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
19:50:54.0005 2800  btwavdt - ok
19:50:54.0037 2800  [ 0AB8C1AC177AFB27309E1072FAF34A37 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
19:50:54.0037 2800  btwrchid - ok
19:50:54.0083 2800  [ 6C3A437FC873C6F6A4FC620B6888CB86 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:50:54.0099 2800  cdfs - ok
19:50:54.0115 2800  [ 8D1866E61AF096AE8B582454F5E4D303 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:50:54.0146 2800  cdrom - ok
19:50:54.0193 2800  [ 0600E04315FE543802A379D5D23C8BE0 ] CertPropSvc     C:\Windows\System32\certprop.dll
19:50:54.0208 2800  CertPropSvc - ok
19:50:54.0224 2800  [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass        C:\Windows\system32\drivers\circlass.sys
19:50:54.0255 2800  circlass - ok
19:50:54.0302 2800  [ 1B84FD0937D3B99AF9BA38DDFF3DAF54 ] CLFS            C:\Windows\system32\CLFS.sys
19:50:54.0302 2800  CLFS - ok
19:50:54.0349 2800  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:50:54.0364 2800  clr_optimization_v2.0.50727_32 - ok
19:50:54.0427 2800  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:50:54.0427 2800  clr_optimization_v4.0.30319_32 - ok
19:50:54.0473 2800  [ ED97AD3DF1B9005989EAF149BF06C821 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
19:50:54.0489 2800  CmBatt - ok
19:50:54.0520 2800  [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:50:54.0551 2800  cmdide - ok
19:50:54.0551 2800  [ 722936AFB75A7F509662B69B5632F48A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
19:50:54.0583 2800  Compbatt - ok
19:50:54.0583 2800  COMSysApp - ok
19:50:54.0614 2800  [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
19:50:54.0614 2800  crcdisk - ok
19:50:54.0645 2800  [ 22A7F883508176489F559EE745B5BF5D ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
19:50:54.0645 2800  Crusoe - ok
19:50:54.0692 2800  [ 1C26FB097170A2A91066D1E3A24366E3 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:50:54.0707 2800  CryptSvc - ok
19:50:54.0770 2800  [ 7B981222A257D076885BFFB66F19B7CE ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:50:54.0785 2800  DcomLaunch - ok
19:50:54.0801 2800  [ A7179DE59AE269AB70345527894CCD7C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:50:54.0832 2800  DfsC - ok
19:50:54.0973 2800  [ E0D584AA76C7D845BA9F3A788260528F ] DFSR            C:\Windows\system32\DFSR.exe
19:50:55.0113 2800  DFSR - ok
19:50:55.0191 2800  [ DC45739BC22D528D2B3E50D3F6761750 ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
19:50:55.0191 2800  Dhcp - ok
19:50:55.0222 2800  [ 841AF4C4D41D3E3B2F244E976B0F7963 ] disk            C:\Windows\system32\drivers\disk.sys
19:50:55.0253 2800  disk - ok
19:50:55.0285 2800  [ EECBA1DD142BF8693C476BE8F32FE253 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:50:55.0300 2800  Dnscache - ok
19:50:55.0316 2800  [ 1F795D214820E496BF1124434A6DB546 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:50:55.0347 2800  dot3svc - ok
19:50:55.0409 2800  [ 57B2D433A08B95E4F1B53A919937F3E5 ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
19:50:55.0441 2800  Dot4 - ok
19:50:55.0472 2800  [ D93FA484BB62FBE7E5EF335C5415D3CF ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
19:50:55.0503 2800  Dot4Print - ok
19:50:55.0550 2800  [ 599742C4260FB3E8EDB3BE148B8CE856 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
19:50:55.0550 2800  dot4usb - ok
19:50:55.0597 2800  [ 032C90AD677BF7B7A8013D6087C7A921 ] DPS             C:\Windows\system32\dps.dll
19:50:55.0597 2800  DPS - ok
19:50:55.0628 2800  [ EE472CD2C01F6F8E8AA1FA06FFEF61B6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:50:55.0643 2800  drmkaud - ok
19:50:55.0690 2800  [ 334988883DE69ADB27E2CF9F9715BBDB ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:50:55.0706 2800  DXGKrnl - ok
19:50:55.0737 2800  [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
19:50:55.0753 2800  E1G60 - ok
19:50:55.0784 2800  [ 90A0A875642E18618010645311B4E89E ] EapHost         C:\Windows\System32\eapsvc.dll
19:50:55.0799 2800  EapHost - ok
19:50:55.0846 2800  [ 0EFC7531B936EE57FDB4E837664C509F ] Ecache          C:\Windows\system32\drivers\ecache.sys
19:50:55.0893 2800  Ecache - ok
19:50:55.0940 2800  [ 792F72E8B63DF55CE98445D464874986 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:50:55.0987 2800  ehRecvr - ok
19:50:56.0018 2800  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe
19:50:56.0049 2800  ehSched - ok
19:50:56.0080 2800  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll
19:50:56.0080 2800  ehstart - ok
19:50:56.0111 2800  [ E8F3F21A71720C84BCF423B80028359F ] elxstor         C:\Windows\system32\drivers\elxstor.sys
19:50:56.0143 2800  elxstor - ok
19:50:56.0205 2800  [ 3226FDA08988526E819E364E8CCE4CEE ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
19:50:56.0221 2800  EMDMgmt - ok
19:50:56.0283 2800  [ 7B4971C3D43525175A4EA0D143E0412E ] EventSystem     C:\Windows\system32\es.dll
19:50:56.0299 2800  EventSystem - ok
19:50:56.0345 2800  [ FB54F67974D13D73BE3E2F1DF042D295 ] ewusbnet        C:\Windows\system32\DRIVERS\ewusbnet.sys
19:50:56.0392 2800  ewusbnet - ok
19:50:56.0423 2800  [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev     C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
19:50:56.0455 2800  ew_hwusbdev - ok
19:50:56.0501 2800  [ 84A317CB0B3954D3768CDCD018DBF670 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:50:56.0548 2800  fastfat - ok
19:50:56.0579 2800  [ 63BDADA84951B9C03E641800E176898A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
19:50:56.0579 2800  fdc - ok
19:50:56.0611 2800  [ E43BCE1A77D6FD4ED5F8E0482B9E7DF1 ] fdPHost         C:\Windows\system32\fdPHost.dll
19:50:56.0611 2800  fdPHost - ok
19:50:56.0626 2800  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:50:56.0642 2800  FDResPub - ok
19:50:56.0673 2800  [ 65773D6115C037FFD7EF8280AE85EB9D ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:50:56.0689 2800  FileInfo - ok
19:50:56.0704 2800  [ C226DD0DE060745F3E042F58DCF78402 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:50:56.0720 2800  Filetrace - ok
19:50:56.0751 2800  [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
19:50:56.0767 2800  flpydisk - ok
19:50:56.0782 2800  [ A6A8DA7AE4D53394AB22AC3AB6D3F5D3 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:50:56.0798 2800  FltMgr - ok
19:50:56.0891 2800  [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:50:56.0923 2800  FontCache3.0.0.0 - ok
19:50:56.0954 2800  [ 66A078591208BAA210C7634B11EB392C ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:50:57.0016 2800  Fs_Rec - ok
19:50:57.0063 2800  [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
19:50:57.0079 2800  gagp30kx - ok
19:50:57.0219 2800  [ BCF6589C42D8F6A20F33EF133FFE0524 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:50:57.0281 2800  gpsvc - ok
19:50:57.0422 2800  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
19:50:57.0422 2800  gupdate - ok
19:50:57.0437 2800  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
19:50:57.0437 2800  gupdatem - ok
19:50:57.0484 2800  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:50:57.0515 2800  gusvc - ok
19:50:57.0578 2800  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:50:57.0609 2800  HdAudAddService - ok
19:50:57.0640 2800  [ 0DB613A7E427B5663563677796FD5258 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
19:50:57.0640 2800  HDAudBus - ok
19:50:57.0671 2800  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
19:50:57.0687 2800  HidBth - ok
19:50:57.0703 2800  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
19:50:57.0734 2800  HidIr - ok
19:50:57.0765 2800  [ 8FA640195279ACE21BEA91396A0054FC ] hidserv         C:\Windows\system32\hidserv.dll
19:50:57.0781 2800  hidserv - ok
19:50:57.0812 2800  [ 01E7971E9F4BD6AC6A08DB52D0EA0418 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
19:50:57.0827 2800  HidUsb - ok
19:50:57.0874 2800  [ D40AA05E29BF6ED29B139F044B461E9B ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:50:57.0874 2800  hkmsvc - ok
19:50:57.0905 2800  [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
19:50:57.0937 2800  HpCISSs - ok
19:50:57.0983 2800  [ EA24FE637D974A8A31BC650F478E3533 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:50:58.0030 2800  HTTP - ok
19:50:58.0061 2800  [ F44461E66F1B7DD267957FE9BAA63ED0 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
19:50:58.0093 2800  huawei_enumerator - ok
19:50:58.0139 2800  [ F547F862B8907F1BCBD9B72A72A6449E ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
19:50:58.0171 2800  hwdatacard - ok
19:50:58.0249 2800  HWDeviceService.exe - ok
19:50:58.0295 2800  [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
19:50:58.0327 2800  i2omp - ok
19:50:58.0389 2800  [ 1C9EE072BAA3ABB460B91D7EE9152660 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
19:50:58.0405 2800  i8042prt - ok
19:50:58.0436 2800  [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
19:50:58.0483 2800  iaStorV - ok
19:50:58.0576 2800  [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:50:58.0685 2800  idsvc - ok
19:50:58.0732 2800  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
19:50:58.0748 2800  iirsp - ok
19:50:58.0795 2800  [ 35662FE4D8622F667AA5A5568F7F1B40 ] IKEEXT          C:\Windows\System32\ikeext.dll
19:50:58.0841 2800  IKEEXT - ok
19:50:58.0935 2800  [ 7BD4E0428776D11C8E8E26F9F5508690 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:50:59.0044 2800  IntcAzAudAddService - ok
19:50:59.0075 2800  [ 97469037714070E45194ED318D636401 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:50:59.0091 2800  intelide - ok
19:50:59.0138 2800  [ CE44CC04262F28216DD4341E9E36A16F ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:50:59.0138 2800  intelppm - ok
19:50:59.0153 2800  [ 88CF5281ED9880D74DC9011CF8B5262D ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:50:59.0169 2800  IPBusEnum - ok
19:50:59.0185 2800  [ 880C6F86CC3F551B8FEA2C11141268C0 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:50:59.0200 2800  IpFilterDriver - ok
19:50:59.0263 2800  [ ECC9AD72CFC4AB41CF6A9BCC11F9FEF6 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:50:59.0278 2800  iphlpsvc - ok
19:50:59.0294 2800  IpInIp - ok
19:50:59.0325 2800  [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
19:50:59.0341 2800  IPMIDRV - ok
19:50:59.0356 2800  [ 10077C35845101548037DF04FD1A420B ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
19:50:59.0387 2800  IPNAT - ok
19:50:59.0434 2800  [ A82F328F4792304184642D6D397BB1E3 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:50:59.0450 2800  IRENUM - ok
19:50:59.0465 2800  [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:50:59.0497 2800  isapnp - ok
19:50:59.0528 2800  [ 4DCA456D4D5723F8FA9C6760D240B0DF ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
19:50:59.0528 2800  iScsiPrt - ok
19:50:59.0559 2800  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
19:50:59.0559 2800  iteatapi - ok
19:50:59.0606 2800  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
19:50:59.0637 2800  iteraid - ok
19:50:59.0653 2800  [ B076B2AB806B3F696DAB21375389101C ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
19:50:59.0684 2800  kbdclass - ok
19:50:59.0699 2800  [ D2600CB17B7408B4A83F231DC9A11AC3 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
19:50:59.0715 2800  kbdhid - ok
19:50:59.0762 2800  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] KeyIso          C:\Windows\system32\lsass.exe
19:50:59.0762 2800  KeyIso - ok
19:50:59.0809 2800  [ EBC507F129DF8F0E0CA270DCFC0CF87F ] KMDFMEMIO       C:\Windows\system32\DRIVERS\kmdfmemio.sys
19:50:59.0824 2800  KMDFMEMIO - ok
19:50:59.0855 2800  [ 0A829977B078DEA11641FC2AF87CEADE ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:50:59.0887 2800  KSecDD - ok
19:50:59.0933 2800  [ 45C537FE5DDE9A0146AEFF76E615737D ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:50:59.0933 2800  KtmRm - ok
19:50:59.0965 2800  [ 53D1482FC1AA36AC015A85E6CF2146BD ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:50:59.0996 2800  LanmanServer - ok
19:51:00.0043 2800  [ 435F0F6DC87A4B5DA78F1FA309884189 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:51:00.0074 2800  LanmanWorkstation - ok
19:51:00.0089 2800  LgBttPort - ok
19:51:00.0105 2800  lgbusenum - ok
19:51:00.0121 2800  LGVMODEM - ok
19:51:00.0136 2800  [ FD015B4F95DAA2B712F0E372A116FBAD ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:51:00.0167 2800  lltdio - ok
19:51:00.0199 2800  [ 7450DBCF754391DD6363FFFD5EF0E789 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:51:00.0230 2800  lltdsvc - ok
19:51:00.0261 2800  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:51:00.0292 2800  lmhosts - ok
19:51:00.0308 2800  [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
19:51:00.0323 2800  LSI_FC - ok
19:51:00.0355 2800  [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
19:51:00.0355 2800  LSI_SAS - ok
19:51:00.0401 2800  [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
19:51:00.0433 2800  LSI_SCSI - ok
19:51:00.0448 2800  [ 42885BB44B6E065B8575A8DD6C430C52 ] luafv           C:\Windows\system32\drivers\luafv.sys
19:51:00.0448 2800  luafv - ok
19:51:00.0464 2800  LVUSBSta - ok
19:51:00.0479 2800  lxcz_device - ok
19:51:00.0635 2800  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe
19:51:00.0635 2800  McComponentHostService - ok
19:51:00.0667 2800  [ E93C1AD58E88A0846EAEE10671C2A8F3 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:51:00.0682 2800  Mcx2Svc - ok
19:51:00.0729 2800  [ D153B14FC6598EAE8422A2037553ADCE ] megasas         C:\Windows\system32\drivers\megasas.sys
19:51:00.0745 2800  megasas - ok
19:51:00.0807 2800  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:51:00.0823 2800  Microsoft Office Groove Audit Service - ok
19:51:00.0854 2800  [ 9DFA3A459AF0954AA85B4F7622AD87BB ] MMCSS           C:\Windows\system32\mmcss.dll
19:51:00.0854 2800  MMCSS - ok
19:51:00.0885 2800  [ 21755967298A46FB6ADFEC9DB6012211 ] Modem           C:\Windows\system32\drivers\modem.sys
19:51:00.0885 2800  Modem - ok
19:51:00.0916 2800  [ 7446E104A5FE5987CA9E4983FBAC4F97 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:51:00.0916 2800  monitor - ok
19:51:00.0947 2800  [ 5FBA13C1A1841B0885D316ED3589489D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:51:00.0963 2800  mouclass - ok
19:51:00.0994 2800  [ B569B5C5D3BDE545DF3A6AF512CCCDBA ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:51:01.0025 2800  mouhid - ok
19:51:01.0057 2800  [ 01F1E5A3E4877C931CBB31613FEC16A6 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
19:51:01.0088 2800  MountMgr - ok
19:51:01.0135 2800  [ 583A41F26278D9E0EA548163D6139397 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:51:01.0150 2800  mpio - ok
19:51:01.0197 2800  [ 6E7A7F0C1193EE5648443FE2D4B789EC ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:51:01.0197 2800  mpsdrv - ok
19:51:01.0228 2800  [ 563ED845885C6A7C09A7715D8BD0585C ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:51:01.0259 2800  MpsSvc - ok
19:51:01.0291 2800  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
19:51:01.0322 2800  Mraid35x - ok
19:51:01.0337 2800  [ 1D8828B98EE309D65E006F0829E280E5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:51:01.0353 2800  MRxDAV - ok
19:51:01.0384 2800  [ 8AF705CE1BB907932157FAB821170F27 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:51:01.0415 2800  mrxsmb - ok
19:51:01.0447 2800  [ 47E13AB23371BE3279EEF22BBFA2C1BE ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:51:01.0478 2800  mrxsmb10 - ok
19:51:01.0493 2800  [ 90B3FC7BD6B3D7EE7635DEBBA2187F66 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:51:01.0509 2800  mrxsmb20 - ok
19:51:01.0540 2800  [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:51:01.0571 2800  msahci - ok
19:51:01.0587 2800  [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:51:01.0618 2800  msdsm - ok
19:51:01.0649 2800  [ BC64A92D821EFEA8BAB8E8CAF1B668BC ] MSDTC           C:\Windows\System32\msdtc.exe
19:51:01.0665 2800  MSDTC - ok
19:51:01.0712 2800  [ 729EAFEFD4E7417165F353A18DBE947D ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:51:01.0743 2800  Msfs - ok
19:51:01.0774 2800  [ 207DF26DBB2537C20276DA0E15892274 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:51:01.0774 2800  msisadrv - ok
19:51:01.0852 2800  [ 8ACF956D9154E893E789881430C12632 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:51:01.0883 2800  MSiSCSI - ok
19:51:01.0883 2800  msiserver - ok
19:51:01.0915 2800  [ 892CEDEFA7E0FFE7BE8DA651B651D047 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:51:01.0930 2800  MSKSSRV - ok
19:51:01.0977 2800  [ AE2CB1DA69B2676B4CEE2A501AF5871C ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:51:01.0993 2800  MSPCLOCK - ok
19:51:02.0008 2800  [ F910DA84FA90C44A3ADDB7CD874463FD ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:51:02.0024 2800  MSPQM - ok
19:51:02.0039 2800  [ 84571C0AE07647BA38D493F5F0015DF7 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:51:02.0071 2800  MsRPC - ok
19:51:02.0086 2800  [ 7DBAA028F625AA46B95DDA4FBE4B602B ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
19:51:02.0086 2800  mssmbios - ok
19:51:02.0164 2800  MSSQL$MSSMLBIZ - ok
19:51:02.0227 2800  [ C06EA83F6FC2959E897C117255B6B1D5 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
19:51:02.0242 2800  MSSQLServerADHelper - ok
19:51:02.0289 2800  [ C826DD1373F38AFD9CA46EC3C436A14E ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:51:02.0305 2800  MSTEE - ok
19:51:02.0320 2800  [ FA7AA70050CF5E2D15DE00941E5665E5 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:51:02.0351 2800  Mup - ok
19:51:02.0383 2800  [ 1CDBB5D002FE2BC5300AA20550D8A52E ] napagent        C:\Windows\system32\qagentRT.dll
19:51:02.0398 2800  napagent - ok
19:51:02.0445 2800  [ 6DA4A0FC7C0E83DF0CB3CFD0A514C3BC ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:51:02.0461 2800  NativeWifiP - ok
19:51:02.0492 2800  [ FFFE00134C554E113EE186EEDDB0FF30 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:51:02.0523 2800  NDIS - ok
19:51:02.0554 2800  [ 81659CDCBD0F9A9E07E6878AD8C78D3F ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:51:02.0554 2800  NdisTapi - ok
19:51:02.0570 2800  [ 5DE5EE546BF40838EBE0E01CB629DF64 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:51:02.0570 2800  Ndisuio - ok
19:51:02.0601 2800  [ 397402ADCBB8946223A1950101F6CD94 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:51:02.0632 2800  NdisWan - ok
19:51:02.0648 2800  [ 1B24FA907AF283199A81B3BB37E5E526 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:51:02.0663 2800  NDProxy - ok
19:51:02.0819 2800  [ 6D4028D458EAAA1782099750790DC8C9 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
19:51:02.0897 2800  Nero BackItUp Scheduler 3 - ok
19:51:02.0975 2800  [ A081CB6FB9A12668F233EB5414BE3A0E ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:51:02.0975 2800  Net Driver HPZ12 - ok
19:51:03.0022 2800  [ 356DBB9F98E8DC1028DD3092FCEEB877 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:51:03.0038 2800  NetBIOS - ok
19:51:03.0069 2800  [ E3A168912E7EEFC3BD3B814720D68B41 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
19:51:03.0100 2800  netbt - ok
19:51:03.0116 2800  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] Netlogon        C:\Windows\system32\lsass.exe
19:51:03.0116 2800  Netlogon - ok
19:51:03.0147 2800  [ 90A4DAE28B94497F83BEA0F2A3B77092 ] Netman          C:\Windows\System32\netman.dll
19:51:03.0163 2800  Netman - ok
19:51:03.0194 2800  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:03.0241 2800  NetMsmqActivator - ok
19:51:03.0256 2800  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:03.0256 2800  NetPipeActivator - ok
19:51:03.0287 2800  [ 7C5C3D9CEEE838856B828AB6F98A2857 ] netprofm        C:\Windows\System32\netprofm.dll
19:51:03.0303 2800  netprofm - ok
19:51:03.0319 2800  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:03.0319 2800  NetTcpActivator - ok
19:51:03.0319 2800  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:03.0334 2800  NetTcpPortSharing - ok
19:51:03.0459 2800  [ 6E9EDC1020B319E7676387B8CDF2398C ] NETw2v32        C:\Windows\system32\DRIVERS\NETw2v32.sys
19:51:03.0599 2800  NETw2v32 - ok
19:51:03.0631 2800  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
19:51:03.0662 2800  nfrd960 - ok
19:51:03.0693 2800  [ C424117A562F2DE37A42266894C79AEB ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:51:03.0709 2800  NlaSvc - ok
19:51:03.0771 2800  [ FF4D73B16EA3A32D34CEB3A7BC3C3773 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
19:51:03.0802 2800  NMIndexingService - ok
19:51:03.0849 2800  [ 4F9832BEB9FAFD8CEB0E541F1323B26E ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:51:03.0880 2800  Npfs - ok
19:51:03.0911 2800  [ 23B8201A363DE0E649FC75EE9874DEE2 ] nsi             C:\Windows\system32\nsisvc.dll
19:51:03.0927 2800  nsi - ok
19:51:03.0927 2800  [ B488DFEC274DE1FC9D653870EF2587BE ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:51:03.0943 2800  nsiproxy - ok
19:51:04.0021 2800  [ 37430AA7A66D7A63407ADC2C0D05E9F6 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:51:04.0099 2800  Ntfs - ok
19:51:04.0130 2800  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
19:51:04.0145 2800  ntrigdigi - ok
19:51:04.0192 2800  [ EC5EFB3C60F1B624648344A328BCE596 ] Null            C:\Windows\system32\drivers\Null.sys
19:51:04.0192 2800  Null - ok
19:51:04.0223 2800  [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:51:04.0239 2800  nvraid - ok
19:51:04.0270 2800  [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:51:04.0286 2800  nvstor - ok
19:51:04.0301 2800  [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:51:04.0333 2800  nv_agp - ok
19:51:04.0348 2800  NwlnkFlt - ok
19:51:04.0364 2800  NwlnkFwd - ok
19:51:04.0457 2800  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:51:04.0489 2800  odserv - ok
19:51:04.0535 2800  [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
19:51:04.0567 2800  ohci1394 - ok
19:51:04.0613 2800  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:51:04.0645 2800  ose - ok
19:51:04.0738 2800  [ 016D01D3B8FB976A193C7434BED8DCCF ] p2pimsvc        C:\Windows\system32\p2psvc.dll
19:51:04.0785 2800  p2pimsvc - ok
19:51:04.0816 2800  [ 016D01D3B8FB976A193C7434BED8DCCF ] p2psvc          C:\Windows\system32\p2psvc.dll
19:51:04.0832 2800  p2psvc - ok
19:51:04.0879 2800  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
19:51:04.0910 2800  Parport - ok
19:51:04.0925 2800  [ 555A5B2C8022983BC7467BC925B222EE ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:51:04.0957 2800  partmgr - ok
19:51:04.0972 2800  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
19:51:04.0988 2800  Parvdm - ok
19:51:05.0003 2800  [ D8C5C215C932233A4F1D7F368F4E4E65 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:51:05.0019 2800  PcaSvc - ok
19:51:05.0097 2800  [ BDD96F9CF34D58958AFF1BE6EF4C8020 ] pci             C:\Windows\system32\drivers\pci.sys
19:51:05.0097 2800  pci - ok
19:51:05.0191 2800  [ CABA65E9C41CD2900D4C92D4F825C5F8 ] pciide          C:\Windows\system32\drivers\pciide.sys
19:51:05.0269 2800  pciide - ok
19:51:05.0331 2800  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
19:51:05.0393 2800  pcmcia - ok
19:51:05.0440 2800  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:51:05.0534 2800  PEAUTH - ok
19:51:05.0549 2800  pepifilter - ok
19:51:05.0581 2800  PID_PEPI - ok
19:51:05.0643 2800  [ CD05A38D166BEADE18030BAFC0C0A939 ] pla             C:\Windows\system32\pla.dll
19:51:05.0705 2800  pla - ok
19:51:05.0752 2800  [ 747BB4C31F3B6E8D1B5ED0AD61518CB5 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:51:05.0768 2800  PlugPlay - ok
19:51:05.0846 2800  [ 65BC271F337637731D3C71455AE1F476 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:51:05.0877 2800  Pml Driver HPZ12 - ok
19:51:05.0924 2800  [ 016D01D3B8FB976A193C7434BED8DCCF ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
19:51:05.0924 2800  PNRPAutoReg - ok
19:51:05.0971 2800  [ 016D01D3B8FB976A193C7434BED8DCCF ] PNRPsvc         C:\Windows\system32\p2psvc.dll
19:51:05.0971 2800  PNRPsvc - ok
19:51:06.0033 2800  [ 5EBDEC613BD377CE9A85382BE5C6B83B ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:51:06.0033 2800  PolicyAgent - ok
19:51:06.0080 2800  [ C04DEC5ACE67C5247B150C4223970BB7 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:51:06.0080 2800  PptpMiniport - ok
19:51:06.0127 2800  [ 0E3CEF5D28B40CF273281D620C50700A ] Processor       C:\Windows\system32\drivers\processr.sys
19:51:06.0142 2800  Processor - ok
19:51:06.0173 2800  [ 8B8E8F4734C5C576E3B910DB73756CF1 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:51:06.0173 2800  ProfSvc - ok
19:51:06.0205 2800  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:51:06.0205 2800  ProtectedStorage - ok
19:51:06.0236 2800  [ 2C8BAE55247C4E09352E870292E4D1AB ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
19:51:06.0267 2800  PSched - ok
19:51:06.0329 2800  [ CCDAC889326317792480C0A67156A1EC ] ql2300          C:\Windows\system32\drivers\ql2300.sys
19:51:06.0407 2800  ql2300 - ok
19:51:06.0439 2800  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
19:51:06.0470 2800  ql40xx - ok
19:51:06.0517 2800  [ CA61BDFD3713A7CE75F2812AFC431594 ] QWAVE           C:\Windows\system32\qwave.dll
19:51:06.0548 2800  QWAVE - ok
19:51:06.0579 2800  [ D2B3E2B7426DC23E185FBC73C8936C12 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:51:06.0579 2800  QWAVEdrv - ok
19:51:06.0704 2800  [ E46F2FB11CFE13187A4E3EF512C0D226 ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys
19:51:06.0735 2800  R300 - ok
19:51:06.0751 2800  [ BD7B30F55B3649506DD8B3D38F571D2A ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:51:06.0782 2800  RasAcd - ok
19:51:06.0797 2800  [ F14F4AAB9F54D099FE99192BDB100AC9 ] RasAuto         C:\Windows\System32\rasauto.dll
19:51:06.0829 2800  RasAuto - ok
19:51:06.0860 2800  [ 68B0019FEE429EC49D29017AF937E482 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:51:06.0875 2800  Rasl2tp - ok
19:51:06.0891 2800  [ 11D65E29BC9D1E4114D18FE68194394C ] RasMan          C:\Windows\System32\rasmans.dll
19:51:06.0891 2800  RasMan - ok
19:51:06.0922 2800  [ CCF4E9C6CBBAC81437F88CB2AE0B6C96 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:51:06.0938 2800  RasPppoe - ok
19:51:06.0969 2800  [ 54129C5D9581BBEC8BD1EBD3BA813F47 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:51:07.0016 2800  rdbss - ok
19:51:07.0031 2800  [ 794585276B5D7FCA9F3FC15543F9F0B9 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:51:07.0047 2800  RDPCDD - ok
19:51:07.0094 2800  [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
19:51:07.0125 2800  rdpdr - ok
19:51:07.0125 2800  [ 980B56E2E273E19D3A9D72D5C420F008 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:51:07.0156 2800  RDPENCDD - ok
19:51:07.0187 2800  [ 8830E790A74A96605FABA74F9665BB3C ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:51:07.0203 2800  RDPWD - ok
19:51:07.0250 2800  [ 6C1A43C589EE8011A1EBFD51C01B77CE ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:51:07.0281 2800  RemoteAccess - ok
19:51:07.0312 2800  [ 9A043808667C8C1893DA7275AF373F0E ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:51:07.0328 2800  RemoteRegistry - ok
19:51:07.0390 2800  [ 7EC90C316177BA3F1BCE92005264B447 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
19:51:07.0406 2800  RFCOMM - ok
19:51:07.0484 2800  [ 2AF094B1CE4725E4551F38FDA2348637 ] RichVideo       C:\Program Files\CyberLink\Shared Files\RichVideo.exe
19:51:07.0499 2800  RichVideo - ok
19:51:07.0531 2800  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
19:51:07.0546 2800  RpcLocator - ok
19:51:07.0577 2800  [ 7B981222A257D076885BFFB66F19B7CE ] RpcSs           C:\Windows\system32\rpcss.dll
19:51:07.0593 2800  RpcSs - ok
19:51:07.0609 2800  [ 97E939D2128FEC5D5A3E6E79B290A2F4 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:51:07.0624 2800  rspndr - ok
19:51:07.0655 2800  [ 959EF612D2CCFDB6D9E443F8E3655013 ] RTL8023xp       C:\Windows\system32\DRIVERS\Rtnicxp.sys
19:51:07.0655 2800  RTL8023xp - ok
19:51:07.0671 2800  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] SamSs           C:\Windows\system32\lsass.exe
19:51:07.0687 2800  SamSs - ok
19:51:07.0718 2800  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:51:07.0765 2800  sbp2port - ok
19:51:07.0796 2800  [ 565B4B9E5AD2F2F18A4F8AAFA6C06BBB ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:51:07.0811 2800  SCardSvr - ok
19:51:07.0874 2800  [ 886CEC884B5BE29AB9828B8AB46B11F7 ] Schedule        C:\Windows\system32\schedsvc.dll
19:51:07.0905 2800  Schedule - ok
19:51:07.0905 2800  [ 0600E04315FE543802A379D5D23C8BE0 ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:51:07.0905 2800  SCPolicySvc - ok
19:51:07.0936 2800  [ 4339A2585708C7D9B0C0CE5AAD3DD6FF ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
19:51:07.0967 2800  sdbus - ok
19:51:07.0983 2800  [ F7B6BF02240D0A764ADF8C8966735552 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:51:08.0030 2800  SDRSVC - ok
19:51:08.0045 2800  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:51:08.0077 2800  secdrv - ok
19:51:08.0108 2800  [ 8388C4133DDBE62AD7BC3EC9F14271ED ] seclogon        C:\Windows\system32\seclogon.dll
19:51:08.0108 2800  seclogon - ok
19:51:08.0139 2800  [ 34350AE2C1D33D21C7305F861BD8DAD8 ] SENS            C:\Windows\System32\sens.dll
19:51:08.0139 2800  SENS - ok
19:51:08.0186 2800  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
19:51:08.0201 2800  Serenum - ok
19:51:08.0217 2800  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
19:51:08.0233 2800  Serial - ok
19:51:08.0264 2800  [ 450ACCD77EC5CEA720C1CDB9E26B953B ] sermouse        C:\Windows\system32\drivers\sermouse.sys
19:51:08.0279 2800  sermouse - ok
19:51:08.0326 2800  [ 78878235DA4DF0D116E86837A0A21DF8 ] SessionEnv      C:\Windows\system32\sessenv.dll
19:51:08.0342 2800  SessionEnv - ok
19:51:08.0373 2800  [ 103B79418DA647736EE95645F305F68A ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:51:08.0373 2800  sffdisk - ok
19:51:08.0389 2800  [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:51:08.0420 2800  sffp_mmc - ok
19:51:08.0435 2800  [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:51:08.0435 2800  sffp_sd - ok
19:51:08.0467 2800  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
19:51:08.0482 2800  sfloppy - ok
19:51:08.0529 2800  [ 9A82BF4C90B00A63150A606A1E2FD82B ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:51:08.0545 2800  SharedAccess - ok
19:51:08.0576 2800  [ B264DFA21677728613267FE63802B332 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:51:08.0591 2800  ShellHWDetection - ok
19:51:08.0623 2800  [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
19:51:08.0638 2800  sisagp - ok
19:51:08.0669 2800  [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
19:51:08.0701 2800  SiSRaid2 - ok
19:51:08.0732 2800  [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
19:51:08.0763 2800  SiSRaid4 - ok
19:51:08.0810 2800  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
19:51:08.0919 2800  SkypeUpdate - ok
19:51:09.0028 2800  [ A1DCD30534835CB67733AD00175125A6 ] slsvc           C:\Windows\system32\SLsvc.exe
19:51:09.0169 2800  slsvc - ok
19:51:09.0200 2800  [ 56DA296E7B376A727E7BDC5AC7FBEE02 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
19:51:09.0231 2800  SLUINotify - ok
19:51:09.0262 2800  [ 46BAF398809A0F3B2D3300A1760E4B91 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:51:09.0278 2800  Smb - ok
19:51:09.0325 2800  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:51:09.0340 2800  SNMPTRAP - ok
19:51:09.0371 2800  [ 426F9B029AA9162CECCF65369457D046 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:51:09.0387 2800  spldr - ok
19:51:09.0403 2800  [ DA612EF2556776DF2630B68BF2D48935 ] Spooler         C:\Windows\System32\spoolsv.exe
19:51:09.0418 2800  Spooler - ok
19:51:09.0465 2800  [ B2EC3E1DEAC5F0A764BD3486D213A0AF ] SQLBrowser      C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
19:51:09.0481 2800  SQLBrowser - ok
19:51:09.0512 2800  [ D2F4F32B59440011174B4F8137AF4E0C ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
19:51:09.0527 2800  SQLWriter - ok
19:51:09.0574 2800  [ 038579C35F7CAD4A4BBF735DBF83277D ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:51:09.0605 2800  srv - ok
19:51:09.0652 2800  [ 6971A757AF8CB5E2CBCBB76CC530DB6C ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:51:09.0683 2800  srv2 - ok
19:51:09.0699 2800  [ 9E1A4603B874EEBCE0298113951ABEFB ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:51:09.0715 2800  srvnet - ok
19:51:09.0746 2800  [ 8D3E4BAFF8B3997138C38EB1B600519A ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:51:09.0777 2800  SSDPSRV - ok
19:51:09.0808 2800  [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
19:51:09.0824 2800  ssmdrv - ok
19:51:09.0855 2800  [ 306521935042FC0A6988D528643619B3 ] StarOpen        C:\Windows\system32\drivers\StarOpen.sys
19:51:09.0871 2800  StarOpen - ok
19:51:09.0902 2800  [ 7A95B5DEB594616F1693486B8161411E ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
19:51:09.0917 2800  StillCam - ok
19:51:09.0964 2800  [ A941E099EF46E3CC12F898CBE1C39910 ] stisvc          C:\Windows\System32\wiaservc.dll
19:51:10.0042 2800  stisvc - ok
19:51:10.0073 2800  [ 3B80B4383C9BCE13279C8482734B32B2 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
19:51:10.0089 2800  swenum - ok
19:51:10.0120 2800  [ 749ADA8D6C18A08ADFEDE69CBF5DB2E0 ] swprv           C:\Windows\System32\swprv.dll
19:51:10.0183 2800  swprv - ok
19:51:10.0214 2800  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
19:51:10.0245 2800  Symc8xx - ok
19:51:10.0261 2800  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
19:51:10.0292 2800  Sym_hi - ok
19:51:10.0307 2800  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
19:51:10.0339 2800  Sym_u3 - ok
19:51:10.0370 2800  [ C1777074592BBB55B1F1A2FBC7A60498 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
19:51:10.0432 2800  SynTP - ok
19:51:10.0495 2800  [ 8F2B5FEDE18BD3C4C926CBF88E6F1264 ] SysMain         C:\Windows\system32\sysmain.dll
19:51:10.0526 2800  SysMain - ok
19:51:10.0573 2800  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:51:10.0588 2800  TabletInputService - ok
19:51:10.0619 2800  [ EF3DD33C740FC2F82E7E4622F1C49289 ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:51:10.0635 2800  TapiSrv - ok
19:51:10.0666 2800  [ 68FA52794AE9ACC61BDE16FE0956B414 ] TBS             C:\Windows\System32\tbssvc.dll
19:51:10.0697 2800  TBS - ok
19:51:10.0791 2800  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:51:10.0885 2800  Tcpip - ok
19:51:10.0916 2800  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
19:51:10.0931 2800  Tcpip6 - ok
19:51:10.0963 2800  [ 5CE0C4A7B12D0067DAD527D72B68C726 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:51:10.0978 2800  tcpipreg - ok
19:51:10.0994 2800  [ 964248AEF49C31FA6A93201A73FFAF50 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:51:11.0009 2800  TDPIPE - ok
19:51:11.0025 2800  [ 7D2C1AE1648A60FCE4AA0F7982E419D3 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:51:11.0041 2800  TDTCP - ok
19:51:11.0056 2800  [ AB4FDE8AF4A0270A46A001C08CBCE1C2 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:51:11.0072 2800  tdx - ok
19:51:11.0103 2800  [ 849ED71967D45F15C3E0ABFC633FDF2A ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
19:51:11.0134 2800  TermDD - ok
19:51:11.0165 2800  [ FAD71C1E8E4047B154E899AE31EB8CAA ] TermService     C:\Windows\System32\termsrv.dll
19:51:11.0181 2800  TermService - ok
19:51:11.0197 2800  [ B264DFA21677728613267FE63802B332 ] Themes          C:\Windows\system32\shsvcs.dll
19:51:11.0212 2800  Themes - ok
19:51:11.0228 2800  [ 9DFA3A459AF0954AA85B4F7622AD87BB ] THREADORDER     C:\Windows\system32\mmcss.dll
19:51:11.0228 2800  THREADORDER - ok
19:51:11.0243 2800  [ 6BBA0582C0025D43729A1112D3B57897 ] TrkWks          C:\Windows\System32\trkwks.dll
19:51:11.0259 2800  TrkWks - ok
19:51:11.0321 2800  [ 34E388A395FEDBA1D0511ED39BBF4074 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:51:11.0321 2800  TrustedInstaller - ok
19:51:11.0353 2800  [ 29F0ECA726F0D51F7E048BDB0B372F29 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:51:11.0384 2800  tssecsrv - ok
19:51:11.0415 2800  [ 65E953BC0084D44498B51F59784D2A82 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
19:51:11.0446 2800  tunmp - ok
19:51:11.0462 2800  [ 4A39BDA5E0FD30BDF4884F9D33AE6105 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:51:11.0462 2800  tunnel - ok
19:51:11.0477 2800  [ C3ADE15414120033A36C0F293D4A4121 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
19:51:11.0493 2800  uagp35 - ok
19:51:11.0509 2800  [ 6348DA98707CEDA8A0DFB05820E17732 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:51:11.0540 2800  udfs - ok
19:51:11.0587 2800  [ 24A333F4F14DCFB6FF6D5A1B9E5D79DD ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:51:11.0618 2800  UI0Detect - ok
19:51:11.0633 2800  [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:51:11.0649 2800  uliagpkx - ok
19:51:11.0665 2800  [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci         C:\Windows\system32\drivers\uliahci.sys
19:51:11.0680 2800  uliahci - ok
19:51:11.0711 2800  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
19:51:11.0727 2800  UlSata - ok
19:51:11.0758 2800  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
19:51:11.0774 2800  ulsata2 - ok
19:51:11.0805 2800  [ 3FB78F1D1DD86D87BECECD9DFFA24DD9 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
19:51:11.0821 2800  umbus - ok
19:51:11.0852 2800  [ 08EA9C0247F391AF4D4A16885A1C159D ] UMPass          C:\Windows\system32\DRIVERS\umpass.sys
19:51:11.0852 2800  UMPass - ok
19:51:11.0883 2800  [ 8EB871A3DEB6B3D5A85EB6DDFC390B59 ] upnphost        C:\Windows\System32\upnphost.dll
19:51:11.0899 2800  upnphost - ok
19:51:11.0945 2800  [ F6BF998AE33E3FB6C7D27F0560F1173F ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
19:51:11.0945 2800  usbaudio - ok
19:51:11.0961 2800  usbbus - ok
19:51:12.0008 2800  [ 03B01E8DBD2DA2B49157B7E51912AAF2 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:51:12.0023 2800  usbccgp - ok
19:51:12.0055 2800  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:51:12.0070 2800  usbcir - ok
19:51:12.0070 2800  UsbDiag - ok
19:51:12.0133 2800  [ 2F83363F98484F8EDAF49F9B41520D14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
19:51:12.0148 2800  usbehci - ok
19:51:12.0179 2800  [ 14D2A4DCD92C0B3368667AED6893463D ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:51:12.0211 2800  usbhub - ok
19:51:12.0226 2800  USBModem - ok
19:51:12.0257 2800  [ 51DC36722172D45F2F935CE5CC18A812 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
19:51:12.0289 2800  usbohci - ok
19:51:12.0304 2800  [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
19:51:12.0320 2800  usbprint - ok
19:51:12.0367 2800  [ B1F95285C08DDFE00C0B955462637EC7 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
19:51:12.0367 2800  usbscan - ok
19:51:12.0413 2800  [ 7887CE56934E7F104E98C975F47353C5 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:51:12.0429 2800  USBSTOR - ok
19:51:12.0460 2800  [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
19:51:12.0476 2800  usbuhci - ok
19:51:12.0507 2800  [ F79D0D7C9004474CB42746D9B2C30A2B ] UxSms           C:\Windows\System32\uxsms.dll
19:51:12.0523 2800  UxSms - ok
19:51:12.0554 2800  [ C9D0BAFEE0D0A2681F048CA61BC0DA96 ] vds             C:\Windows\System32\vds.exe
19:51:12.0601 2800  vds - ok
19:51:12.0632 2800  [ 7D92BE0028ECDEDEC74617009084B5EF ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:51:12.0632 2800  vga - ok
19:51:12.0663 2800  [ 17A8F877314E4067F8C8172CC6D9101C ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:51:12.0663 2800  VgaSave - ok
19:51:12.0694 2800  [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp          C:\Windows\system32\drivers\viaagp.sys
19:51:12.0710 2800  viaagp - ok
19:51:12.0741 2800  [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
19:51:12.0741 2800  ViaC7 - ok
19:51:12.0772 2800  [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide          C:\Windows\system32\drivers\viaide.sys
19:51:12.0803 2800  viaide - ok
19:51:12.0819 2800  [ FD16FAC15F9F165AC19A618E7B391F5C ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:51:12.0835 2800  volmgr - ok
19:51:12.0866 2800  [ 294DA8D3F965F6A8DB934A83C7B461FF ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:51:12.0881 2800  volmgrx - ok
19:51:12.0928 2800  [ 80DC0C9BCB579ED9815001A4D37CBFD5 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:51:12.0944 2800  volsnap - ok
19:51:12.0975 2800  [ D984439746D42B30FC65A4C3546C6829 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
19:51:12.0991 2800  vsmraid - ok
19:51:13.0069 2800  [ E0E29D9EF2524ABD11749C7C2FD7F607 ] VSS             C:\Windows\system32\vssvc.exe
19:51:13.0131 2800  VSS - ok
19:51:13.0193 2800  [ 62B0D0F6F5580D9D0DFA5E0B466FF2ED ] W32Time         C:\Windows\system32\w32time.dll
19:51:13.0209 2800  W32Time - ok
19:51:13.0240 2800  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
19:51:13.0256 2800  WacomPen - ok
19:51:13.0287 2800  [ 6798C1209A53B5A0DED8D437C45145FF ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
19:51:13.0287 2800  Wanarp - ok
19:51:13.0303 2800  [ 6798C1209A53B5A0DED8D437C45145FF ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:51:13.0303 2800  Wanarpv6 - ok
19:51:13.0318 2800  [ C1B19162E0509CEAB4CDF664E139D956 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:51:13.0334 2800  wcncsvc - ok
19:51:13.0365 2800  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:51:13.0365 2800  WcsPlugInService - ok
19:51:13.0412 2800  [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd              C:\Windows\system32\drivers\wd.sys
19:51:13.0412 2800  Wd - ok
19:51:13.0459 2800  [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:51:13.0521 2800  Wdf01000 - ok
19:51:13.0552 2800  [ 2A424B89B14EF17A3D06BCB5A8F79601 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:51:13.0552 2800  WdiServiceHost - ok
19:51:13.0568 2800  [ 2A424B89B14EF17A3D06BCB5A8F79601 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:51:13.0568 2800  WdiSystemHost - ok
19:51:13.0583 2800  [ 01E41C264EEDCB827820A1909162579F ] WebClient       C:\Windows\System32\webclnt.dll
19:51:13.0599 2800  WebClient - ok
19:51:13.0615 2800  [ 9CF67FF7F8D34CBF115D0C278B9F74AA ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:51:13.0630 2800  Wecsvc - ok
19:51:13.0646 2800  [ B68CAB45DB1DAB59D92ACADFAD6364A8 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:51:13.0646 2800  wercplsupport - ok
19:51:13.0677 2800  [ 36BA0707680EF4236FD752BEE982CC25 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:51:13.0693 2800  WerSvc - ok
19:51:13.0739 2800  [ 0D5AD0E71FF5DDAC5DD2F443B499ABD0 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
19:51:13.0755 2800  WinDefend - ok
19:51:13.0771 2800  WinHttpAutoProxySvc - ok
19:51:13.0833 2800  [ 38A7B89DE4E3417C122317949667FDD8 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:51:13.0864 2800  Winmgmt - ok
19:51:13.0911 2800  [ 3F6823040030C3E4DA1CF11CD40B7534 ] WinRM           C:\Windows\system32\WsmSvc.dll
19:51:13.0958 2800  WinRM - ok
19:51:14.0036 2800  [ 7640ACEA41348BFEF34B76E245501261 ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:51:14.0051 2800  Wlansvc - ok
19:51:14.0176 2800  [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:51:14.0254 2800  wlidsvc - ok
19:51:14.0285 2800  [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:51:14.0301 2800  WmiAcpi - ok
19:51:14.0348 2800  [ A279323BEE5FFFAFDA222910BCE92132 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:51:14.0379 2800  wmiApSrv - ok
19:51:14.0441 2800  [ ACB2E63D50157E3EA7140F29D9E76A48 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
19:51:14.0551 2800  WMPNetworkSvc - ok
19:51:14.0597 2800  [ 3D3B3B80C12ABE506F56930C46422C28 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:51:14.0613 2800  WPCSvc - ok
19:51:14.0644 2800  [ C24844A1D0D9528B19D5BC266B8CD572 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:51:14.0660 2800  WPDBusEnum - ok
19:51:14.0722 2800  [ 2D27171B16A577EF14C1273668753485 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
19:51:14.0738 2800  WpdUsb - ok
19:51:14.0847 2800  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:51:14.0909 2800  WPFFontCache_v0400 - ok
19:51:14.0925 2800  [ 84620AECDCFD2A7A14E6263927D8C0ED ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:51:14.0956 2800  ws2ifsl - ok
19:51:14.0987 2800  [ F97CBB919AF6D0A6643D1A59C15014D1 ] wscsvc          C:\Windows\System32\wscsvc.dll
19:51:14.0987 2800  wscsvc - ok
19:51:15.0034 2800  [ F01F25B4227AD8D717C21F25F62B43C8 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
19:51:15.0034 2800  WSDPrintDevice - ok
19:51:15.0050 2800  WSearch - ok
19:51:15.0175 2800  [ 6298277B73C77FA99106B271A7525163 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:51:15.0253 2800  wuauserv - ok
19:51:15.0284 2800  [ A2AAFCC8A204736296D937C7C545B53F ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:51:15.0299 2800  WUDFRd - ok
19:51:15.0331 2800  [ DB5BF5AAB72B1B99B5331231D09EBB26 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:51:15.0362 2800  wudfsvc - ok
19:51:15.0409 2800  [ ADE7A4943003020216952B56A6741EC7 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
19:51:15.0440 2800  yukonwlh - ok
19:51:15.0487 2800  ================ Scan global ===============================
19:51:15.0518 2800  [ 8CD98A8EC9CADAF4E051CDCAC15C96C4 ] C:\Windows\system32\basesrv.dll
19:51:15.0565 2800  [ E3F137ADC0A9D7F3A2E4F557272FE6B3 ] C:\Windows\system32\winsrv.dll
19:51:15.0611 2800  [ E3F137ADC0A9D7F3A2E4F557272FE6B3 ] C:\Windows\system32\winsrv.dll
19:51:15.0658 2800  [ 329CF3C97CE4C19375C8ABCABAE258B0 ] C:\Windows\system32\services.exe
19:51:15.0674 2800  [Global] - ok
19:51:15.0674 2800  ================ Scan MBR ==================================
19:51:15.0689 2800  [ 61A349592C4728853F4A90FF78F7628E ] \Device\Harddisk0\DR0
19:51:16.0064 2800  \Device\Harddisk0\DR0 - ok
19:51:16.0064 2800  ================ Scan VBR ==================================
19:51:16.0064 2800  [ 2D3C8D6B7DD7B6F8B97B0AFA65D62E88 ] \Device\Harddisk0\DR0\Partition1
19:51:16.0064 2800  \Device\Harddisk0\DR0\Partition1 - ok
19:51:16.0095 2800  [ F4EE089BE59595EF8169016B95BC8A16 ] \Device\Harddisk0\DR0\Partition2
19:51:16.0095 2800  \Device\Harddisk0\DR0\Partition2 - ok
19:51:16.0095 2800  ============================================================
19:51:16.0095 2800  Scan finished
19:51:16.0095 2800  ============================================================
19:51:16.0111 5536  Detected object count: 0
19:51:16.0111 5536  Actual detected object count: 0
19:51:32.0475 4328  ============================================================
19:51:32.0475 4328  Scan started
19:51:32.0475 4328  Mode: Manual; 
19:51:32.0475 4328  ============================================================
19:51:32.0662 4328  ================ Scan system memory ========================
19:51:32.0662 4328  System memory - ok
19:51:32.0662 4328  ================ Scan services =============================
19:51:32.0849 4328  [ 84FC6DF81212D16BE5C4F441682FECCC ] ACPI            C:\Windows\system32\drivers\acpi.sys
19:51:32.0865 4328  ACPI - ok
19:51:32.0943 4328  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:51:32.0943 4328  AdobeARMservice - ok
19:51:33.0021 4328  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:51:33.0021 4328  AdobeFlashPlayerUpdateSvc - ok
19:51:33.0068 4328  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
19:51:33.0083 4328  adp94xx - ok
19:51:33.0115 4328  [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci         C:\Windows\system32\drivers\adpahci.sys
19:51:33.0115 4328  adpahci - ok
19:51:33.0146 4328  [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
19:51:33.0146 4328  adpu160m - ok
19:51:33.0177 4328  [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320         C:\Windows\system32\drivers\adpu320.sys
19:51:33.0177 4328  adpu320 - ok
19:51:33.0208 4328  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:51:33.0208 4328  AeLookupSvc - ok
19:51:33.0255 4328  [ A7B8A3A79D35215D798A300DF49ED23F ] Afc             C:\Windows\system32\drivers\Afc.sys
19:51:33.0255 4328  Afc - ok
19:51:33.0286 4328  [ 5D24CAF8EFD924A875698FF28384DB8B ] AFD             C:\Windows\system32\drivers\afd.sys
19:51:33.0286 4328  AFD - ok
19:51:33.0302 4328  [ 39E435C90C9C4F780FA0ED05CA3C3A1B ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
19:51:33.0302 4328  AgereModemAudio - ok
19:51:33.0380 4328  [ A19871AE65A769C65034B4DC44C29023 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
19:51:33.0395 4328  AgereSoftModem - ok
19:51:33.0427 4328  [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440          C:\Windows\system32\drivers\agp440.sys
19:51:33.0427 4328  agp440 - ok
19:51:33.0458 4328  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
19:51:33.0458 4328  aic78xx - ok
19:51:33.0489 4328  [ E69FB0E3112C40FDC0EF7D21A52DC951 ] ALG             C:\Windows\System32\alg.exe
19:51:33.0489 4328  ALG - ok
19:51:33.0505 4328  [ 90395B64600EBB4552E26E178C94B2E4 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:51:33.0505 4328  aliide - ok
19:51:33.0536 4328  [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
19:51:33.0536 4328  amdagp - ok
19:51:33.0567 4328  [ 0577DF1D323FE75A739C787893D300EA ] amdide          C:\Windows\system32\drivers\amdide.sys
19:51:33.0567 4328  amdide - ok
19:51:33.0583 4328  [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
19:51:33.0583 4328  AmdK7 - ok
19:51:33.0614 4328  [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
19:51:33.0614 4328  AmdK8 - ok
19:51:33.0676 4328  [ D9A92E6DD41C5ADC045AE485026AA40C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
19:51:33.0676 4328  AntiVirSchedulerService - ok
19:51:33.0707 4328  [ 66A7A38F7C439153B758548375EB9E5E ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
19:51:33.0707 4328  AntiVirService - ok
19:51:33.0754 4328  [ CFA455816879F06F1C4E5BBF9E8AEF7D ] Appinfo         C:\Windows\System32\appinfo.dll
19:51:33.0754 4328  Appinfo - ok
19:51:33.0770 4328  [ 5F673180268BB1FDB69C99B6619FE379 ] arc             C:\Windows\system32\drivers\arc.sys
19:51:33.0770 4328  arc - ok
19:51:33.0801 4328  [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
19:51:33.0801 4328  arcsas - ok
19:51:33.0910 4328  [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:51:33.0910 4328  aspnet_state - ok
19:51:33.0926 4328  [ E86CF7CE67D5DE898F27EF884DC357D8 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:51:33.0926 4328  AsyncMac - ok
19:51:33.0973 4328  [ B35CFCEF838382AB6490B321C87EDF17 ] atapi           C:\Windows\system32\drivers\atapi.sys
19:51:33.0973 4328  atapi - ok
19:51:34.0019 4328  [ B0C272DEF210B149C0BFA0D85600CE4B ] athr            C:\Windows\system32\DRIVERS\athr.sys
19:51:34.0035 4328  athr - ok
19:51:34.0097 4328  [ D29CAE8AA91E405A569892FA3D97AA64 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
19:51:34.0097 4328  Ati External Event Utility - ok
19:51:34.0207 4328  [ E46F2FB11CFE13187A4E3EF512C0D226 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
19:51:34.0300 4328  atikmdag - ok
19:51:34.0331 4328  [ 4AA1EB65481C392955939E735D27118B ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
19:51:34.0347 4328  AtiPcie - ok
19:51:34.0378 4328  [ E760FC1BD68F7F6F1B17EB4E8D9480B0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:51:34.0378 4328  AudioEndpointBuilder - ok
19:51:34.0409 4328  [ E760FC1BD68F7F6F1B17EB4E8D9480B0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
19:51:34.0409 4328  Audiosrv - ok
19:51:34.0425 4328  [ 87425709A251386064C99B684BF96F72 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
19:51:34.0425 4328  avgntflt - ok
19:51:34.0456 4328  [ D50FBA68163BC498F2C136E0E5BA8E2F ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
19:51:34.0472 4328  avipbb - ok
19:51:34.0487 4328  [ CB8741CD7B126499FED40C9B197F6AC5 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
19:51:34.0487 4328  avkmgr - ok
19:51:34.0565 4328  [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
19:51:34.0565 4328  BcmSqlStartupSvc - ok
19:51:34.0597 4328  [ AC3DD1708B22761EBD7CBE14DCC3B5D7 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:51:34.0597 4328  Beep - ok
19:51:34.0628 4328  [ 98EBDFFB824A7C265337D68DD480E45C ] BFE             C:\Windows\System32\bfe.dll
19:51:34.0628 4328  BFE - ok
19:51:34.0690 4328  [ DA551697E34D2B9943C8B1C8EAFFE89A ] BITS            C:\Windows\System32\qmgr.dll
19:51:34.0706 4328  BITS - ok
19:51:34.0721 4328  blbdrive - ok
19:51:34.0737 4328  [ 913CD06FBE9105CE6077E90FD4418561 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:51:34.0753 4328  bowser - ok
19:51:34.0768 4328  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
19:51:34.0768 4328  BrFiltLo - ok
19:51:34.0784 4328  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
19:51:34.0784 4328  BrFiltUp - ok
19:51:34.0815 4328  [ BEB6470532B7461D7BB426E3FACB424F ] Browser         C:\Windows\System32\browser.dll
19:51:34.0815 4328  Browser - ok
19:51:34.0846 4328  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
19:51:34.0846 4328  Brserid - ok
19:51:34.0862 4328  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
19:51:34.0877 4328  BrSerWdm - ok
19:51:34.0893 4328  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
19:51:34.0893 4328  BrUsbMdm - ok
19:51:34.0909 4328  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
19:51:34.0909 4328  BrUsbSer - ok
19:51:34.0955 4328  [ 064FBC56921051DE1075495D628B815F ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
19:51:34.0955 4328  BthEnum - ok
19:51:34.0987 4328  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
19:51:34.0987 4328  BTHMODEM - ok
19:51:35.0033 4328  [ B8C3D9DDF85FD197C3E5F849FEF71144 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
19:51:35.0033 4328  BthPan - ok
19:51:35.0065 4328  [ B24757D9154CCA035E1BBD3DB92966D7 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
19:51:35.0080 4328  BTHPORT - ok
19:51:35.0096 4328  [ 58EE7F5E68310BC8D4E7CEBD8358C12E ] BthServ         C:\Windows\System32\bthserv.dll
19:51:35.0096 4328  BthServ - ok
19:51:35.0127 4328  [ D42CF5F0C7635B3F1578810FE34D9E41 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
19:51:35.0127 4328  BTHUSB - ok
19:51:35.0158 4328  [ 636F45A8500C1438CFA7DEE15FC5C184 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
19:51:35.0158 4328  btwaudio - ok
19:51:35.0174 4328  [ BF9256FF01B093A5D90BB7A35EC90410 ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
19:51:35.0174 4328  btwavdt - ok
19:51:35.0205 4328  [ 0AB8C1AC177AFB27309E1072FAF34A37 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
19:51:35.0205 4328  btwrchid - ok
19:51:35.0236 4328  [ 6C3A437FC873C6F6A4FC620B6888CB86 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:51:35.0236 4328  cdfs - ok
19:51:35.0252 4328  [ 8D1866E61AF096AE8B582454F5E4D303 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:51:35.0252 4328  cdrom - ok
19:51:35.0283 4328  [ 0600E04315FE543802A379D5D23C8BE0 ] CertPropSvc     C:\Windows\System32\certprop.dll
19:51:35.0283 4328  CertPropSvc - ok
19:51:35.0299 4328  [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass        C:\Windows\system32\drivers\circlass.sys
19:51:35.0299 4328  circlass - ok
19:51:35.0345 4328  [ 1B84FD0937D3B99AF9BA38DDFF3DAF54 ] CLFS            C:\Windows\system32\CLFS.sys
19:51:35.0345 4328  CLFS - ok
19:51:35.0408 4328  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:51:35.0408 4328  clr_optimization_v2.0.50727_32 - ok
19:51:35.0439 4328  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:51:35.0439 4328  clr_optimization_v4.0.30319_32 - ok
19:51:35.0486 4328  [ ED97AD3DF1B9005989EAF149BF06C821 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
19:51:35.0486 4328  CmBatt - ok
19:51:35.0501 4328  [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:51:35.0501 4328  cmdide - ok
19:51:35.0501 4328  [ 722936AFB75A7F509662B69B5632F48A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
19:51:35.0501 4328  Compbatt - ok
19:51:35.0517 4328  COMSysApp - ok
19:51:35.0533 4328  [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
19:51:35.0533 4328  crcdisk - ok
19:51:35.0548 4328  [ 22A7F883508176489F559EE745B5BF5D ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
19:51:35.0548 4328  Crusoe - ok
19:51:35.0579 4328  [ 1C26FB097170A2A91066D1E3A24366E3 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:51:35.0579 4328  CryptSvc - ok
19:51:35.0642 4328  [ 7B981222A257D076885BFFB66F19B7CE ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:51:35.0673 4328  DcomLaunch - ok
19:51:35.0689 4328  [ A7179DE59AE269AB70345527894CCD7C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:51:35.0689 4328  DfsC - ok
19:51:35.0798 4328  [ E0D584AA76C7D845BA9F3A788260528F ] DFSR            C:\Windows\system32\DFSR.exe
19:51:35.0813 4328  DFSR - ok
19:51:35.0860 4328  [ DC45739BC22D528D2B3E50D3F6761750 ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
19:51:35.0876 4328  Dhcp - ok
19:51:35.0876 4328  [ 841AF4C4D41D3E3B2F244E976B0F7963 ] disk            C:\Windows\system32\drivers\disk.sys
19:51:35.0876 4328  disk - ok
19:51:35.0907 4328  [ EECBA1DD142BF8693C476BE8F32FE253 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:51:35.0907 4328  Dnscache - ok
19:51:35.0938 4328  [ 1F795D214820E496BF1124434A6DB546 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:51:35.0938 4328  dot3svc - ok
19:51:36.0032 4328  [ 57B2D433A08B95E4F1B53A919937F3E5 ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
19:51:36.0032 4328  Dot4 - ok
19:51:36.0079 4328  [ D93FA484BB62FBE7E5EF335C5415D3CF ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
19:51:36.0094 4328  Dot4Print - ok
19:51:36.0110 4328  [ 599742C4260FB3E8EDB3BE148B8CE856 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
19:51:36.0110 4328  dot4usb - ok
19:51:36.0141 4328  [ 032C90AD677BF7B7A8013D6087C7A921 ] DPS             C:\Windows\system32\dps.dll
19:51:36.0141 4328  DPS - ok
19:51:36.0172 4328  [ EE472CD2C01F6F8E8AA1FA06FFEF61B6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:51:36.0172 4328  drmkaud - ok
19:51:36.0203 4328  [ 334988883DE69ADB27E2CF9F9715BBDB ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:51:36.0219 4328  DXGKrnl - ok
19:51:36.0235 4328  [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
19:51:36.0235 4328  E1G60 - ok
19:51:36.0266 4328  [ 90A0A875642E18618010645311B4E89E ] EapHost         C:\Windows\System32\eapsvc.dll
19:51:36.0266 4328  EapHost - ok
19:51:36.0281 4328  [ 0EFC7531B936EE57FDB4E837664C509F ] Ecache          C:\Windows\system32\drivers\ecache.sys
19:51:36.0281 4328  Ecache - ok
19:51:36.0344 4328  [ 792F72E8B63DF55CE98445D464874986 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:51:36.0359 4328  ehRecvr - ok
19:51:36.0391 4328  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe
19:51:36.0391 4328  ehSched - ok
19:51:36.0406 4328  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll
19:51:36.0406 4328  ehstart - ok
19:51:36.0437 4328  [ E8F3F21A71720C84BCF423B80028359F ] elxstor         C:\Windows\system32\drivers\elxstor.sys
19:51:36.0437 4328  elxstor - ok
19:51:36.0500 4328  [ 3226FDA08988526E819E364E8CCE4CEE ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
19:51:36.0500 4328  EMDMgmt - ok
19:51:36.0562 4328  [ 7B4971C3D43525175A4EA0D143E0412E ] EventSystem     C:\Windows\system32\es.dll
19:51:36.0578 4328  EventSystem - ok
19:51:36.0609 4328  [ FB54F67974D13D73BE3E2F1DF042D295 ] ewusbnet        C:\Windows\system32\DRIVERS\ewusbnet.sys
19:51:36.0609 4328  ewusbnet - ok
19:51:36.0671 4328  [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev     C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
19:51:36.0671 4328  ew_hwusbdev - ok
19:51:36.0703 4328  [ 84A317CB0B3954D3768CDCD018DBF670 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:51:36.0703 4328  fastfat - ok
19:51:36.0734 4328  [ 63BDADA84951B9C03E641800E176898A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
19:51:36.0734 4328  fdc - ok
19:51:36.0749 4328  [ E43BCE1A77D6FD4ED5F8E0482B9E7DF1 ] fdPHost         C:\Windows\system32\fdPHost.dll
19:51:36.0749 4328  fdPHost - ok
19:51:36.0765 4328  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:51:36.0765 4328  FDResPub - ok
19:51:36.0781 4328  [ 65773D6115C037FFD7EF8280AE85EB9D ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:51:36.0781 4328  FileInfo - ok
19:51:36.0796 4328  [ C226DD0DE060745F3E042F58DCF78402 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:51:36.0796 4328  Filetrace - ok
19:51:36.0827 4328  [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
19:51:36.0827 4328  flpydisk - ok
19:51:36.0827 4328  [ A6A8DA7AE4D53394AB22AC3AB6D3F5D3 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:51:36.0843 4328  FltMgr - ok
19:51:36.0921 4328  [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:51:36.0921 4328  FontCache3.0.0.0 - ok
19:51:36.0952 4328  [ 66A078591208BAA210C7634B11EB392C ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:51:36.0952 4328  Fs_Rec - ok
19:51:36.0983 4328  [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
19:51:36.0983 4328  gagp30kx - ok
19:51:37.0030 4328  [ BCF6589C42D8F6A20F33EF133FFE0524 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:51:37.0046 4328  gpsvc - ok
19:51:37.0108 4328  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
19:51:37.0108 4328  gupdate - ok
19:51:37.0124 4328  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
19:51:37.0124 4328  gupdatem - ok
19:51:37.0171 4328  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:51:37.0171 4328  gusvc - ok
19:51:37.0217 4328  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:51:37.0217 4328  HdAudAddService - ok
19:51:37.0249 4328  [ 0DB613A7E427B5663563677796FD5258 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
19:51:37.0249 4328  HDAudBus - ok
19:51:37.0264 4328  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
19:51:37.0264 4328  HidBth - ok
19:51:37.0295 4328  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
19:51:37.0295 4328  HidIr - ok
19:51:37.0327 4328  [ 8FA640195279ACE21BEA91396A0054FC ] hidserv         C:\Windows\system32\hidserv.dll
19:51:37.0327 4328  hidserv - ok
19:51:37.0373 4328  [ 01E7971E9F4BD6AC6A08DB52D0EA0418 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
19:51:37.0373 4328  HidUsb - ok
19:51:37.0405 4328  [ D40AA05E29BF6ED29B139F044B461E9B ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:51:37.0420 4328  hkmsvc - ok
19:51:37.0420 4328  [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
19:51:37.0420 4328  HpCISSs - ok
19:51:37.0483 4328  [ EA24FE637D974A8A31BC650F478E3533 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:51:37.0483 4328  HTTP - ok
19:51:37.0529 4328  [ F44461E66F1B7DD267957FE9BAA63ED0 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
19:51:37.0529 4328  huawei_enumerator - ok
19:51:37.0561 4328  [ F547F862B8907F1BCBD9B72A72A6449E ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys

lala65 · 11.06.2013, 20:45

Teil 2

Code:

ATTFilter

19:51:37.0561 4328  hwdatacard - ok
19:51:37.0623 4328  HWDeviceService.exe - ok
19:51:37.0685 4328  [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
19:51:37.0685 4328  i2omp - ok
19:51:37.0717 4328  [ 1C9EE072BAA3ABB460B91D7EE9152660 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
19:51:37.0717 4328  i8042prt - ok
19:51:37.0748 4328  [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
19:51:37.0763 4328  iaStorV - ok
19:51:37.0857 4328  [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:51:37.0873 4328  idsvc - ok
19:51:37.0904 4328  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
19:51:37.0904 4328  iirsp - ok
19:51:37.0935 4328  [ 35662FE4D8622F667AA5A5568F7F1B40 ] IKEEXT          C:\Windows\System32\ikeext.dll
19:51:37.0951 4328  IKEEXT - ok
19:51:38.0060 4328  [ 7BD4E0428776D11C8E8E26F9F5508690 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:51:38.0091 4328  IntcAzAudAddService - ok
19:51:38.0122 4328  [ 97469037714070E45194ED318D636401 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:51:38.0138 4328  intelide - ok
19:51:38.0169 4328  [ CE44CC04262F28216DD4341E9E36A16F ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:51:38.0169 4328  intelppm - ok
19:51:38.0185 4328  [ 88CF5281ED9880D74DC9011CF8B5262D ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:51:38.0185 4328  IPBusEnum - ok
19:51:38.0216 4328  [ 880C6F86CC3F551B8FEA2C11141268C0 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:51:38.0216 4328  IpFilterDriver - ok
19:51:38.0263 4328  [ ECC9AD72CFC4AB41CF6A9BCC11F9FEF6 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:51:38.0263 4328  iphlpsvc - ok
19:51:38.0263 4328  IpInIp - ok
19:51:38.0294 4328  [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
19:51:38.0294 4328  IPMIDRV - ok
19:51:38.0325 4328  [ 10077C35845101548037DF04FD1A420B ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
19:51:38.0325 4328  IPNAT - ok
19:51:38.0341 4328  [ A82F328F4792304184642D6D397BB1E3 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:51:38.0341 4328  IRENUM - ok
19:51:38.0356 4328  [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:51:38.0356 4328  isapnp - ok
19:51:38.0403 4328  [ 4DCA456D4D5723F8FA9C6760D240B0DF ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
19:51:38.0403 4328  iScsiPrt - ok
19:51:38.0419 4328  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
19:51:38.0434 4328  iteatapi - ok
19:51:38.0450 4328  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
19:51:38.0450 4328  iteraid - ok
19:51:38.0481 4328  [ B076B2AB806B3F696DAB21375389101C ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
19:51:38.0481 4328  kbdclass - ok
19:51:38.0497 4328  [ D2600CB17B7408B4A83F231DC9A11AC3 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
19:51:38.0497 4328  kbdhid - ok
19:51:38.0543 4328  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] KeyIso          C:\Windows\system32\lsass.exe
19:51:38.0543 4328  KeyIso - ok
19:51:38.0590 4328  [ EBC507F129DF8F0E0CA270DCFC0CF87F ] KMDFMEMIO       C:\Windows\system32\DRIVERS\kmdfmemio.sys
19:51:38.0590 4328  KMDFMEMIO - ok
19:51:38.0621 4328  [ 0A829977B078DEA11641FC2AF87CEADE ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:51:38.0621 4328  KSecDD - ok
19:51:38.0668 4328  [ 45C537FE5DDE9A0146AEFF76E615737D ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:51:38.0684 4328  KtmRm - ok
19:51:38.0746 4328  [ 53D1482FC1AA36AC015A85E6CF2146BD ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:51:38.0762 4328  LanmanServer - ok
19:51:38.0777 4328  [ 435F0F6DC87A4B5DA78F1FA309884189 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:51:38.0777 4328  LanmanWorkstation - ok
19:51:38.0793 4328  LgBttPort - ok
19:51:38.0809 4328  lgbusenum - ok
19:51:38.0824 4328  LGVMODEM - ok
19:51:38.0855 4328  [ FD015B4F95DAA2B712F0E372A116FBAD ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:51:38.0855 4328  lltdio - ok
19:51:38.0902 4328  [ 7450DBCF754391DD6363FFFD5EF0E789 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:51:38.0902 4328  lltdsvc - ok
19:51:38.0918 4328  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:51:38.0918 4328  lmhosts - ok
19:51:38.0949 4328  [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
19:51:38.0949 4328  LSI_FC - ok
19:51:38.0965 4328  [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
19:51:38.0965 4328  LSI_SAS - ok
19:51:38.0980 4328  [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
19:51:38.0980 4328  LSI_SCSI - ok
19:51:39.0011 4328  [ 42885BB44B6E065B8575A8DD6C430C52 ] luafv           C:\Windows\system32\drivers\luafv.sys
19:51:39.0027 4328  luafv - ok
19:51:39.0027 4328  LVUSBSta - ok
19:51:39.0027 4328  lxcz_device - ok
19:51:39.0183 4328  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe
19:51:39.0183 4328  McComponentHostService - ok
19:51:39.0230 4328  [ E93C1AD58E88A0846EAEE10671C2A8F3 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:51:39.0230 4328  Mcx2Svc - ok
19:51:39.0261 4328  [ D153B14FC6598EAE8422A2037553ADCE ] megasas         C:\Windows\system32\drivers\megasas.sys
19:51:39.0261 4328  megasas - ok
19:51:39.0323 4328  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:51:39.0323 4328  Microsoft Office Groove Audit Service - ok
19:51:39.0355 4328  [ 9DFA3A459AF0954AA85B4F7622AD87BB ] MMCSS           C:\Windows\system32\mmcss.dll
19:51:39.0355 4328  MMCSS - ok
19:51:39.0370 4328  [ 21755967298A46FB6ADFEC9DB6012211 ] Modem           C:\Windows\system32\drivers\modem.sys
19:51:39.0370 4328  Modem - ok
19:51:39.0433 4328  [ 7446E104A5FE5987CA9E4983FBAC4F97 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:51:39.0433 4328  monitor - ok
19:51:39.0464 4328  [ 5FBA13C1A1841B0885D316ED3589489D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:51:39.0464 4328  mouclass - ok
19:51:39.0495 4328  [ B569B5C5D3BDE545DF3A6AF512CCCDBA ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:51:39.0495 4328  mouhid - ok
19:51:39.0526 4328  [ 01F1E5A3E4877C931CBB31613FEC16A6 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
19:51:39.0526 4328  MountMgr - ok
19:51:39.0557 4328  [ 583A41F26278D9E0EA548163D6139397 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:51:39.0573 4328  mpio - ok
19:51:39.0604 4328  [ 6E7A7F0C1193EE5648443FE2D4B789EC ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:51:39.0604 4328  mpsdrv - ok
19:51:39.0635 4328  [ 563ED845885C6A7C09A7715D8BD0585C ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:51:39.0651 4328  MpsSvc - ok
19:51:39.0682 4328  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
19:51:39.0682 4328  Mraid35x - ok
19:51:39.0713 4328  [ 1D8828B98EE309D65E006F0829E280E5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:51:39.0713 4328  MRxDAV - ok
19:51:39.0745 4328  [ 8AF705CE1BB907932157FAB821170F27 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:51:39.0745 4328  mrxsmb - ok
19:51:39.0776 4328  [ 47E13AB23371BE3279EEF22BBFA2C1BE ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:51:39.0776 4328  mrxsmb10 - ok
19:51:39.0807 4328  [ 90B3FC7BD6B3D7EE7635DEBBA2187F66 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:51:39.0807 4328  mrxsmb20 - ok
19:51:39.0823 4328  [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:51:39.0823 4328  msahci - ok
19:51:39.0854 4328  [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:51:39.0854 4328  msdsm - ok
19:51:39.0885 4328  [ BC64A92D821EFEA8BAB8E8CAF1B668BC ] MSDTC           C:\Windows\System32\msdtc.exe
19:51:39.0885 4328  MSDTC - ok
19:51:39.0932 4328  [ 729EAFEFD4E7417165F353A18DBE947D ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:51:39.0932 4328  Msfs - ok
19:51:39.0963 4328  [ 207DF26DBB2537C20276DA0E15892274 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:51:39.0963 4328  msisadrv - ok
19:51:39.0994 4328  [ 8ACF956D9154E893E789881430C12632 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:51:39.0994 4328  MSiSCSI - ok
19:51:40.0010 4328  msiserver - ok
19:51:40.0041 4328  [ 892CEDEFA7E0FFE7BE8DA651B651D047 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:51:40.0041 4328  MSKSSRV - ok
19:51:40.0072 4328  [ AE2CB1DA69B2676B4CEE2A501AF5871C ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:51:40.0088 4328  MSPCLOCK - ok
19:51:40.0103 4328  [ F910DA84FA90C44A3ADDB7CD874463FD ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:51:40.0103 4328  MSPQM - ok
19:51:40.0135 4328  [ 84571C0AE07647BA38D493F5F0015DF7 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:51:40.0135 4328  MsRPC - ok
19:51:40.0166 4328  [ 7DBAA028F625AA46B95DDA4FBE4B602B ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
19:51:40.0181 4328  mssmbios - ok
19:51:40.0228 4328  MSSQL$MSSMLBIZ - ok
19:51:40.0275 4328  [ C06EA83F6FC2959E897C117255B6B1D5 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
19:51:40.0275 4328  MSSQLServerADHelper - ok
19:51:40.0306 4328  [ C826DD1373F38AFD9CA46EC3C436A14E ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:51:40.0306 4328  MSTEE - ok
19:51:40.0322 4328  [ FA7AA70050CF5E2D15DE00941E5665E5 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:51:40.0322 4328  Mup - ok
19:51:40.0369 4328  [ 1CDBB5D002FE2BC5300AA20550D8A52E ] napagent        C:\Windows\system32\qagentRT.dll
19:51:40.0400 4328  napagent - ok
19:51:40.0431 4328  [ 6DA4A0FC7C0E83DF0CB3CFD0A514C3BC ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:51:40.0431 4328  NativeWifiP - ok
19:51:40.0493 4328  [ FFFE00134C554E113EE186EEDDB0FF30 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:51:40.0509 4328  NDIS - ok
19:51:40.0556 4328  [ 81659CDCBD0F9A9E07E6878AD8C78D3F ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:51:40.0556 4328  NdisTapi - ok
19:51:40.0587 4328  [ 5DE5EE546BF40838EBE0E01CB629DF64 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:51:40.0587 4328  Ndisuio - ok
19:51:40.0603 4328  [ 397402ADCBB8946223A1950101F6CD94 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:51:40.0603 4328  NdisWan - ok
19:51:40.0618 4328  [ 1B24FA907AF283199A81B3BB37E5E526 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:51:40.0618 4328  NDProxy - ok
19:51:40.0759 4328  [ 6D4028D458EAAA1782099750790DC8C9 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
19:51:40.0759 4328  Nero BackItUp Scheduler 3 - ok
19:51:40.0805 4328  [ A081CB6FB9A12668F233EB5414BE3A0E ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:51:40.0805 4328  Net Driver HPZ12 - ok
19:51:40.0837 4328  [ 356DBB9F98E8DC1028DD3092FCEEB877 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:51:40.0837 4328  NetBIOS - ok
19:51:40.0852 4328  [ E3A168912E7EEFC3BD3B814720D68B41 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
19:51:40.0852 4328  netbt - ok
19:51:40.0868 4328  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] Netlogon        C:\Windows\system32\lsass.exe
19:51:40.0868 4328  Netlogon - ok
19:51:40.0899 4328  [ 90A4DAE28B94497F83BEA0F2A3B77092 ] Netman          C:\Windows\System32\netman.dll
19:51:40.0915 4328  Netman - ok
19:51:40.0961 4328  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:40.0961 4328  NetMsmqActivator - ok
19:51:40.0977 4328  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:40.0977 4328  NetPipeActivator - ok
19:51:41.0008 4328  [ 7C5C3D9CEEE838856B828AB6F98A2857 ] netprofm        C:\Windows\System32\netprofm.dll
19:51:41.0008 4328  netprofm - ok
19:51:41.0024 4328  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:41.0024 4328  NetTcpActivator - ok
19:51:41.0039 4328  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:51:41.0039 4328  NetTcpPortSharing - ok
19:51:41.0164 4328  [ 6E9EDC1020B319E7676387B8CDF2398C ] NETw2v32        C:\Windows\system32\DRIVERS\NETw2v32.sys
19:51:41.0211 4328  NETw2v32 - ok
19:51:41.0242 4328  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
19:51:41.0242 4328  nfrd960 - ok
19:51:41.0273 4328  [ C424117A562F2DE37A42266894C79AEB ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:51:41.0273 4328  NlaSvc - ok
19:51:41.0336 4328  [ FF4D73B16EA3A32D34CEB3A7BC3C3773 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
19:51:41.0351 4328  NMIndexingService - ok
19:51:41.0367 4328  [ 4F9832BEB9FAFD8CEB0E541F1323B26E ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:51:41.0367 4328  Npfs - ok
19:51:41.0398 4328  [ 23B8201A363DE0E649FC75EE9874DEE2 ] nsi             C:\Windows\system32\nsisvc.dll
19:51:41.0398 4328  nsi - ok
19:51:41.0414 4328  [ B488DFEC274DE1FC9D653870EF2587BE ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:51:41.0414 4328  nsiproxy - ok
19:51:41.0476 4328  [ 37430AA7A66D7A63407ADC2C0D05E9F6 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:51:41.0492 4328  Ntfs - ok
19:51:41.0523 4328  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
19:51:41.0523 4328  ntrigdigi - ok
19:51:41.0539 4328  [ EC5EFB3C60F1B624648344A328BCE596 ] Null            C:\Windows\system32\drivers\Null.sys
19:51:41.0539 4328  Null - ok
19:51:41.0570 4328  [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:51:41.0585 4328  nvraid - ok
19:51:41.0601 4328  [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:51:41.0601 4328  nvstor - ok
19:51:41.0617 4328  [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:51:41.0617 4328  nv_agp - ok
19:51:41.0632 4328  NwlnkFlt - ok
19:51:41.0648 4328  NwlnkFwd - ok
19:51:41.0726 4328  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:51:41.0726 4328  odserv - ok
19:51:41.0757 4328  [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
19:51:41.0757 4328  ohci1394 - ok
19:51:41.0804 4328  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:51:41.0804 4328  ose - ok
19:51:41.0851 4328  [ 016D01D3B8FB976A193C7434BED8DCCF ] p2pimsvc        C:\Windows\system32\p2psvc.dll
19:51:41.0913 4328  p2pimsvc - ok
19:51:41.0944 4328  [ 016D01D3B8FB976A193C7434BED8DCCF ] p2psvc          C:\Windows\system32\p2psvc.dll
19:51:41.0960 4328  p2psvc - ok
19:51:41.0991 4328  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
19:51:42.0007 4328  Parport - ok
19:51:42.0022 4328  [ 555A5B2C8022983BC7467BC925B222EE ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:51:42.0038 4328  partmgr - ok
19:51:42.0053 4328  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
19:51:42.0053 4328  Parvdm - ok
19:51:42.0085 4328  [ D8C5C215C932233A4F1D7F368F4E4E65 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:51:42.0085 4328  PcaSvc - ok
19:51:42.0131 4328  [ BDD96F9CF34D58958AFF1BE6EF4C8020 ] pci             C:\Windows\system32\drivers\pci.sys
19:51:42.0131 4328  pci - ok
19:51:42.0178 4328  [ CABA65E9C41CD2900D4C92D4F825C5F8 ] pciide          C:\Windows\system32\drivers\pciide.sys
19:51:42.0178 4328  pciide - ok
19:51:42.0209 4328  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
19:51:42.0209 4328  pcmcia - ok
19:51:42.0256 4328  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:51:42.0272 4328  PEAUTH - ok
19:51:42.0287 4328  pepifilter - ok
19:51:42.0319 4328  PID_PEPI - ok
19:51:42.0397 4328  [ CD05A38D166BEADE18030BAFC0C0A939 ] pla             C:\Windows\system32\pla.dll
19:51:42.0459 4328  pla - ok
19:51:42.0506 4328  [ 747BB4C31F3B6E8D1B5ED0AD61518CB5 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:51:42.0506 4328  PlugPlay - ok
19:51:42.0568 4328  [ 65BC271F337637731D3C71455AE1F476 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:51:42.0568 4328  Pml Driver HPZ12 - ok
19:51:42.0599 4328  [ 016D01D3B8FB976A193C7434BED8DCCF ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
19:51:42.0615 4328  PNRPAutoReg - ok
19:51:42.0646 4328  [ 016D01D3B8FB976A193C7434BED8DCCF ] PNRPsvc         C:\Windows\system32\p2psvc.dll
19:51:42.0662 4328  PNRPsvc - ok
19:51:42.0709 4328  [ 5EBDEC613BD377CE9A85382BE5C6B83B ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:51:42.0724 4328  PolicyAgent - ok
19:51:42.0755 4328  [ C04DEC5ACE67C5247B150C4223970BB7 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:51:42.0755 4328  PptpMiniport - ok
19:51:42.0802 4328  [ 0E3CEF5D28B40CF273281D620C50700A ] Processor       C:\Windows\system32\drivers\processr.sys
19:51:42.0802 4328  Processor - ok
19:51:42.0833 4328  [ 8B8E8F4734C5C576E3B910DB73756CF1 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:51:42.0849 4328  ProfSvc - ok
19:51:42.0865 4328  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:51:42.0865 4328  ProtectedStorage - ok
19:51:42.0896 4328  [ 2C8BAE55247C4E09352E870292E4D1AB ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
19:51:42.0896 4328  PSched - ok
19:51:42.0958 4328  [ CCDAC889326317792480C0A67156A1EC ] ql2300          C:\Windows\system32\drivers\ql2300.sys
19:51:42.0974 4328  ql2300 - ok
19:51:43.0005 4328  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
19:51:43.0005 4328  ql40xx - ok
19:51:43.0036 4328  [ CA61BDFD3713A7CE75F2812AFC431594 ] QWAVE           C:\Windows\system32\qwave.dll
19:51:43.0052 4328  QWAVE - ok
19:51:43.0067 4328  [ D2B3E2B7426DC23E185FBC73C8936C12 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:51:43.0067 4328  QWAVEdrv - ok
19:51:43.0177 4328  [ E46F2FB11CFE13187A4E3EF512C0D226 ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys
19:51:43.0223 4328  R300 - ok
19:51:43.0255 4328  [ BD7B30F55B3649506DD8B3D38F571D2A ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:51:43.0255 4328  RasAcd - ok
19:51:43.0286 4328  [ F14F4AAB9F54D099FE99192BDB100AC9 ] RasAuto         C:\Windows\System32\rasauto.dll
19:51:43.0286 4328  RasAuto - ok
19:51:43.0317 4328  [ 68B0019FEE429EC49D29017AF937E482 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:51:43.0317 4328  Rasl2tp - ok
19:51:43.0333 4328  [ 11D65E29BC9D1E4114D18FE68194394C ] RasMan          C:\Windows\System32\rasmans.dll
19:51:43.0348 4328  RasMan - ok
19:51:43.0379 4328  [ CCF4E9C6CBBAC81437F88CB2AE0B6C96 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:51:43.0379 4328  RasPppoe - ok
19:51:43.0395 4328  [ 54129C5D9581BBEC8BD1EBD3BA813F47 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:51:43.0411 4328  rdbss - ok
19:51:43.0426 4328  [ 794585276B5D7FCA9F3FC15543F9F0B9 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:51:43.0426 4328  RDPCDD - ok
19:51:43.0457 4328  [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
19:51:43.0457 4328  rdpdr - ok
19:51:43.0473 4328  [ 980B56E2E273E19D3A9D72D5C420F008 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:51:43.0473 4328  RDPENCDD - ok
19:51:43.0504 4328  [ 8830E790A74A96605FABA74F9665BB3C ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:51:43.0520 4328  RDPWD - ok
19:51:43.0535 4328  [ 6C1A43C589EE8011A1EBFD51C01B77CE ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:51:43.0535 4328  RemoteAccess - ok
19:51:43.0582 4328  [ 9A043808667C8C1893DA7275AF373F0E ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:51:43.0582 4328  RemoteRegistry - ok
19:51:43.0613 4328  [ 7EC90C316177BA3F1BCE92005264B447 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
19:51:43.0613 4328  RFCOMM - ok
19:51:43.0691 4328  [ 2AF094B1CE4725E4551F38FDA2348637 ] RichVideo       C:\Program Files\CyberLink\Shared Files\RichVideo.exe
19:51:43.0707 4328  RichVideo - ok
19:51:43.0723 4328  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
19:51:43.0738 4328  RpcLocator - ok
19:51:43.0769 4328  [ 7B981222A257D076885BFFB66F19B7CE ] RpcSs           C:\Windows\system32\rpcss.dll
19:51:43.0785 4328  RpcSs - ok
19:51:43.0801 4328  [ 97E939D2128FEC5D5A3E6E79B290A2F4 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:51:43.0816 4328  rspndr - ok
19:51:43.0847 4328  [ 959EF612D2CCFDB6D9E443F8E3655013 ] RTL8023xp       C:\Windows\system32\DRIVERS\Rtnicxp.sys
19:51:43.0847 4328  RTL8023xp - ok
19:51:43.0863 4328  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] SamSs           C:\Windows\system32\lsass.exe
19:51:43.0879 4328  SamSs - ok
19:51:43.0894 4328  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:51:43.0910 4328  sbp2port - ok
19:51:43.0941 4328  [ 565B4B9E5AD2F2F18A4F8AAFA6C06BBB ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:51:43.0957 4328  SCardSvr - ok
19:51:44.0019 4328  [ 886CEC884B5BE29AB9828B8AB46B11F7 ] Schedule        C:\Windows\system32\schedsvc.dll
19:51:44.0050 4328  Schedule - ok
19:51:44.0066 4328  [ 0600E04315FE543802A379D5D23C8BE0 ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:51:44.0066 4328  SCPolicySvc - ok
19:51:44.0097 4328  [ 4339A2585708C7D9B0C0CE5AAD3DD6FF ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
19:51:44.0097 4328  sdbus - ok
19:51:44.0128 4328  [ F7B6BF02240D0A764ADF8C8966735552 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:51:44.0128 4328  SDRSVC - ok
19:51:44.0144 4328  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:51:44.0144 4328  secdrv - ok
19:51:44.0159 4328  [ 8388C4133DDBE62AD7BC3EC9F14271ED ] seclogon        C:\Windows\system32\seclogon.dll
19:51:44.0159 4328  seclogon - ok
19:51:44.0191 4328  [ 34350AE2C1D33D21C7305F861BD8DAD8 ] SENS            C:\Windows\System32\sens.dll
19:51:44.0191 4328  SENS - ok
19:51:44.0222 4328  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
19:51:44.0222 4328  Serenum - ok
19:51:44.0253 4328  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
19:51:44.0253 4328  Serial - ok
19:51:44.0269 4328  [ 450ACCD77EC5CEA720C1CDB9E26B953B ] sermouse        C:\Windows\system32\drivers\sermouse.sys
19:51:44.0284 4328  sermouse - ok
19:51:44.0315 4328  [ 78878235DA4DF0D116E86837A0A21DF8 ] SessionEnv      C:\Windows\system32\sessenv.dll
19:51:44.0331 4328  SessionEnv - ok
19:51:44.0347 4328  [ 103B79418DA647736EE95645F305F68A ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:51:44.0347 4328  sffdisk - ok
19:51:44.0378 4328  [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:51:44.0378 4328  sffp_mmc - ok
19:51:44.0409 4328  [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:51:44.0409 4328  sffp_sd - ok
19:51:44.0425 4328  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
19:51:44.0425 4328  sfloppy - ok
19:51:44.0471 4328  [ 9A82BF4C90B00A63150A606A1E2FD82B ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:51:44.0471 4328  SharedAccess - ok
19:51:44.0487 4328  [ B264DFA21677728613267FE63802B332 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:51:44.0503 4328  ShellHWDetection - ok
19:51:44.0534 4328  [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
19:51:44.0534 4328  sisagp - ok
19:51:44.0549 4328  [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
19:51:44.0549 4328  SiSRaid2 - ok
19:51:44.0565 4328  [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
19:51:44.0565 4328  SiSRaid4 - ok
19:51:44.0612 4328  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
19:51:44.0612 4328  SkypeUpdate - ok
19:51:44.0721 4328  [ A1DCD30534835CB67733AD00175125A6 ] slsvc           C:\Windows\system32\SLsvc.exe
19:51:44.0752 4328  slsvc - ok
19:51:44.0768 4328  [ 56DA296E7B376A727E7BDC5AC7FBEE02 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
19:51:44.0768 4328  SLUINotify - ok
19:51:44.0799 4328  [ 46BAF398809A0F3B2D3300A1760E4B91 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:51:44.0799 4328  Smb - ok
19:51:44.0846 4328  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:51:44.0846 4328  SNMPTRAP - ok
19:51:44.0877 4328  [ 426F9B029AA9162CECCF65369457D046 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:51:44.0877 4328  spldr - ok
19:51:44.0908 4328  [ DA612EF2556776DF2630B68BF2D48935 ] Spooler         C:\Windows\System32\spoolsv.exe
19:51:44.0924 4328  Spooler - ok
19:51:44.0971 4328  [ B2EC3E1DEAC5F0A764BD3486D213A0AF ] SQLBrowser      C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
19:51:44.0971 4328  SQLBrowser - ok
19:51:44.0986 4328  [ D2F4F32B59440011174B4F8137AF4E0C ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
19:51:44.0986 4328  SQLWriter - ok
19:51:45.0033 4328  [ 038579C35F7CAD4A4BBF735DBF83277D ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:51:45.0033 4328  srv - ok
19:51:45.0095 4328  [ 6971A757AF8CB5E2CBCBB76CC530DB6C ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:51:45.0095 4328  srv2 - ok
19:51:45.0111 4328  [ 9E1A4603B874EEBCE0298113951ABEFB ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:51:45.0111 4328  srvnet - ok
19:51:45.0127 4328  [ 8D3E4BAFF8B3997138C38EB1B600519A ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:51:45.0142 4328  SSDPSRV - ok
19:51:45.0158 4328  [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
19:51:45.0158 4328  ssmdrv - ok
19:51:45.0205 4328  [ 306521935042FC0A6988D528643619B3 ] StarOpen        C:\Windows\system32\drivers\StarOpen.sys
19:51:45.0205 4328  StarOpen - ok
19:51:45.0236 4328  [ 7A95B5DEB594616F1693486B8161411E ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
19:51:45.0236 4328  StillCam - ok
19:51:45.0283 4328  [ A941E099EF46E3CC12F898CBE1C39910 ] stisvc          C:\Windows\System32\wiaservc.dll
19:51:45.0283 4328  stisvc - ok
19:51:45.0314 4328  [ 3B80B4383C9BCE13279C8482734B32B2 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
19:51:45.0329 4328  swenum - ok
19:51:45.0361 4328  [ 749ADA8D6C18A08ADFEDE69CBF5DB2E0 ] swprv           C:\Windows\System32\swprv.dll
19:51:45.0361 4328  swprv - ok
19:51:45.0407 4328  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
19:51:45.0407 4328  Symc8xx - ok
19:51:45.0439 4328  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
19:51:45.0439 4328  Sym_hi - ok
19:51:45.0454 4328  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
19:51:45.0454 4328  Sym_u3 - ok
19:51:45.0485 4328  [ C1777074592BBB55B1F1A2FBC7A60498 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
19:51:45.0501 4328  SynTP - ok
19:51:45.0548 4328  [ 8F2B5FEDE18BD3C4C926CBF88E6F1264 ] SysMain         C:\Windows\system32\sysmain.dll
19:51:45.0563 4328  SysMain - ok
19:51:45.0579 4328  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:51:45.0579 4328  TabletInputService - ok
19:51:45.0610 4328  [ EF3DD33C740FC2F82E7E4622F1C49289 ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:51:45.0610 4328  TapiSrv - ok
19:51:45.0626 4328  [ 68FA52794AE9ACC61BDE16FE0956B414 ] TBS             C:\Windows\System32\tbssvc.dll
19:51:45.0626 4328  TBS - ok
19:51:45.0688 4328  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:51:45.0704 4328  Tcpip - ok
19:51:45.0735 4328  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
19:51:45.0751 4328  Tcpip6 - ok
19:51:45.0782 4328  [ 5CE0C4A7B12D0067DAD527D72B68C726 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:51:45.0782 4328  tcpipreg - ok
19:51:45.0797 4328  [ 964248AEF49C31FA6A93201A73FFAF50 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:51:45.0797 4328  TDPIPE - ok
19:51:45.0813 4328  [ 7D2C1AE1648A60FCE4AA0F7982E419D3 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:51:45.0829 4328  TDTCP - ok
19:51:45.0844 4328  [ AB4FDE8AF4A0270A46A001C08CBCE1C2 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:51:45.0844 4328  tdx - ok
19:51:45.0875 4328  [ 849ED71967D45F15C3E0ABFC633FDF2A ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
19:51:45.0875 4328  TermDD - ok
19:51:45.0922 4328  [ FAD71C1E8E4047B154E899AE31EB8CAA ] TermService     C:\Windows\System32\termsrv.dll
19:51:45.0938 4328  TermService - ok
19:51:45.0953 4328  [ B264DFA21677728613267FE63802B332 ] Themes          C:\Windows\system32\shsvcs.dll
19:51:45.0969 4328  Themes - ok
19:51:45.0969 4328  [ 9DFA3A459AF0954AA85B4F7622AD87BB ] THREADORDER     C:\Windows\system32\mmcss.dll
19:51:45.0985 4328  THREADORDER - ok
19:51:46.0000 4328  [ 6BBA0582C0025D43729A1112D3B57897 ] TrkWks          C:\Windows\System32\trkwks.dll
19:51:46.0000 4328  TrkWks - ok
19:51:46.0063 4328  [ 34E388A395FEDBA1D0511ED39BBF4074 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:51:46.0078 4328  TrustedInstaller - ok
19:51:46.0109 4328  [ 29F0ECA726F0D51F7E048BDB0B372F29 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:51:46.0109 4328  tssecsrv - ok
19:51:46.0141 4328  [ 65E953BC0084D44498B51F59784D2A82 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
19:51:46.0156 4328  tunmp - ok
19:51:46.0156 4328  [ 4A39BDA5E0FD30BDF4884F9D33AE6105 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:51:46.0156 4328  tunnel - ok
19:51:46.0187 4328  [ C3ADE15414120033A36C0F293D4A4121 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
19:51:46.0187 4328  uagp35 - ok
19:51:46.0219 4328  [ 6348DA98707CEDA8A0DFB05820E17732 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:51:46.0219 4328  udfs - ok
19:51:46.0265 4328  [ 24A333F4F14DCFB6FF6D5A1B9E5D79DD ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:51:46.0265 4328  UI0Detect - ok
19:51:46.0297 4328  [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:51:46.0297 4328  uliagpkx - ok
19:51:46.0328 4328  [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci         C:\Windows\system32\drivers\uliahci.sys
19:51:46.0328 4328  uliahci - ok
19:51:46.0359 4328  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
19:51:46.0359 4328  UlSata - ok
19:51:46.0375 4328  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
19:51:46.0375 4328  ulsata2 - ok
19:51:46.0406 4328  [ 3FB78F1D1DD86D87BECECD9DFFA24DD9 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
19:51:46.0406 4328  umbus - ok
19:51:46.0421 4328  [ 08EA9C0247F391AF4D4A16885A1C159D ] UMPass          C:\Windows\system32\DRIVERS\umpass.sys
19:51:46.0421 4328  UMPass - ok
19:51:46.0453 4328  [ 8EB871A3DEB6B3D5A85EB6DDFC390B59 ] upnphost        C:\Windows\System32\upnphost.dll
19:51:46.0453 4328  upnphost - ok
19:51:46.0499 4328  [ F6BF998AE33E3FB6C7D27F0560F1173F ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
19:51:46.0499 4328  usbaudio - ok
19:51:46.0515 4328  usbbus - ok
19:51:46.0546 4328  [ 03B01E8DBD2DA2B49157B7E51912AAF2 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:51:46.0546 4328  usbccgp - ok
19:51:46.0593 4328  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:51:46.0593 4328  usbcir - ok
19:51:46.0593 4328  UsbDiag - ok
19:51:46.0624 4328  [ 2F83363F98484F8EDAF49F9B41520D14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
19:51:46.0624 4328  usbehci - ok
19:51:46.0655 4328  [ 14D2A4DCD92C0B3368667AED6893463D ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:51:46.0655 4328  usbhub - ok
19:51:46.0671 4328  USBModem - ok
19:51:46.0687 4328  [ 51DC36722172D45F2F935CE5CC18A812 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
19:51:46.0687 4328  usbohci - ok
19:51:46.0718 4328  [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
19:51:46.0718 4328  usbprint - ok
19:51:46.0765 4328  [ B1F95285C08DDFE00C0B955462637EC7 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
19:51:46.0765 4328  usbscan - ok
19:51:46.0796 4328  [ 7887CE56934E7F104E98C975F47353C5 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:51:46.0796 4328  USBSTOR - ok
19:51:46.0811 4328  [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
19:51:46.0811 4328  usbuhci - ok
19:51:46.0843 4328  [ F79D0D7C9004474CB42746D9B2C30A2B ] UxSms           C:\Windows\System32\uxsms.dll
19:51:46.0858 4328  UxSms - ok
19:51:46.0874 4328  [ C9D0BAFEE0D0A2681F048CA61BC0DA96 ] vds             C:\Windows\System32\vds.exe
19:51:46.0889 4328  vds - ok
19:51:46.0921 4328  [ 7D92BE0028ECDEDEC74617009084B5EF ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:51:46.0921 4328  vga - ok
19:51:46.0952 4328  [ 17A8F877314E4067F8C8172CC6D9101C ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:51:46.0952 4328  VgaSave - ok
19:51:46.0967 4328  [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp          C:\Windows\system32\drivers\viaagp.sys
19:51:46.0967 4328  viaagp - ok
19:51:46.0999 4328  [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
19:51:46.0999 4328  ViaC7 - ok
19:51:47.0030 4328  [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide          C:\Windows\system32\drivers\viaide.sys
19:51:47.0030 4328  viaide - ok
19:51:47.0061 4328  [ FD16FAC15F9F165AC19A618E7B391F5C ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:51:47.0061 4328  volmgr - ok
19:51:47.0077 4328  [ 294DA8D3F965F6A8DB934A83C7B461FF ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:51:47.0077 4328  volmgrx - ok
19:51:47.0123 4328  [ 80DC0C9BCB579ED9815001A4D37CBFD5 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:51:47.0123 4328  volsnap - ok
19:51:47.0155 4328  [ D984439746D42B30FC65A4C3546C6829 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
19:51:47.0155 4328  vsmraid - ok
19:51:47.0217 4328  [ E0E29D9EF2524ABD11749C7C2FD7F607 ] VSS             C:\Windows\system32\vssvc.exe
19:51:47.0217 4328  VSS - ok
19:51:47.0264 4328  [ 62B0D0F6F5580D9D0DFA5E0B466FF2ED ] W32Time         C:\Windows\system32\w32time.dll
19:51:47.0264 4328  W32Time - ok
19:51:47.0295 4328  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
19:51:47.0295 4328  WacomPen - ok
19:51:47.0326 4328  [ 6798C1209A53B5A0DED8D437C45145FF ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
19:51:47.0326 4328  Wanarp - ok
19:51:47.0342 4328  [ 6798C1209A53B5A0DED8D437C45145FF ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:51:47.0342 4328  Wanarpv6 - ok
19:51:47.0357 4328  [ C1B19162E0509CEAB4CDF664E139D956 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:51:47.0357 4328  wcncsvc - ok
19:51:47.0389 4328  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:51:47.0389 4328  WcsPlugInService - ok
19:51:47.0420 4328  [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd              C:\Windows\system32\drivers\wd.sys
19:51:47.0420 4328  Wd - ok
19:51:47.0467 4328  [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:51:47.0467 4328  Wdf01000 - ok
19:51:47.0498 4328  [ 2A424B89B14EF17A3D06BCB5A8F79601 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:51:47.0498 4328  WdiServiceHost - ok
19:51:47.0513 4328  [ 2A424B89B14EF17A3D06BCB5A8F79601 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:51:47.0513 4328  WdiSystemHost - ok
19:51:47.0529 4328  [ 01E41C264EEDCB827820A1909162579F ] WebClient       C:\Windows\System32\webclnt.dll
19:51:47.0545 4328  WebClient - ok
19:51:47.0576 4328  [ 9CF67FF7F8D34CBF115D0C278B9F74AA ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:51:47.0576 4328  Wecsvc - ok
19:51:47.0607 4328  [ B68CAB45DB1DAB59D92ACADFAD6364A8 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:51:47.0607 4328  wercplsupport - ok
19:51:47.0623 4328  [ 36BA0707680EF4236FD752BEE982CC25 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:51:47.0638 4328  WerSvc - ok
19:51:47.0701 4328  [ 0D5AD0E71FF5DDAC5DD2F443B499ABD0 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
19:51:47.0701 4328  WinDefend - ok
19:51:47.0716 4328  WinHttpAutoProxySvc - ok
19:51:47.0779 4328  [ 38A7B89DE4E3417C122317949667FDD8 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:51:47.0779 4328  Winmgmt - ok
19:51:47.0810 4328  [ 3F6823040030C3E4DA1CF11CD40B7534 ] WinRM           C:\Windows\system32\WsmSvc.dll
19:51:47.0825 4328  WinRM - ok
19:51:47.0903 4328  [ 7640ACEA41348BFEF34B76E245501261 ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:51:47.0935 4328  Wlansvc - ok
19:51:48.0059 4328  [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:51:48.0075 4328  wlidsvc - ok
19:51:48.0106 4328  [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:51:48.0106 4328  WmiAcpi - ok
19:51:48.0153 4328  [ A279323BEE5FFFAFDA222910BCE92132 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:51:48.0153 4328  wmiApSrv - ok
19:51:48.0215 4328  [ ACB2E63D50157E3EA7140F29D9E76A48 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
19:51:48.0231 4328  WMPNetworkSvc - ok
19:51:48.0262 4328  [ 3D3B3B80C12ABE506F56930C46422C28 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:51:48.0262 4328  WPCSvc - ok
19:51:48.0278 4328  [ C24844A1D0D9528B19D5BC266B8CD572 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:51:48.0278 4328  WPDBusEnum - ok
19:51:48.0325 4328  [ 2D27171B16A577EF14C1273668753485 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
19:51:48.0325 4328  WpdUsb - ok
19:51:48.0418 4328  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:51:48.0418 4328  WPFFontCache_v0400 - ok
19:51:48.0449 4328  [ 84620AECDCFD2A7A14E6263927D8C0ED ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:51:48.0449 4328  ws2ifsl - ok
19:51:48.0481 4328  [ F97CBB919AF6D0A6643D1A59C15014D1 ] wscsvc          C:\Windows\System32\wscsvc.dll
19:51:48.0481 4328  wscsvc - ok
19:51:48.0527 4328  [ F01F25B4227AD8D717C21F25F62B43C8 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
19:51:48.0527 4328  WSDPrintDevice - ok
19:51:48.0527 4328  WSearch - ok
19:51:48.0668 4328  [ 6298277B73C77FA99106B271A7525163 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:51:48.0746 4328  wuauserv - ok
19:51:48.0777 4328  [ A2AAFCC8A204736296D937C7C545B53F ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:51:48.0777 4328  WUDFRd - ok
19:51:48.0824 4328  [ DB5BF5AAB72B1B99B5331231D09EBB26 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:51:48.0824 4328  wudfsvc - ok
19:51:48.0871 4328  [ ADE7A4943003020216952B56A6741EC7 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
19:51:48.0886 4328  yukonwlh - ok
19:51:48.0933 4328  ================ Scan global ===============================
19:51:48.0964 4328  [ 8CD98A8EC9CADAF4E051CDCAC15C96C4 ] C:\Windows\system32\basesrv.dll
19:51:49.0011 4328  [ E3F137ADC0A9D7F3A2E4F557272FE6B3 ] C:\Windows\system32\winsrv.dll
19:51:49.0042 4328  [ E3F137ADC0A9D7F3A2E4F557272FE6B3 ] C:\Windows\system32\winsrv.dll
19:51:49.0105 4328  [ 329CF3C97CE4C19375C8ABCABAE258B0 ] C:\Windows\system32\services.exe
19:51:49.0120 4328  [Global] - ok
19:51:49.0120 4328  ================ Scan MBR ==================================
19:51:49.0136 4328  [ 61A349592C4728853F4A90FF78F7628E ] \Device\Harddisk0\DR0
19:51:51.0382 4328  \Device\Harddisk0\DR0 - ok
19:51:51.0382 4328  ================ Scan VBR ==================================
19:51:51.0398 4328  [ 2D3C8D6B7DD7B6F8B97B0AFA65D62E88 ] \Device\Harddisk0\DR0\Partition1
19:51:51.0398 4328  \Device\Harddisk0\DR0\Partition1 - ok
19:51:51.0429 4328  [ F4EE089BE59595EF8169016B95BC8A16 ] \Device\Harddisk0\DR0\Partition2
19:51:51.0460 4328  \Device\Harddisk0\DR0\Partition2 - ok
19:51:51.0460 4328  ============================================================
19:51:51.0460 4328  Scan finished
19:51:51.0460 4328  ============================================================
19:51:51.0476 5872  Detected object count: 0
19:51:51.0476 5872  Actual detected object count: 0

So hoffe das es soweit ok ist.

Gruß
Su

smeenk · 11.06.2013, 22:49

Sieht schon besser aus

Systemscan mit ZOEK

Bitte deaktiviere während des Scans alle Virenscanner, da sie das Ergebnis beeinflussen.
Starte die Zoek.exe mit einem Doppelklick (nur Windows XP-Benutzer).
Windows Vista/7 Benutzer starten das Tool bitte per Rechtsklick auf das Icon und wählen "Als Administrator starten".

Kopiere untenstehende Code in das Textfeld:

Code:

ATTFilter

C:\Users\Jrgen\AppData\Roaming\BabSolution;fs
C:\Users\Jrgen\AppData\Roaming\Babylon;fs
C:\Users\Jrgen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect;fs
C:\Users\Jrgen\AppData\Local\Conduit;fs
C:\Users\Jrgen\AppData\LocalLow\BabylonToolbar;fs
C:\Users\Jrgen\AppData\LocalLow\FileConverter_1.3;fs
C:\Users\Jrgen\AppData\LocalLow\PriceGong;fs
chrdefaults;
C:\Users\Jrgen\AppData\LocalLow\Conduit;fs
C:\Users\Jrgen\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data;fs
C:\Users\Jrgen\AppData\Local\Google\Chrome\User Data\Default\bProtectorPreferences;fs

Nun klicke auf "Run script" und warte geduldig, bis der Scan durchgelaufen ist.
Wenn das Tool fertig ist, wird sich Notepad mit dem Logfile öffnen (ggfs. erst nach einem Neustart).
Nachträglich kannst Du den Bericht unter c:\zoek-results.log einsehen.
Poste mir das Log File zoek-results.log

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

lala65 · 12.06.2013, 20:26

Hallo und Guten Abend smeenk

,
also, hat alles gut funktioniert und mein PC ist richtig schnell unterwegs, meine ich zumindest.
Hier also
AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v2.303 - Datei am 12/06/2013 um 21:09:52 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium  (32 bits)
# Benutzer : Jürgen - JÜRGEN-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Jürgen\Downloads\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Datei Gelöscht : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Datei Gelöscht : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Datei Gelöscht : C:\Users\Jürgen\AppData\Roaming\Microsoft\Windows\Start Menu\eBay.lnk
Gelöscht mit Neustart : C:\Program Files\AskTBar
Ordner Gelöscht : C:\Users\Jürgen\AppData\Local\Conduit
Ordner Gelöscht : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Ordner Gelöscht : C:\Users\Jürgen\AppData\LocalLow\BabylonToolbar
Ordner Gelöscht : C:\Users\Jürgen\AppData\LocalLow\Conduit
Ordner Gelöscht : C:\Users\Jürgen\AppData\LocalLow\FileConverter_1.3
Ordner Gelöscht : C:\Users\Jürgen\AppData\LocalLow\PriceGong
Ordner Gelöscht : C:\Users\Jürgen\AppData\Roaming\BabSolution
Ordner Gelöscht : C:\Users\Jürgen\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Jürgen\AppData\Roaming\Desktopicon
Ordner Gelöscht : C:\Users\Jürgen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
Ordner Gelöscht : C:\Windows\Installer\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}

***** [Registrierungsdatenbank] *****

Daten Gelöscht : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\261040~1.25\{c16c1~1\browse~1.dll
Schlüssel Gelöscht : HKCU\Software\5a08dd0e73ce940
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\FileConverter_1.3
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar
Schlüssel Gelöscht : HKCU\Software\BabylonToolbar
Schlüssel Gelöscht : HKCU\Software\DataMngr
Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Babylon
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FileConverter_1.3 Toolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{78E516EF-11DE-47A1-8364-A99B917EC5EE}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{153D7D79-706C-443D-BA98-41CA86982C9D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CB65206-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\5a08dd0e73ce940
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\BabylonToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{50F7F0BE-31BA-4145-BD8B-6B0DECFED804}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\b
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{153D7D79-706C-443D-BA98-41CA86982C9D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9CB65206-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\6207E55EA2FE71A4AA7ABD89AEF31D1B
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT3241949
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\FileConverter_1.3
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C34351C-3CAB-40A5-99FC-9099E0A2819C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C9ADA641-32E1-4AAE-B569-1C1A3457B36A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{153D7D79-706C-443D-BA98-41CA86982C9D}
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DA5BD2D3CA2D6943A1A233CD3F88CE7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC9EFC5C3366B4DB850DAB49330C52
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B2468513CA2D6943A1A233CD3F88CE7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7E98451C7CA808F47AFE467BDABD02FA
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BFD11FD45FC7B9E46A8F4B69F3A66E35
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5979AD63CA2D6943A1A233CD3F88CE7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF9BD2952384A9C49B4A5D3D95329890
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FABA2A33488410A4AA40489BD2224282
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FileConverter_1.3 Toolbar
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FE063DB9-4EC0-403E-8DD8-394C54984B2C}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{9CB65206-89C4-402C-BA80-02D8C59F9B1D}]
Wert Gelöscht : HKCU\Software\Mozilla\Firefox\extensions [{58BD07EB-0EE0-4DF0-8121-DC9B693373DF}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FE063DB9-4EC0-403E-8DD8-394C54984B2C}]

***** [Internet Browser] *****

-\\ Internet Explorer v8.0.6001.18904

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Google Chrome v27.0.1453.110

Datei : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\Preferences

Gelöscht [l.84] : homepage = "hxxp://search.babylon.com/?affID=109958&tt=5212_4&babsrc=HP_ss&mntrId=16c9c051000000[...]
Gelöscht [l.112] : urls_to_restore_on_startup ="session": {"restore_on_startup": 4,  [ "hxxp://search.babylon.com/?[...]

*************************

AdwCleaner[S1].txt - [12831 octets] - [12/06/2013 21:09:52]

########## EOF - C:\AdwCleaner[S1].txt - [12892 octets] ##########

--- --- ---
gruß und einen schönen Abend noch Su

smeenk · 12.06.2013, 22:47

Es freut mich das zu hören

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

lala65 · 13.06.2013, 21:08

Hallo und Guten Abend smeenk,
das heute war für mich, eine harte Nuss

.
"Installiere das Programm in den vorgegebenen Pfad.
Windows Vista und höher: mit Rechtsklick "als Administrator starten"

.
Auch mein heißgeliebtes googlen half da mal nicht.
Ob das jetzt alles so stimmt, weis ich nicht.

Code:

ATTFilter

 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.06.13.07

Windows Vista x86 NTFS
Internet Explorer 8.0.6001.18904
Jürgen :: JÜRGEN-PC [Administrator]

Schutz: Aktiviert

13.06.2013 21:30:20
mbam-log-2013-06-13 (21-30-20).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 218719
Laufzeit: 9 Minute(n), 47 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

smeenk · 13.06.2013, 21:15

MalwareBytes hat nichts bösartiges gefunden, das ist die gute Nachricht

Mach weiter mit SecurityCheck

lala65 · 13.06.2013, 21:27

AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v2.303 - Datei am 13/06/2013 um 21:50:52 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium  (32 bits)
# Benutzer : Jürgen - JÜRGEN-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Jürgen\Downloads\adwcleaner.exe
# Option [Suche]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Ordner Gefunden : C:\Program Files\AskTBar
Ordner Gefunden : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph

***** [Registrierungsdatenbank] *****

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BrowserProtect

***** [Internet Browser] *****

-\\ Internet Explorer v8.0.6001.18904

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Google Chrome v27.0.1453.110

Datei : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Die Datei ist sauber.

*************************

AdwCleaner[R1].txt - [995 octets] - [13/06/2013 21:50:52]
AdwCleaner[S1].txt - [12962 octets] - [12/06/2013 21:09:52]

########## EOF - C:\AdwCleaner[R1].txt - [1115 octets] ##########

--- --- ---

Hoffe es ist ok.
Noch eine schönen Abend
Gruß Su

smeenk · 13.06.2013, 21:32

Vielleicht missverstehen wir uns?

Ich wollte gerne eine Log-Datei von SecurityCheck.

Zitat:

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

lala65 · 14.06.2013, 19:53

Hallo und Guten Abend smeenk,
weniger ein Missverständnis, sondern mehr ein "nicht verstehen"

meinerseits, um was es dabei geht.
Nun hoff ich das richtige gesendet zu haben.
AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v2.303 - Datei am 12/06/2013 um 21:09:52 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium  (32 bits)
# Benutzer : Jürgen - JÜRGEN-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Jürgen\Downloads\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Datei Gelöscht : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Datei Gelöscht : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Datei Gelöscht : C:\Users\Jürgen\AppData\Roaming\Microsoft\Windows\Start Menu\eBay.lnk
Gelöscht mit Neustart : C:\Program Files\AskTBar
Ordner Gelöscht : C:\Users\Jürgen\AppData\Local\Conduit
Ordner Gelöscht : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Ordner Gelöscht : C:\Users\Jürgen\AppData\LocalLow\BabylonToolbar
Ordner Gelöscht : C:\Users\Jürgen\AppData\LocalLow\Conduit
Ordner Gelöscht : C:\Users\Jürgen\AppData\LocalLow\FileConverter_1.3
Ordner Gelöscht : C:\Users\Jürgen\AppData\LocalLow\PriceGong
Ordner Gelöscht : C:\Users\Jürgen\AppData\Roaming\BabSolution
Ordner Gelöscht : C:\Users\Jürgen\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Jürgen\AppData\Roaming\Desktopicon
Ordner Gelöscht : C:\Users\Jürgen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
Ordner Gelöscht : C:\Windows\Installer\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}

***** [Registrierungsdatenbank] *****

Daten Gelöscht : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\261040~1.25\{c16c1~1\browse~1.dll
Schlüssel Gelöscht : HKCU\Software\5a08dd0e73ce940
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\FileConverter_1.3
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar
Schlüssel Gelöscht : HKCU\Software\BabylonToolbar
Schlüssel Gelöscht : HKCU\Software\DataMngr
Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Babylon
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FileConverter_1.3 Toolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{78E516EF-11DE-47A1-8364-A99B917EC5EE}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{153D7D79-706C-443D-BA98-41CA86982C9D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CB65206-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\5a08dd0e73ce940
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\BabylonToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{50F7F0BE-31BA-4145-BD8B-6B0DECFED804}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\b
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{153D7D79-706C-443D-BA98-41CA86982C9D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9CB65206-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\6207E55EA2FE71A4AA7ABD89AEF31D1B
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT3241949
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\FileConverter_1.3
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C34351C-3CAB-40A5-99FC-9099E0A2819C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C9ADA641-32E1-4AAE-B569-1C1A3457B36A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{153D7D79-706C-443D-BA98-41CA86982C9D}
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DA5BD2D3CA2D6943A1A233CD3F88CE7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC9EFC5C3366B4DB850DAB49330C52
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B2468513CA2D6943A1A233CD3F88CE7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7E98451C7CA808F47AFE467BDABD02FA
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BFD11FD45FC7B9E46A8F4B69F3A66E35
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5979AD63CA2D6943A1A233CD3F88CE7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF9BD2952384A9C49B4A5D3D95329890
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FABA2A33488410A4AA40489BD2224282
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FileConverter_1.3 Toolbar
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FE063DB9-4EC0-403E-8DD8-394C54984B2C}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{9CB65206-89C4-402C-BA80-02D8C59F9B1D}]
Wert Gelöscht : HKCU\Software\Mozilla\Firefox\extensions [{58BD07EB-0EE0-4DF0-8121-DC9B693373DF}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FE063DB9-4EC0-403E-8DD8-394C54984B2C}]

***** [Internet Browser] *****

-\\ Internet Explorer v8.0.6001.18904

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Google Chrome v27.0.1453.110

Datei : C:\Users\Jürgen\AppData\Local\Google\Chrome\User Data\Default\Preferences

Gelöscht [l.84] : homepage = "hxxp://search.babylon.com/?affID=109958&tt=5212_4&babsrc=HP_ss&mntrId=16c9c051000000[...]
Gelöscht [l.112] : urls_to_restore_on_startup ="session": {"restore_on_startup": 4,  [ "hxxp://search.babylon.com/?[...]

*************************

AdwCleaner[S1].txt - [12831 octets] - [12/06/2013 21:09:52]

########## EOF - C:\AdwCleaner[S1].txt - [12892 octets] ##########

--- --- ---

Noch einen schönen Abend
Gruß Su

13.06.2013, 21:15	#12
smeenk /// Malwareteam / Visitor	Super-Dummie against System Care Antivirus MalwareBytes hat nichts bösartiges gefunden, das ist die gute Nachricht Mach weiter mit SecurityCheck

Super-Dummie against System Care Antivirus

Plagegeister aller Art und deren Bekämpfung: Super-Dummie against System Care Antivirus